Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfa9ee-8924-4b95-a9dd-0b1802184b09/1/yk0UHzr3GovPhSynYfy03sAVeOQ.mft
File: yk0UHzr3GovPhSynYfy03sAVeOQ.mft (raw, json)
Hash identifier: z0Fzabe/9/eVD5krgiooATEIC5iKRTOIgIZVWiKHEpk=
Subject key identifier: A7:04:85:31:F0:C3:F7:AB:7F:7B:F2:97:88:B6:06:B1:4D:D4:37:1C
Authority key identifier: CA:4D:14:1F:3A:F7:1A:8B:CF:85:2C:A7:61:FC:B4:DE:C0:15:78:E4
Certificate issuer: /CN=ca4d141f3af71a8bcf852ca761fcb4dec01578e4
Certificate serial: 0191F9348F9E5800EE10E413AA08CAB920B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yk0UHzr3GovPhSynYfy03sAVeOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfa9ee-8924-4b95-a9dd-0b1802184b09/1/yk0UHzr3GovPhSynYfy03sAVeOQ.mft
Manifest number: 0128
Signing time: Mon 16 Sep 2024 05:00:57 +0000
Manifest this update: Mon 16 Sep 2024 05:00:57 +0000
Manifest next update: Tue 17 Sep 2024 05:00:57 +0000
Files and hashes: 1: IsYV5KFjV1eMtUFF78omQ671c-4.roa (hash: l3eeBhvF3ltPJ6fCJ5QTHsALNO/HMhtGk+nuwqJsHzc=)
2: yk0UHzr3GovPhSynYfy03sAVeOQ.crl (hash: NDjoPZOfq+paDCr6l6v7DmwmEo9+1RDFAdRJKNgn9pY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfa9ee-8924-4b95-a9dd-0b1802184b09/1/yk0UHzr3GovPhSynYfy03sAVeOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfa9ee-8924-4b95-a9dd-0b1802184b09/1/yk0UHzr3GovPhSynYfy03sAVeOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yk0UHzr3GovPhSynYfy03sAVeOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:34:8f:9e:58:00:ee:10:e4:13:aa:08:ca:b9:20:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca4d141f3af71a8bcf852ca761fcb4dec01578e4
Validity
Not Before: Sep 16 05:00:57 2024 GMT
Not After : Sep 17 05:00:57 2024 GMT
Subject: CN=a7048531f0c3f7ab7f7bf29788b606b14dd4371c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4c:0d:94:91:ab:c6:6d:85:d0:a1:66:05:d7:
5d:6f:66:b4:6c:d4:b3:68:4b:9b:84:27:70:37:2b:
20:65:8a:2f:b1:9f:a1:f1:e7:34:46:33:22:4f:e1:
2f:8f:c8:af:d5:42:e7:bf:12:c5:5b:91:3f:25:88:
6b:15:ad:89:6c:eb:eb:79:6f:b7:1e:75:54:2e:72:
f0:f9:7e:3e:0b:16:4c:c6:a5:57:ad:e5:4f:36:45:
12:55:15:25:77:00:3d:54:7d:29:6e:ca:fe:6b:ae:
02:65:db:4a:e1:56:31:b1:45:ec:1e:07:46:52:e7:
1e:e3:bc:bc:70:6d:51:d0:8e:4b:7a:20:53:18:b2:
fd:62:af:8f:ef:49:df:05:4d:67:f8:ab:63:35:26:
a3:be:cb:9b:9a:93:94:22:4a:64:a9:1e:4a:df:0a:
16:2d:d5:88:d0:17:99:15:1c:65:db:16:2e:40:6e:
91:3d:ef:55:c6:3e:d9:d8:c0:e7:9e:d4:22:b7:f0:
75:9f:ab:08:33:d3:3e:fb:06:21:7e:fe:f3:2d:16:
ff:d6:46:63:d5:0a:91:3e:ce:fa:0b:1f:5d:a1:01:
46:2b:1d:45:55:10:e6:db:24:ce:7e:67:91:d7:6d:
c2:fd:dd:cc:bc:72:e5:02:6f:39:69:a0:a1:76:4b:
8d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:04:85:31:F0:C3:F7:AB:7F:7B:F2:97:88:B6:06:B1:4D:D4:37:1C
X509v3 Authority Key Identifier:
keyid:CA:4D:14:1F:3A:F7:1A:8B:CF:85:2C:A7:61:FC:B4:DE:C0:15:78:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yk0UHzr3GovPhSynYfy03sAVeOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfa9ee-8924-4b95-a9dd-0b1802184b09/1/yk0UHzr3GovPhSynYfy03sAVeOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfa9ee-8924-4b95-a9dd-0b1802184b09/1/yk0UHzr3GovPhSynYfy03sAVeOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:cc:a7:34:62:16:12:4a:9d:9a:21:f5:d1:da:49:1e:35:70:
2d:51:53:c4:f4:74:00:96:ea:bd:34:00:4d:99:2f:32:c0:a0:
1b:90:44:3d:47:43:31:2e:4b:7c:c7:f3:b5:5e:2a:39:d7:7e:
7f:ce:07:04:9e:c9:c8:3d:aa:05:f5:6d:7e:4d:2e:16:46:da:
58:bd:c5:2c:cd:b2:18:c6:ac:d8:db:c8:78:c9:f5:25:ab:65:
f5:e7:f3:28:e7:7d:8c:a3:92:be:a3:0b:be:24:a5:f1:ab:f4:
a3:d8:53:fc:43:2b:b6:c1:4f:59:e4:a2:e1:9e:50:83:48:6d:
da:d3:09:1b:37:f7:54:70:cf:5d:28:3c:0d:53:2f:4b:8f:f5:
4d:4b:7b:f2:04:21:60:88:85:d0:9c:11:9e:33:f0:b1:10:69:
69:e0:f5:96:1c:69:b6:03:1a:a4:76:0e:99:26:02:16:72:78:
90:01:4a:49:40:98:0f:e7:3b:db:d7:08:64:29:3c:f5:d0:6f:
cc:18:de:c6:d7:9a:6c:3d:e0:3d:42:2d:ea:37:9f:e9:f7:d5:
cc:69:f6:71:df:89:4b:19:ff:c8:11:7c:73:c2:73:4a:41:cd:
2d:b0:8a:2a:82:83:8d:9e:a9:42:be:fa:6f:96:18:f4:ad:8a:
0d:31:23:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:30:56 2024 by rpki-client on console-fra.rpki-client.org