Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
File: y9lerW0qHa8u9oestMKedgdrKAk.mft (raw, json)
Hash identifier: 0YM1x7He4exgcG7i+wbSMohQZJwclspfdRBbU124KPk=
Subject key identifier: 75:9F:CF:31:73:28:64:1A:CF:DD:B2:EA:C0:40:7C:26:1A:92:0E:F7
Authority key identifier: CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
Certificate issuer: /CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Certificate serial: 019511D983B656FA0AB413F1E239888972BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
Manifest number: 0838
Signing time: Mon 17 Feb 2025 03:00:22 +0000
Manifest this update: Mon 17 Feb 2025 03:00:22 +0000
Manifest next update: Tue 18 Feb 2025 03:00:22 +0000
Files and hashes: 1: dLJ0i3DKxKOgLSZU6DT_1_-wzDs.roa (hash: R+7BGQyfLFShlywgi4Re33H2XJ0XnH/YSJRVXJB4EDE=)
2: y9lerW0qHa8u9oestMKedgdrKAk.crl (hash: Ci1uVzT8NLl22YdsY7w3F51s1s+ZN/S4rW2B7uWr2XQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:83:b6:56:fa:0a:b4:13:f1:e2:39:88:89:72:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Validity
Not Before: Feb 17 03:00:22 2025 GMT
Not After : Feb 18 03:00:22 2025 GMT
Subject: CN=759fcf317328641acfddb2eac0407c261a920ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fc:e5:f5:23:50:d6:57:35:dd:da:4c:08:9e:
14:51:48:4c:64:af:bd:a0:98:ad:e6:24:62:b3:7e:
0a:23:af:89:cc:26:40:58:6a:ad:76:0a:2f:2e:d6:
25:4c:74:91:da:cc:a6:c4:21:3a:13:53:74:33:72:
a9:db:61:f8:e3:72:6c:aa:8d:b1:f7:d8:b1:2f:17:
4d:c1:5e:2e:bd:48:02:e3:9a:ee:5a:74:44:99:da:
d8:f0:08:b8:77:f9:4d:47:4c:16:4b:48:50:43:7c:
f2:bc:a4:4e:a4:9e:3a:98:53:4c:cc:f8:23:33:7e:
09:8a:64:3e:e7:ba:26:04:4c:5a:a9:43:23:9d:01:
52:b9:ef:f2:08:bf:79:fe:4a:6d:ff:61:a6:c0:62:
49:9e:59:97:04:1b:a9:9a:c9:54:be:4b:3d:4c:fb:
74:50:f5:71:47:69:8d:7d:3f:8f:08:77:fe:fe:65:
48:eb:ed:1e:95:bd:b2:31:1d:69:f9:7b:5a:e3:b7:
3f:5f:74:7d:f6:4f:b3:a8:ec:01:96:db:a3:99:c5:
14:e0:f3:62:e5:a1:ba:36:64:42:b3:67:5b:4d:ea:
c9:05:51:bc:7a:68:bb:85:d0:53:57:01:b2:cb:c6:
a1:c1:a6:7f:ec:3d:0b:ba:ea:ba:af:5e:38:94:89:
e9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9F:CF:31:73:28:64:1A:CF:DD:B2:EA:C0:40:7C:26:1A:92:0E:F7
X509v3 Authority Key Identifier:
keyid:CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:50:4a:4b:f6:f3:2c:fa:0c:f3:95:80:9d:a3:b7:ab:78:7a:
81:7f:9b:a5:78:1a:c2:49:64:e4:e8:f3:9f:bc:0f:69:c2:d6:
8d:0e:ef:b3:f7:f4:cf:2f:70:b6:38:be:df:5e:28:e4:bc:7f:
8a:fe:8c:92:cd:62:4e:bf:3b:4f:4b:47:55:6b:22:40:fa:17:
ef:dc:7d:7b:8e:28:f4:6f:23:ff:f2:dd:d7:a1:6c:e6:fb:d5:
7a:23:2e:c8:70:14:d0:6b:b3:c6:08:5a:cc:c1:2b:33:00:62:
1d:81:c9:3d:03:d7:77:a2:31:43:1e:50:27:ac:20:d4:12:07:
65:cf:99:a2:ff:ee:b9:ca:86:12:3f:2a:bb:9c:96:45:7e:72:
14:d0:e1:07:44:2b:8b:44:55:5d:0a:de:a7:49:08:3c:79:50:
55:26:24:a3:21:8e:55:c8:bf:0f:64:77:40:cd:f6:04:9b:8a:
39:11:cc:62:0a:da:42:6a:a2:58:34:93:59:39:7e:87:f9:b2:
35:20:54:74:34:23:9c:57:71:c3:06:0e:e0:c0:6d:e5:be:0c:
5c:7a:e6:dd:7e:c4:0a:df:83:38:27:fa:2f:33:e7:60:a4:65:
8e:a9:a6:25:54:35:37:f6:3b:3d:bd:6d:14:28:96:32:0a:17:
82:6d:fe:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:03 2025 by rpki-client