Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
File: yikNsvcpBfDbYmsAW6zwiHjRe6w.mft (raw, json)
Hash identifier: fu2opHsJtGYG2z1UulaHKll/HfHhJ1FOrkYgVdyynCU=
Subject key identifier: ED:44:55:BF:6B:4E:5C:9B:82:49:45:E6:F9:81:FB:8D:E3:67:F8:4A
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 018F8E5D9A45765247640030A2E385A1C8CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
Manifest number: 05A3
Signing time: Sun 19 May 2024 01:00:50 +0000
Manifest this update: Sun 19 May 2024 01:00:50 +0000
Manifest next update: Mon 20 May 2024 01:00:50 +0000
Files and hashes: 1: 1-oSkEZNl7oOuLWLatV7kIyeGN-Y.roa (hash: U3AcrDTCQeUe22U8SvBUK55lLbyZk0PixDPa7abkeDc=)
2: 9aOJ043KFDsIPZUsVH-g99pMaDE.roa (hash: 3jUteN39jKQ8krkIrL48Rzx2zrT8TH54DoKWh0O7GY4=)
3: E9nTd0HxRXn85H6APNlVfd5lRfM.roa (hash: D1fBzcJrt6OiSqFHUQJHsaDbYD8kzIy/ZxUMfzcwGL4=)
4: OwCTttVk_ltfleXjUkbqtslpWBA.roa (hash: 7ZKi/o9CkZqGu1dOojt1G/PX+BaFCGeTvCrNxHBpwo0=)
5: goXLpjheFgYVKUr1D5z2B-2G_yw.roa (hash: hgPsuhuDYffiMMXKfhX/UEBqKaUynbR0o8NY1QPWSW8=)
6: nav9JRraCb8iwztqS6EXw10HVPQ.roa (hash: Gluqch7b3Ml+yDAxPBME4aFop1ZgqQSUfadYYFKMpho=)
7: yikNsvcpBfDbYmsAW6zwiHjRe6w.crl (hash: 05wxHsSLMREvG1w2sWndouHTDG8NB8h3EZASQHbi7c0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 01:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8e:5d:9a:45:76:52:47:64:00:30:a2:e3:85:a1:c8:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: May 19 01:00:50 2024 GMT
Not After : May 20 01:00:50 2024 GMT
Subject: CN=ed4455bf6b4e5c9b824945e6f981fb8de367f84a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:52:da:77:00:47:84:84:07:fc:30:38:93:b6:
fb:cf:28:1c:f3:68:68:e8:7d:2c:10:47:38:e7:06:
aa:53:29:1a:d7:a5:65:8d:1f:81:ee:96:60:55:90:
53:55:e8:96:ae:4a:29:9b:56:1f:5d:de:24:0d:13:
12:f2:71:7a:a9:7f:c4:1a:47:ec:f7:3f:60:21:3f:
57:16:29:0f:54:26:d6:29:57:8d:b4:fe:27:c9:88:
bc:bc:a2:d6:b5:cc:ba:16:1d:9e:71:d3:e4:42:5f:
01:57:29:d4:76:95:bc:8c:0e:db:4e:1f:6a:b6:81:
63:a0:10:c8:c6:e1:52:fc:56:1e:35:66:84:b5:d6:
dd:38:7f:e8:f6:eb:0b:e7:48:58:c0:ae:56:2a:57:
f0:f4:44:14:a6:ef:6e:57:e3:ff:10:40:55:62:0c:
89:15:d3:ea:5c:5e:66:c7:2d:9e:e9:e0:1b:5c:82:
e4:02:11:cd:f7:f3:72:f3:ae:63:f6:66:63:dc:36:
a3:40:5d:50:52:4e:a5:20:1b:df:92:b6:a9:6f:cc:
fb:8e:e0:a2:d6:ee:6f:bf:c5:6d:95:3f:1b:13:bb:
08:f4:79:3e:58:e9:c9:73:cb:bf:e5:cc:80:6d:6c:
99:79:df:3f:fc:6c:64:c8:cc:c9:4d:5f:c5:fb:55:
f6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:44:55:BF:6B:4E:5C:9B:82:49:45:E6:F9:81:FB:8D:E3:67:F8:4A
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:98:db:b6:f0:f8:60:a0:f9:3b:34:cc:7a:ae:65:46:e3:cb:
53:ff:d2:6d:e8:62:c4:62:14:94:42:e1:43:22:91:d9:89:04:
5c:b7:8c:bb:61:38:f7:c7:32:f9:30:ec:8c:e9:c9:93:2c:a6:
05:08:27:2a:6c:a3:d7:3e:92:c4:dd:0d:d5:a8:81:6f:88:b9:
74:e2:2a:25:6c:6b:e9:e6:3d:d9:3e:91:d9:ac:d1:ba:5f:97:
3d:4e:1f:a6:03:8b:00:2a:d9:da:7e:cd:ca:b5:8b:2a:02:44:
c0:31:67:38:76:29:73:85:59:fd:b7:ee:9f:ba:23:1e:4f:ef:
9b:ae:e4:6f:db:e2:52:7b:20:2e:5a:ea:89:57:62:6d:86:6a:
7e:1b:36:9b:a3:ca:bb:0c:6f:82:a4:75:0a:3c:38:73:61:9e:
e5:e2:02:05:d3:29:5c:f3:11:0e:63:08:f2:6c:5e:0c:b8:6a:
c9:52:1b:81:81:49:ba:7d:ff:e7:5e:eb:32:fb:db:d9:84:fa:
9b:dc:7a:5b:40:26:47:d7:a3:f4:e7:a4:de:fb:cc:fd:cc:82:
60:ac:f2:f4:6d:42:c6:d7:56:92:82:25:f6:92:68:aa:03:ea:
81:bd:b9:69:74:82:33:14:34:8b:19:89:71:4b:c7:c7:43:12:
eb:e1:d7:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 07:08:32 2024 by rpki-client on console-ams.rpki-client.org