Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft
File: yxAkP5hjb6oPtsWua62bCrrSNDg.mft (raw, json)
Hash identifier: mxlnhF9s5enu3aqbfBnG+KBFY6UH/HqWlxKCZoYlbT4=
Subject key identifier: 10:2B:41:33:DE:07:6A:B4:13:4F:5A:0D:19:11:FE:4E:9E:0D:5A:20
Authority key identifier: CB:10:24:3F:98:63:6F:AA:0F:B6:C5:AE:6B:AD:9B:0A:BA:D2:34:38
Certificate issuer: /CN=cb10243f98636faa0fb6c5ae6bad9b0abad23438
Certificate serial: 0194C508222FBD323013CC477272F7EB147B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft
Manifest number: 0D40
Signing time: Sun 02 Feb 2025 05:00:31 +0000
Manifest this update: Sun 02 Feb 2025 05:00:31 +0000
Manifest next update: Mon 03 Feb 2025 05:00:31 +0000
Files and hashes: 1: mFdOLgpY75BCI6HwFdhbm64m2HU.roa (hash: dTVNpH8dt8wvAbtnwcqlrtySsedQZdW+bUyu+40b16A=)
2: yxAkP5hjb6oPtsWua62bCrrSNDg.crl (hash: w8dcI9Tgugz6i2WM+DbPq881ReTPaUcJ4CjRsD1ljrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:08:22:2f:bd:32:30:13:cc:47:72:72:f7:eb:14:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb10243f98636faa0fb6c5ae6bad9b0abad23438
Validity
Not Before: Feb 2 05:00:31 2025 GMT
Not After : Feb 3 05:00:31 2025 GMT
Subject: CN=102b4133de076ab4134f5a0d1911fe4e9e0d5a20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fa:c7:76:59:cb:20:08:67:63:83:e7:c8:32:
57:29:cc:9d:ca:6d:46:1f:e3:52:f6:6b:fe:7d:ad:
ac:ca:35:ae:1b:2e:75:66:cc:76:6b:30:ac:85:b6:
45:2d:15:96:1f:1d:3d:17:32:b0:93:49:51:ad:75:
21:88:1e:1c:96:52:38:dd:ab:89:60:2b:87:12:9a:
07:d2:ef:8d:cf:1d:ff:71:8f:87:51:39:2a:43:b0:
f4:5e:89:6a:5f:be:7f:b3:ca:65:1b:a3:35:78:4b:
55:8d:fd:af:b3:56:a2:87:9e:a6:66:89:87:bb:78:
c5:79:39:eb:4b:0e:f0:87:39:17:12:81:c4:1d:ab:
ca:e7:e8:fa:8e:48:c8:7d:69:ec:9b:7c:fd:3f:41:
cb:42:34:41:bd:b6:bf:1c:df:fa:79:e0:fa:bf:cd:
c1:b8:bf:3c:41:3d:3e:d9:43:23:cb:5f:61:20:bd:
01:97:1f:58:0a:2d:49:ee:a1:f2:b3:a4:38:2a:4c:
f4:b9:49:a8:de:7b:15:30:7f:fd:02:4f:52:1c:35:
ca:40:d7:4e:7a:c4:5c:e3:5a:80:88:a5:d0:02:fc:
3a:2c:fc:4d:5f:3d:8c:0f:9f:58:93:1c:0c:9a:b3:
6d:16:15:3a:1f:75:98:a9:98:74:45:5b:53:d4:8c:
2e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:2B:41:33:DE:07:6A:B4:13:4F:5A:0D:19:11:FE:4E:9E:0D:5A:20
X509v3 Authority Key Identifier:
keyid:CB:10:24:3F:98:63:6F:AA:0F:B6:C5:AE:6B:AD:9B:0A:BA:D2:34:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:08:4c:28:bb:a2:92:33:b8:01:51:01:7a:30:0d:25:5d:75:
aa:79:65:61:f9:af:10:b1:82:cd:1d:71:d9:91:06:84:58:d6:
43:cf:79:1f:98:8b:71:78:78:95:1c:d1:c4:e7:af:a6:6e:f0:
30:ce:c6:e8:e3:59:b4:82:0f:ad:6f:88:a7:75:5f:66:6a:6b:
fe:e9:71:aa:3f:23:68:22:6b:89:31:52:00:eb:15:ee:82:93:
ab:f3:af:6a:b9:d4:1c:3d:7c:c1:2a:71:68:6c:62:8e:40:47:
93:cc:cb:b0:d8:c2:26:a7:e0:27:7d:b5:26:09:3e:ed:b5:95:
02:1e:b4:28:ce:51:f8:97:32:c2:76:80:bd:fb:26:08:7b:0b:
7b:fa:c3:53:07:a7:a9:36:d1:06:0c:c2:ec:ba:9b:4d:39:da:
da:37:a0:3c:5a:05:4f:a9:0b:db:fb:43:eb:00:c3:4d:7e:f2:
df:3c:de:70:d4:89:2c:a7:71:de:4b:c5:f0:dc:0a:b6:bd:6f:
14:84:f4:56:5a:49:c0:07:30:9b:2f:51:d0:d2:c0:cc:85:44:
d6:5b:d0:f7:3a:30:b5:b0:dd:21:79:d3:5f:f8:64:e3:f0:c4:
c6:9f:d9:f9:9b:49:fd:a3:9f:bc:4e:e7:b2:2a:06:af:4d:d2:
28:b6:74:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:26 2025 by rpki-client