Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
File: yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft (raw, json)
Hash identifier: 4Lmaay/3AUc0Z9rJMctqd3kKshvW1pmA7CKsMcaOGCc=
Subject key identifier: CE:D4:8F:90:E5:31:3E:33:26:78:44:54:58:FF:CC:67:0D:45:09:BF
Authority key identifier: CA:AF:C0:93:C3:C4:25:6D:11:4A:8E:DC:0D:06:C7:3C:B6:3E:18:6D
Certificate issuer: /CN=caafc093c3c4256d114a8edc0d06c73cb63e186d
Certificate serial: 0194BB97210204F10D8D27295D5E05453C2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 09:00:31 +0000
Manifest this update: Fri 31 Jan 2025 09:00:31 +0000
Manifest next update: Sat 01 Feb 2025 09:00:31 +0000
Files and hashes: 1: NUVu2dR1iocqmPEQ_D2e-q6eSn8.roa (hash: 1hCazZpKjVTtjQVFUWpkmXqPQOre2tDQ3dmWvgeOvfo=)
2: yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl (hash: qsls+ruFLmwsQ3xVzZ2lmW3c/tI//M7qNFobeRkR6Dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:21:02:04:f1:0d:8d:27:29:5d:5e:05:45:3c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caafc093c3c4256d114a8edc0d06c73cb63e186d
Validity
Not Before: Jan 31 09:00:31 2025 GMT
Not After : Feb 1 09:00:31 2025 GMT
Subject: CN=ced48f90e5313e332678445458ffcc670d4509bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:af:98:88:80:8b:d5:35:7e:85:87:7c:fa:7e:
10:03:2f:a1:29:7a:81:0d:4b:27:27:7f:0d:d8:8f:
47:64:97:dd:d1:e5:b5:76:4e:31:5b:11:4f:4c:41:
b2:bd:6e:72:7b:86:f8:77:d6:e1:dd:18:45:90:d6:
d6:e8:aa:b6:43:2b:d1:0c:51:f0:a7:f2:db:8e:5b:
b1:1d:24:6a:b6:f2:ff:e6:18:7a:ab:ca:db:9f:8a:
ef:0e:2f:a1:4c:a8:b3:ca:25:23:3a:da:9f:f2:23:
4a:39:70:20:35:f3:1d:6e:31:d3:a0:25:f0:5c:e3:
0a:9c:ee:a4:be:8f:93:2c:4e:ef:ff:36:31:ab:e3:
02:05:ed:6c:98:a9:f0:26:fc:90:82:f1:3e:e3:46:
68:fe:53:a0:43:7c:ee:e8:0d:d4:7d:94:67:fa:38:
3a:56:12:3d:b8:fc:b0:92:8e:db:45:1c:4a:d2:f3:
ca:c6:43:c5:c0:9b:7f:ac:20:2a:29:b3:f9:45:19:
67:de:c4:fb:b3:b3:f0:83:05:db:f6:fa:0c:54:f3:
ad:61:66:d7:43:82:66:42:f5:c5:3b:3f:49:db:45:
28:98:18:f2:a7:a9:68:eb:49:7e:dd:92:88:7c:3e:
f2:b6:95:21:d3:4a:08:70:83:22:75:ff:5b:cf:85:
2a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D4:8F:90:E5:31:3E:33:26:78:44:54:58:FF:CC:67:0D:45:09:BF
X509v3 Authority Key Identifier:
keyid:CA:AF:C0:93:C3:C4:25:6D:11:4A:8E:DC:0D:06:C7:3C:B6:3E:18:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:32:11:cc:ad:0e:90:ed:b5:bd:60:6b:14:d0:b4:e5:3b:20:
0b:07:47:85:87:bd:59:1f:f9:38:d4:69:b7:aa:80:38:96:de:
8f:5a:36:bf:2a:e6:b6:b4:5a:9f:49:9c:4c:ae:77:9b:38:d8:
c3:80:15:be:22:ea:a7:8d:b7:ae:09:e2:4c:93:f6:02:a9:e1:
27:48:cd:35:db:37:c3:16:6c:2e:5e:61:15:84:e0:93:7c:5e:
83:c3:17:c9:b7:f0:d0:3b:fb:21:23:d3:da:e5:9c:8d:8d:2e:
1d:50:3c:24:37:2b:ba:4e:1e:bb:e8:51:09:17:2c:66:1c:54:
4a:d6:6c:e3:1c:5e:dc:07:8e:6b:d7:7b:fe:2d:68:2a:89:02:
b4:6e:68:fe:9f:e3:73:8e:11:84:e9:2d:b5:eb:10:78:c3:05:
18:3e:fd:71:46:66:c9:b8:a6:af:42:4b:e8:d9:6f:ed:a0:e3:
91:fb:8c:63:c3:4d:e2:19:f2:18:dd:e9:6d:ed:2e:13:5a:4f:
15:d2:32:aa:8f:b1:ad:35:2f:00:e3:0d:d3:e2:ae:45:93:7b:
ed:8e:5e:3a:77:83:d2:52:47:55:01:f6:6e:45:65:f4:fa:e9:
30:95:15:b9:cf:a3:ca:38:05:77:a4:73:b2:7a:4e:78:56:4e:
71:dd:54:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:09 2025 by rpki-client on console-fra.rpki-client.org