Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft
File: YihBc2HBxAaumnJX2qn7BiB4LTU.mft (raw, json)
Hash identifier: xUN+UOVBtLM3pP6sWsThJ+SVdUTwaHnXn9NAwfu8ICU=
Subject key identifier: D2:E7:78:22:13:4F:40:59:97:98:9B:DA:97:FA:E7:9A:17:81:C7:86
Authority key identifier: 62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
Certificate issuer: /CN=6228417361c1c406ae9a7257daa9fb0620782d35
Certificate serial: 019510C6A8EE0D08669FF12D7F28D194A3F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft
Manifest number: 0CFB
Signing time: Sun 16 Feb 2025 22:00:09 +0000
Manifest this update: Sun 16 Feb 2025 22:00:09 +0000
Manifest next update: Mon 17 Feb 2025 22:00:09 +0000
Files and hashes: 1: YihBc2HBxAaumnJX2qn7BiB4LTU.crl (hash: HvpTnZnZlLWk57z8tef6xEgOus+hkK+oddjixe2JI5I=)
2: orR6QmUobPq58IiNnqewDNf0I7s.roa (hash: cEMGLelbH1U4lpzSE43pcUZRdK2/HRG/uJ16sgFxOVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:a8:ee:0d:08:66:9f:f1:2d:7f:28:d1:94:a3:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228417361c1c406ae9a7257daa9fb0620782d35
Validity
Not Before: Feb 16 22:00:09 2025 GMT
Not After : Feb 17 22:00:09 2025 GMT
Subject: CN=d2e77822134f405997989bda97fae79a1781c786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7f:37:6f:d8:43:f8:58:50:2f:dd:b8:3b:03:
e4:a7:52:82:66:71:0f:dd:c7:4e:6b:e9:8d:08:4d:
a4:87:5d:3e:46:45:76:f7:49:b0:c4:34:5d:57:0c:
79:54:c8:8d:c9:5f:15:42:e7:cb:e8:b6:49:77:08:
79:66:ac:27:34:2b:82:39:81:b0:db:5d:13:a7:99:
96:52:45:33:9f:ae:31:42:b3:09:5c:e9:1e:3a:d9:
67:3f:58:7d:16:98:58:39:19:22:a4:ec:0a:03:00:
d0:ba:72:27:88:b5:40:30:de:c2:f0:8d:96:47:2c:
56:23:b1:d9:0d:08:4f:57:35:a1:5b:9f:bd:a1:a5:
3a:e9:63:cc:51:93:8d:95:d1:46:7e:8f:fb:da:1b:
3c:5e:ed:77:50:23:33:aa:70:0f:ed:fe:34:ad:d7:
f8:a8:77:b1:4f:c6:1b:6d:14:ff:2b:de:4f:3d:04:
93:7b:1c:09:77:43:cc:9f:d2:18:72:67:9f:a0:f6:
2e:2f:c8:ef:d9:b4:b1:2f:99:09:5c:13:aa:f1:f4:
41:72:9d:75:69:22:43:3a:98:e3:51:10:a0:f0:74:
bb:9b:a0:cd:91:5b:94:56:58:a2:64:49:16:eb:29:
26:22:02:bb:ed:38:bb:f1:55:38:60:36:b5:57:90:
af:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E7:78:22:13:4F:40:59:97:98:9B:DA:97:FA:E7:9A:17:81:C7:86
X509v3 Authority Key Identifier:
keyid:62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:8f:67:ce:b3:e0:e4:ef:f2:0e:94:37:8b:5b:e6:e2:19:a3:
30:33:86:6b:51:cd:d2:0e:cb:96:5a:15:b6:47:ca:0a:49:5c:
e9:4d:37:16:96:65:40:1b:2a:7b:92:63:9a:42:4e:7e:a9:ee:
ab:73:f9:26:4e:ef:5e:72:41:31:45:31:14:de:69:a5:cb:90:
5d:8e:ff:24:27:8e:b6:6a:dd:e6:d5:e5:58:89:28:e1:bf:a9:
8f:3f:3f:4a:25:27:40:fe:74:de:c7:8a:89:fe:85:10:80:28:
a8:f0:52:9b:5a:bc:c6:72:1e:f5:39:6c:34:df:35:71:93:d3:
b5:9f:db:5c:a8:64:73:ea:ca:26:72:61:04:00:1a:ac:5d:1b:
90:82:7f:1a:48:5e:7e:60:e6:33:f4:92:78:62:3f:13:e3:74:
3f:1d:e5:83:07:9c:4a:fa:04:9a:bd:e9:19:fa:9b:28:fb:aa:
e0:5d:77:d9:9c:26:6d:dc:5a:43:85:25:ff:28:d4:01:ea:85:
5c:6a:7a:17:81:28:51:50:45:b3:c3:33:d2:c5:de:12:3c:9d:
68:c5:7f:75:5f:4e:cc:62:cb:c7:eb:7b:99:d0:fe:9f:f3:a5:
01:ba:69:21:e9:61:cd:33:ee:01:9d:dc:8c:fb:59:ac:f0:d1:
37:3b:d8:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:52 2025 by rpki-client