Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: gGVwh/r3+tR1QDFq4xkegSzjN+BA9LqGtzApvCXkMdQ=
Subject key identifier: 8A:8A:46:07:C5:1A:63:CF:EE:95:37:9B:7A:E0:09:EA:E5:2C:A9:AC
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 0194C3509B54DC62971B19CB47CAD03B8441
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 45
Signing time: Sat 01 Feb 2025 21:00:27 +0000
Manifest this update: Sat 01 Feb 2025 21:00:27 +0000
Manifest next update: Sun 02 Feb 2025 21:00:27 +0000
Files and hashes: 1: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: Uqf9xiDr/XEiO1QZE5+l4ZD0e4/3FLwJZlk7RG+ux6I=)
2: zIZvUw6LEttnk9GqCkFL8S-ncbM.roa (hash: g5dRThI/Wu6nM24igsF8Y2hQEgVjjdxUN3aRLJWGc3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:9b:54:dc:62:97:1b:19:cb:47:ca:d0:3b:84:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Feb 1 21:00:27 2025 GMT
Not After : Feb 2 21:00:27 2025 GMT
Subject: CN=8a8a4607c51a63cfee95379b7ae009eae52ca9ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d2:43:20:33:88:64:a9:7a:4c:c7:d5:9b:a3:
d9:bf:84:b2:59:39:72:a5:db:3d:60:8f:12:02:f6:
ca:92:7c:7a:b2:58:a8:3d:7c:28:b1:a3:24:db:70:
5d:5c:bc:dc:c8:3d:82:7e:89:29:21:8b:8f:a9:de:
f2:85:78:42:95:a1:6e:e2:3f:7c:1e:f2:c8:17:57:
fb:b7:35:ba:0c:90:7a:9b:13:d5:b2:48:80:4f:64:
18:fd:71:bf:1c:ba:63:54:35:9d:bb:aa:72:04:63:
d7:4c:8f:ad:d9:81:b2:b4:47:5b:b8:f9:e6:c1:4e:
6e:bd:6f:39:e1:be:de:a0:00:62:c2:2a:28:dc:eb:
0d:e3:b0:92:b3:4b:51:aa:51:af:3d:33:c1:e6:36:
df:ae:b6:58:cb:2c:13:37:fe:2a:c0:ec:6d:4e:60:
dc:39:1f:9c:15:38:95:88:59:b4:e0:a3:77:10:81:
05:d7:d2:2f:ce:8f:06:b4:7a:ef:49:30:09:02:a5:
c1:5f:91:d0:1b:65:78:ff:44:d8:5f:0e:e3:0f:d7:
ab:28:38:05:20:ed:a2:13:b8:6c:ba:51:9d:e5:d1:
ab:bc:f8:05:31:b0:0d:9f:a3:f9:38:29:d9:96:b7:
3c:79:9a:e9:83:2f:9a:2b:97:30:7c:e8:c9:99:01:
fa:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8A:46:07:C5:1A:63:CF:EE:95:37:9B:7A:E0:09:EA:E5:2C:A9:AC
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:a1:bf:97:ef:db:da:90:56:84:7d:de:64:5e:d8:5f:66:2e:
97:75:e7:26:3a:2e:9a:14:d8:7d:d4:f4:bf:ec:97:89:70:47:
45:4d:69:8a:5e:04:c8:fe:b7:26:50:a5:ce:42:b3:f7:4f:21:
9f:a5:0f:62:bf:de:47:b7:d4:48:92:c6:8a:f5:aa:4a:c6:c1:
42:39:11:b5:74:f5:0a:fe:6f:63:e4:74:45:88:e1:66:d1:c2:
14:14:19:d8:65:66:fb:57:4a:53:f6:6e:b8:5c:bb:a6:86:5c:
a4:be:44:ad:9f:a7:75:8d:ec:e2:2e:07:01:b5:e2:0e:66:9b:
d7:3a:4f:9a:28:4a:5f:e7:f5:97:b2:67:0a:d1:08:6c:3c:f7:
ee:29:34:0c:ab:a8:3c:97:9e:0f:44:bb:35:65:d2:1e:72:1e:
29:59:69:90:49:f4:b5:3b:93:8f:ba:7b:15:d1:37:f4:16:7b:
0e:b2:b1:b2:dc:9a:36:56:c4:f3:9c:85:4a:1c:80:3b:b0:bf:
43:eb:b6:ab:8f:64:3d:77:da:29:29:0d:f6:00:11:8b:91:44:
85:a6:d4:05:48:de:44:63:a8:48:34:8f:be:79:e5:28:e7:ac:
b1:64:d3:e1:bd:63:1a:c8:af:3c:25:45:9d:27:fb:27:bd:60:
d3:eb:1c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:02:07 2025 by rpki-client