Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json)
Hash identifier: 2mXQBEQ8XyLOCvVKtjudJ/FIzQJAaeNKifpfhzpxilY=
Subject key identifier: BC:56:A4:C9:1D:87:EA:1F:CE:14:73:CE:5E:4F:6E:BD:72:2C:69:1D
Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Certificate serial: 0194C42C9BE4041ECAF11E3480CC02EA4194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
Manifest number: 142C
Signing time: Sun 02 Feb 2025 01:00:45 +0000
Manifest this update: Sun 02 Feb 2025 01:00:45 +0000
Manifest next update: Mon 03 Feb 2025 01:00:45 +0000
Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: gr+hWjAUuk47Nofjl7jug3dBLszMo56pJZ3h3oLHsVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:9b:e4:04:1e:ca:f1:1e:34:80:cc:02:ea:41:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Validity
Not Before: Feb 2 01:00:45 2025 GMT
Not After : Feb 3 01:00:45 2025 GMT
Subject: CN=bc56a4c91d87ea1fce1473ce5e4f6ebd722c691d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:73:aa:e9:81:20:08:55:e2:d4:b1:d5:88:ec:
a7:a7:13:c1:b3:57:7b:71:02:53:c8:d2:a2:df:08:
ab:8e:44:2e:b8:df:63:74:38:0a:3d:88:28:38:e4:
9c:a3:d5:a5:73:a3:56:c4:2e:c6:8d:10:42:5a:9f:
ce:44:59:14:fb:85:de:95:a1:33:d8:bd:13:cf:96:
95:cb:b5:0e:b2:e8:cc:52:a3:5f:95:65:98:93:dc:
29:29:09:00:8f:f9:88:bf:f7:e1:48:77:fa:d5:58:
65:a1:ce:bc:d5:30:e9:75:4c:03:29:d3:ff:68:3e:
76:74:d4:84:50:a0:9b:a8:74:7e:70:fc:15:72:97:
c0:06:7b:e9:0e:94:4d:20:c0:c3:11:50:4f:c0:a2:
76:cf:64:ca:ed:3c:f2:de:7a:35:17:da:fb:a5:c5:
b2:ac:15:16:88:c7:dd:91:3e:49:32:a6:34:3e:54:
21:b5:e1:fe:37:6e:c2:2c:f4:42:4e:eb:d9:ef:5e:
e8:4a:67:a1:fc:00:84:d4:01:5f:06:53:02:15:61:
3c:4a:66:2d:91:10:58:3b:91:0b:0c:f7:02:d8:d4:
e9:0e:00:97:90:e3:57:c4:58:a8:60:48:83:f9:b7:
38:92:15:b5:93:f0:34:c7:10:4f:37:a6:12:5c:1c:
aa:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:56:A4:C9:1D:87:EA:1F:CE:14:73:CE:5E:4F:6E:BD:72:2C:69:1D
X509v3 Authority Key Identifier:
keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:8b:72:77:38:e6:30:a8:7f:0e:cd:c8:09:f1:1b:14:c4:ed:
e4:7c:98:f5:ac:b1:44:61:8a:96:ec:27:f6:be:65:dd:4d:4c:
a7:b2:af:0b:a4:61:72:5c:d1:9e:29:96:68:45:f7:4a:4c:79:
65:fa:0d:76:ae:b5:8f:db:9c:3d:fa:f6:1e:2c:a4:59:a5:08:
92:25:28:1b:12:b7:54:b1:0f:bc:9d:2c:60:30:b1:d4:67:b9:
7f:c5:cb:62:a2:fc:67:4f:9f:d2:fe:06:de:db:b7:09:12:2e:
62:45:8d:a0:c0:03:21:14:9f:7f:3f:7e:c2:55:8a:38:0e:53:
4f:2e:db:37:8d:8b:4f:9a:40:11:98:46:23:0d:f9:3b:96:e1:
24:1d:56:ac:29:70:f0:3a:14:44:4a:62:65:45:50:13:35:b5:
71:3c:85:e2:b4:97:dd:c2:c3:b8:69:f9:be:92:83:9e:03:65:
16:a3:a7:4f:68:ad:51:b1:1d:76:c7:44:65:be:6a:aa:1b:35:
c3:57:d5:0d:49:8f:3f:9f:32:13:04:5c:82:f6:3c:10:4e:d7:
31:63:e0:01:f1:62:fc:c2:6c:c7:0e:c8:af:5d:a3:e3:31:85:
44:cc:c3:a6:66:de:d5:38:91:c6:56:f1:b7:fe:ce:3b:95:28:
d9:66:a5:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:59:45 2025 by rpki-client