Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: rkVqyK2Q6I1BTVcBVvz4YqpKEhafKfVY7EAgCx+AzWk=
Subject key identifier: 86:F1:2C:AE:EA:35:B5:D5:99:B4:70:F1:E7:E5:8C:13:B6:27:D0:FC
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 0194C3F5C120B23F8650DB88BD2CD4BBCE3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0A3F
Signing time: Sun 02 Feb 2025 00:00:50 +0000
Manifest this update: Sun 02 Feb 2025 00:00:50 +0000
Manifest next update: Mon 03 Feb 2025 00:00:50 +0000
Files and hashes: 1: 7-uxb2sVoc0kcAT2m9SP5qVnZ8E.roa (hash: acdZUKxa+ye22RHZ+hlpmz4eeOUGVIjJiD1cAB8HEbo=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: nRpNgOvoTV0bWQlVeE51frjxbTmaIIh70Z0xIRgIY1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:c1:20:b2:3f:86:50:db:88:bd:2c:d4:bb:ce:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Feb 2 00:00:50 2025 GMT
Not After : Feb 3 00:00:50 2025 GMT
Subject: CN=86f12caeea35b5d599b470f1e7e58c13b627d0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:02:7a:ca:28:8c:07:0d:ec:70:1c:70:f2:a3:
36:19:ac:92:26:42:ff:e5:8d:47:14:fc:34:c5:b6:
06:88:7e:c9:15:0d:0d:c2:97:13:17:fe:fd:6a:67:
e5:ba:6b:5a:a8:29:3d:c5:cf:ae:c6:54:d1:3b:cd:
12:1b:2c:9c:e9:ab:35:fd:dc:a8:a5:55:af:cf:18:
4d:a0:45:44:09:a0:25:68:41:97:45:c6:17:86:56:
1f:f0:ff:b1:13:5a:1f:b6:ef:83:07:b5:75:d2:c4:
67:0b:81:8a:ad:26:d0:cd:09:65:6e:3f:01:01:6b:
f6:26:a8:28:62:e7:3a:03:f2:89:4a:4f:16:7c:51:
fe:c6:f7:0c:7c:84:36:e3:5d:f4:68:e9:78:0c:42:
0f:36:28:74:8d:61:b9:58:13:a0:a4:7e:22:c6:9c:
55:63:be:da:ee:29:af:ef:92:e8:d7:b1:d9:b7:ee:
74:20:0c:da:d3:a6:5f:cd:81:d9:71:2b:78:97:92:
c6:15:97:04:e5:97:b4:14:b5:e8:5e:2d:16:69:84:
51:74:99:79:06:79:ac:0f:b0:76:87:40:04:59:33:
f4:7d:a9:4a:7e:7a:ce:fe:82:f5:ba:e4:29:03:2a:
e7:9b:50:ff:ae:36:cd:b4:b2:1a:20:9d:67:77:3f:
9a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F1:2C:AE:EA:35:B5:D5:99:B4:70:F1:E7:E5:8C:13:B6:27:D0:FC
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:b2:6a:2d:f9:c5:78:b2:c6:b7:d8:be:a0:3a:a5:2f:a5:c6:
cd:eb:e2:a3:41:77:6d:1b:2b:66:94:64:21:16:81:f4:2b:35:
e3:78:a5:79:ec:e0:5d:74:93:35:9b:4b:20:03:55:36:87:b3:
de:ab:ae:7f:50:58:0d:65:66:f3:27:62:b0:75:93:cf:5c:50:
90:33:2c:1c:7e:0c:31:30:88:03:98:e7:df:3a:37:74:0e:ee:
62:3e:75:1a:ff:35:d7:41:e4:f1:0f:21:73:eb:63:c7:ce:c4:
22:c9:42:7d:47:ad:e3:ef:d7:af:67:d1:9b:b7:19:9d:32:a4:
ab:34:c1:e3:e7:65:f9:b5:93:71:7a:68:dc:88:a8:11:0f:06:
6a:f4:fd:23:4d:64:7f:d2:c9:75:b2:7f:ee:0b:18:1f:f0:3c:
73:b6:d4:47:88:db:4e:6b:e4:91:7d:9b:e9:d8:23:f5:44:66:
5a:eb:55:86:18:ca:5f:7f:4d:a8:04:f0:b5:34:34:3d:5f:c5:
ef:cf:d5:58:ac:44:b4:56:3c:1f:7e:03:3f:dd:fd:85:cd:df:
81:0d:8c:5a:5f:88:d0:2b:a8:06:1a:48:19:f0:e6:9e:20:b9:
f7:94:ea:7f:37:6d:aa:fc:d1:ad:5a:c1:17:e2:fb:5e:7b:f8:
fa:57:27:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:43:01 2025 by rpki-client