Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: tjuySYbNSGOA81fiiHVPIOZcXx1lNViEXVDV7McyRFU=
Subject key identifier: 39:29:A7:70:B3:F5:52:C9:1D:88:27:6C:60:F5:B7:02:38:7A:CA:63
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 0194C49A2C4C67CEC339D199D23A2CC8AFBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 0285
Signing time: Sun 02 Feb 2025 03:00:25 +0000
Manifest this update: Sun 02 Feb 2025 03:00:25 +0000
Manifest next update: Mon 03 Feb 2025 03:00:25 +0000
Files and hashes: 1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: fkJIY6LQ3A6Nw8/xUstbj43aZKZTjwKr2dHuf8QGSE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:2c:4c:67:ce:c3:39:d1:99:d2:3a:2c:c8:af:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Feb 2 03:00:25 2025 GMT
Not After : Feb 3 03:00:25 2025 GMT
Subject: CN=3929a770b3f552c91d88276c60f5b702387aca63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ff:1d:54:92:bd:8e:1e:28:12:8e:98:f1:61:
d2:c8:a9:5b:99:58:f9:ff:5c:e2:92:9b:18:fb:e0:
5c:f9:db:47:01:c4:92:06:4a:6d:0e:6b:fa:9e:b0:
61:0c:cf:08:83:bd:1c:22:4f:35:e4:c1:c9:43:9d:
4a:f5:90:7a:78:94:c3:40:a6:f0:12:92:c1:93:40:
4e:70:aa:32:3f:4d:c4:91:49:af:3e:62:96:7d:1c:
92:47:97:2c:74:32:77:e1:42:82:ae:95:35:68:ab:
33:46:e2:f7:cd:04:7e:97:77:51:22:0f:f0:f4:69:
62:b3:ef:96:ea:11:a1:b2:db:01:35:51:ab:6c:68:
23:84:22:e6:a0:af:c3:97:e0:05:64:7f:d9:85:3e:
95:cf:fe:79:56:ee:85:de:d9:c9:15:0c:31:9f:e8:
e4:fe:28:6b:9d:64:06:e1:46:28:e0:58:15:1f:be:
23:cd:ed:7f:2b:80:57:89:79:94:30:9d:3c:9c:e2:
9f:bd:23:2e:d9:9b:10:ad:34:87:34:0e:b6:ee:de:
16:91:e1:6c:a8:76:34:a8:5f:7d:13:8e:d0:c8:13:
4e:1f:86:c0:ad:25:6a:9a:bf:f0:7e:f6:82:ab:5f:
30:06:b5:49:63:69:32:a5:89:2a:b4:5f:00:6d:4b:
cb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:29:A7:70:B3:F5:52:C9:1D:88:27:6C:60:F5:B7:02:38:7A:CA:63
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:0f:91:2c:51:59:9d:73:24:78:c8:70:a9:ce:34:0b:0c:f7:
db:31:f1:ff:82:d9:40:34:b2:89:7f:41:a7:cb:04:fc:15:99:
76:fb:7e:47:43:bc:5e:f3:1b:a7:5e:3f:6e:67:a0:94:d6:15:
16:28:9c:da:80:1a:de:04:3a:93:a5:a6:9e:81:3c:12:81:6d:
6d:16:ac:d1:18:68:55:4c:23:14:21:db:83:4a:e0:05:b3:ba:
5d:38:21:bc:59:ef:6d:83:a0:3b:0f:cb:ed:5f:83:6a:b3:dc:
eb:bb:e9:d8:db:e6:83:e0:24:d0:77:12:94:70:3b:8a:c0:c0:
b0:84:f3:f1:7b:36:6e:c1:77:33:ee:9a:77:36:86:1a:ba:94:
b3:23:e8:89:fc:3b:0f:0f:af:15:72:26:51:8e:13:97:f0:5c:
06:68:69:06:b7:6d:e2:c5:41:aa:cc:60:48:54:2a:a2:eb:31:
be:d9:de:a0:71:d7:c4:68:b3:9d:08:e7:83:32:d2:0f:c3:97:
cf:57:a5:fb:5b:15:8f:83:34:3d:54:3a:12:af:d4:ee:72:6d:
8b:5b:1e:b8:aa:3c:56:82:7f:d4:96:33:3b:a5:fd:9a:d4:d9:
c2:bc:f8:14:a1:2b:72:a3:8a:c4:63:2f:58:49:b3:6a:57:ef:
05:1c:ec:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:31 2025 by rpki-client