Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
File: yohtVYfshfcSQs1XztQJVEUoFo0.mft (raw, json)
Hash identifier: 3EFvMxwwCQ3q9fCUkWCNB+LlI3+TwfNmnc9+X4DGr8Q=
Subject key identifier: 80:A8:88:02:56:64:96:EC:D0:D9:9D:72:92:26:21:AE:70:B8:72:A1
Authority key identifier: CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
Certificate issuer: /CN=ca886d5587ec85f71242cd57ced409544528168d
Certificate serial: 019510C706C154A4B0D833194CEED652BE98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
Manifest number: 0209
Signing time: Sun 16 Feb 2025 22:00:33 +0000
Manifest this update: Sun 16 Feb 2025 22:00:33 +0000
Manifest next update: Mon 17 Feb 2025 22:00:33 +0000
Files and hashes: 1: pedXVkU_3_VDst7sTxTSsbn2Em4.roa (hash: 3VM8cHkV3+LaUs7pbcy8XQqPPtDXhoRXeq5taS4kpbU=)
2: yohtVYfshfcSQs1XztQJVEUoFo0.crl (hash: fu1EH9To9Nc2EBo8OIBpG1CUqaqzwrxs9N9hk4Hjv1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:06:c1:54:a4:b0:d8:33:19:4c:ee:d6:52:be:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca886d5587ec85f71242cd57ced409544528168d
Validity
Not Before: Feb 16 22:00:33 2025 GMT
Not After : Feb 17 22:00:33 2025 GMT
Subject: CN=80a88802566496ecd0d99d72922621ae70b872a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:76:bc:9f:58:1e:0f:d4:b0:cc:6b:81:a2:53:
fb:59:4c:81:6a:e1:97:48:2a:90:f5:56:aa:a0:1f:
b1:ed:e0:a4:e8:de:d2:5d:0c:41:a1:9b:dd:b2:5a:
91:f8:c3:25:6a:c0:4e:53:df:27:31:93:d9:36:e3:
39:e1:aa:84:40:c0:2d:24:d2:0d:de:2b:cf:70:7d:
ba:0c:b3:50:dd:fa:b2:f2:da:05:e7:ab:b2:73:1c:
f2:6c:ba:6c:37:50:c9:49:1a:c1:f5:12:66:61:ba:
8e:15:69:6c:e7:f3:df:0a:a3:3f:d3:24:45:d2:9d:
63:94:4d:40:1b:fd:92:5c:bc:82:92:3e:74:1c:5a:
9f:c0:92:4a:e5:cd:99:ff:90:46:81:e5:5e:a8:d0:
f3:5c:a5:cb:1b:d3:dd:ce:81:9b:6d:e9:50:23:76:
ca:6b:49:33:d5:de:20:65:eb:60:05:59:a5:e7:ef:
b3:f7:6d:80:92:84:e5:c8:49:15:0f:3a:10:cf:2c:
89:be:a1:76:a4:3f:68:60:78:f3:6c:3e:d9:31:b0:
24:db:4a:84:ff:5f:ac:a8:f3:59:70:f2:47:c8:4e:
c7:93:dc:28:b9:43:c3:0c:ab:3e:0f:84:f0:d0:a6:
3d:a4:ca:7c:05:06:d2:c1:3b:7d:d6:74:7e:3d:f7:
27:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A8:88:02:56:64:96:EC:D0:D9:9D:72:92:26:21:AE:70:B8:72:A1
X509v3 Authority Key Identifier:
keyid:CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:83:ae:96:f9:cd:79:eb:ff:81:f0:1d:74:a6:3c:3a:5a:bc:
17:65:f1:04:1c:53:a1:c9:b2:92:c7:30:a9:24:e6:30:1c:51:
78:cf:b9:bd:4b:a1:a6:91:6b:f0:03:7c:0c:9a:94:b9:6c:83:
7f:18:dd:a7:26:40:c0:6f:05:4c:fb:bd:36:ca:9c:87:fc:dc:
22:58:38:11:3a:3d:90:0b:e1:00:76:98:2d:a5:ee:c8:51:a9:
7b:e5:7d:6d:f3:49:e4:a2:25:09:a8:95:e0:17:60:33:79:e4:
1b:91:8c:1d:ff:62:8e:66:2c:8c:59:25:3b:c4:4b:26:eb:c1:
3f:ee:33:86:6e:c4:31:24:63:8c:7e:73:33:08:19:4e:28:cb:
7b:be:19:66:85:16:5e:90:22:e1:93:9e:e6:a7:a9:1c:2a:ed:
8c:6d:41:f6:8f:d9:3a:3a:d3:0d:ec:27:61:b5:e0:3a:7b:e5:
57:f5:73:81:e8:5c:bc:83:78:a7:d4:b8:55:7c:eb:37:32:55:
2d:56:64:22:f2:b5:ef:90:12:db:96:ec:73:e3:d9:97:3b:aa:
7b:17:98:a2:81:53:b6:9f:91:fa:46:03:38:91:e5:f5:4c:9e:
6b:1f:7a:9e:cf:1c:83:04:e5:92:53:6b:fc:59:e6:1a:9f:f9:
f5:a7:b5:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:26 2025 by rpki-client