Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
File: yikNsvcpBfDbYmsAW6zwiHjRe6w.mft (raw, json)
Hash identifier: 97YM4rslxIndkrKkAgVvwwlrIc9VOhoG2zhtXWMLb9c=
Subject key identifier: 64:47:69:99:0E:F3:C9:F7:1B:D6:89:BA:E3:73:10:E6:B5:E4:3A:4B
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 01950FB401A5B3AB28F4B918C90F05637672
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
Manifest number: 087E
Signing time: Sun 16 Feb 2025 17:00:09 +0000
Manifest this update: Sun 16 Feb 2025 17:00:09 +0000
Manifest next update: Mon 17 Feb 2025 17:00:09 +0000
Files and hashes: 1: 9ioUlNkUNYBcxyTxkX3rgt5A0s0.roa (hash: FAkZUvlkFTeURhyGPk/Cqy2vo8UntR2/HehcNI9EJVU=)
2: Fw_kxU9y2ZFFUFhTyjj3cOM8HE0.roa (hash: RbilBDizHS14qZ4Da7c1uCTbplJrxj3lujK+7Ie1xww=)
3: OmRK258WRmdVFaT1b4UKAJEmXF8.roa (hash: S9zpMDpc5tR1fodrfsOibu5FLjUO5h2bsiNgqTRPaIQ=)
4: _6UZkqieR9kIkKZwwfKfkm35fd4.roa (hash: TAVIhSh9eMt1b6339NxSWJ46JPMbHN7C8v9n3qx3ibk=)
5: gqWeYouP3tCgtjbkj-l_gQg8hIo.roa (hash: /JDKYsMSdFrnBptTFdWQqSfzinHaa7LMqQq1Q4agYW8=)
6: iqYLpAFtuo6gr-j-Ly-Vnr8R2MU.roa (hash: qX/Ce2Cu2rGWIQEWtxm8FeM0QBiPxiljZdApDi//miE=)
7: yikNsvcpBfDbYmsAW6zwiHjRe6w.crl (hash: xp55Zp0QQXQGiXA7uGK4Xf9EO7L6A95jEs3GTUeOntA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0f:b4:01:a5:b3:ab:28:f4:b9:18:c9:0f:05:63:76:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Feb 16 17:00:09 2025 GMT
Not After : Feb 17 17:00:09 2025 GMT
Subject: CN=644769990ef3c9f71bd689bae37310e6b5e43a4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:94:63:90:36:b9:24:1f:f4:63:d8:c2:70:db:
22:f1:78:f8:61:e2:a9:88:1f:e0:59:ec:41:9b:0c:
9a:b0:b6:dd:ab:f9:96:26:95:0f:51:90:ca:c2:10:
cb:ea:fc:e5:23:8c:63:5b:41:78:ce:14:29:ce:4a:
81:79:31:2f:09:ad:18:7e:03:d0:4e:cd:28:b8:1c:
1c:9b:19:60:8d:02:44:cf:af:fa:8a:ac:36:78:ef:
b9:99:c3:2b:1c:3b:a9:11:ca:67:87:3d:04:9a:4c:
0b:3d:46:f8:cc:7d:20:c9:42:74:69:4f:45:7f:a6:
ea:1c:78:90:0e:a7:86:02:31:15:09:6e:f8:27:fd:
df:dc:2f:19:63:26:9c:18:7f:e6:ed:02:6f:52:2d:
cc:75:21:73:b6:65:47:50:3c:04:35:73:97:07:56:
80:47:ac:ab:39:51:03:51:3b:6d:23:cd:f7:31:e7:
b8:48:59:ed:5f:f0:39:ae:2c:19:6d:b5:38:ae:cb:
54:4c:f2:b7:22:9d:a9:07:e0:94:44:53:cb:bc:2b:
09:e7:40:bf:77:72:59:32:c7:a3:de:8b:1f:05:3d:
14:a5:13:88:a6:ab:d7:3a:f7:e0:70:d5:50:f3:c6:
60:bb:c3:35:1e:b6:0f:e5:99:2f:ea:c4:ca:41:9b:
4e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:47:69:99:0E:F3:C9:F7:1B:D6:89:BA:E3:73:10:E6:B5:E4:3A:4B
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:64:11:d0:aa:c2:95:30:35:08:bf:76:59:8a:39:14:3d:b9:
61:9e:0e:fd:bd:bc:4f:d1:47:a7:e4:39:bc:dc:fd:4c:2e:73:
61:24:ce:f7:30:68:5a:6c:aa:da:36:d6:bb:e0:50:5c:1e:74:
a4:a0:33:a2:cb:be:02:b8:ec:a4:94:15:ac:b7:c3:4d:10:f5:
d9:d7:de:92:d6:cb:97:bc:86:ac:d2:85:8e:1c:9f:41:d5:f9:
1c:56:19:ae:dd:36:0d:ac:49:49:52:52:ab:29:24:14:ad:e4:
ea:7d:22:05:29:07:47:b0:0c:74:4c:c2:83:9f:bb:ec:93:d0:
0c:64:57:2f:9b:a5:21:47:0c:1a:4b:f9:0e:9f:98:82:ff:65:
c5:fd:d2:a8:32:94:e4:94:58:28:e1:e8:eb:a1:83:14:e2:5d:
57:6b:93:43:37:2d:93:74:46:bd:bb:91:82:42:10:03:12:be:
6e:d7:e4:d2:c8:f2:40:aa:6b:aa:2e:d9:2e:f2:33:da:fb:60:
6d:ec:d9:2b:88:2d:f6:be:c4:11:e8:f5:66:80:f7:86:12:82:
7d:e9:fa:97:71:4f:42:ed:f2:f9:29:18:8a:23:9d:63:b6:65:
67:d1:6a:6c:c0:b6:9d:ce:24:da:14:5e:1e:10:31:90:90:aa:
66:b8:5a:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:00 2025 by rpki-client