Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/82eed1-d9d5-40d8-ba58-3f9960865d0f/1/yj7NoA-sC_tjsoVD6itdXx5N9ss.mft
File: yj7NoA-sC_tjsoVD6itdXx5N9ss.mft (raw, json)
Hash identifier: wgB1WcjRnm4oscT3uB1dehUhMPwFtRWwBq1U+KXYRtA=
Subject key identifier: 06:11:9B:03:AE:F0:2B:02:F9:06:25:F9:D9:53:73:2A:15:24:F4:60
Authority key identifier: CA:3E:CD:A0:0F:AC:0B:FB:63:B2:85:43:EA:2B:5D:5F:1E:4D:F6:CB
Certificate issuer: /CN=ca3ecda00fac0bfb63b28543ea2b5d5f1e4df6cb
Certificate serial: 0194BAF29874C50E908A7578152D0E1DC2AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yj7NoA-sC_tjsoVD6itdXx5N9ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/82eed1-d9d5-40d8-ba58-3f9960865d0f/1/yj7NoA-sC_tjsoVD6itdXx5N9ss.mft
Manifest number: 26
Signing time: Fri 31 Jan 2025 06:00:48 +0000
Manifest this update: Fri 31 Jan 2025 06:00:48 +0000
Manifest next update: Sat 01 Feb 2025 06:00:48 +0000
Files and hashes: 1: yj7NoA-sC_tjsoVD6itdXx5N9ss.crl (hash: SNyDcegPjqkV2lNad9HxC/VgKQlMZrmVkJQWt4cjEsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/82eed1-d9d5-40d8-ba58-3f9960865d0f/1/yj7NoA-sC_tjsoVD6itdXx5N9ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/82eed1-d9d5-40d8-ba58-3f9960865d0f/1/yj7NoA-sC_tjsoVD6itdXx5N9ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/yj7NoA-sC_tjsoVD6itdXx5N9ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:98:74:c5:0e:90:8a:75:78:15:2d:0e:1d:c2:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3ecda00fac0bfb63b28543ea2b5d5f1e4df6cb
Validity
Not Before: Jan 31 06:00:48 2025 GMT
Not After : Feb 1 06:00:48 2025 GMT
Subject: CN=06119b03aef02b02f90625f9d953732a1524f460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:cb:d4:52:30:66:9c:64:71:5b:11:03:df:80:
9a:76:7d:4c:64:8d:7b:04:41:27:47:26:bf:13:27:
30:4c:b2:aa:f6:44:fd:59:c4:c5:94:23:31:f3:2d:
26:a0:09:91:5e:c1:61:24:a9:f4:c6:24:5a:2c:49:
18:33:6d:35:c9:79:99:b9:bd:82:01:b4:f8:a4:f1:
03:8f:7b:34:45:e6:6f:68:66:21:c9:b9:9d:48:37:
87:55:1e:93:18:cd:68:b8:66:87:67:d0:5a:8c:c1:
ff:d8:57:5d:d6:0f:fc:57:a2:75:ab:21:81:e1:da:
7e:aa:26:01:b7:3f:05:83:78:41:80:4d:95:dc:f4:
59:0b:99:10:5f:f2:c1:d2:e3:43:ee:e9:2c:57:ae:
d8:db:65:3f:85:9c:17:b7:c0:3b:1f:c2:b5:6a:35:
f9:a5:90:97:bc:a4:fb:da:2e:45:e4:a0:2e:66:2f:
48:85:b9:af:11:32:29:3d:bf:de:64:6b:d0:ae:60:
19:cb:f3:95:26:9d:2f:67:1f:bd:c5:fa:29:7a:6b:
5d:f7:cb:d1:d7:83:e8:17:65:a7:77:be:a1:45:8e:
b3:32:a5:f5:af:07:a5:5f:70:ca:c4:32:ec:75:31:
c6:b4:51:79:d1:c3:1d:d6:b5:2d:ba:78:e7:6b:10:
fd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:11:9B:03:AE:F0:2B:02:F9:06:25:F9:D9:53:73:2A:15:24:F4:60
X509v3 Authority Key Identifier:
keyid:CA:3E:CD:A0:0F:AC:0B:FB:63:B2:85:43:EA:2B:5D:5F:1E:4D:F6:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yj7NoA-sC_tjsoVD6itdXx5N9ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/82eed1-d9d5-40d8-ba58-3f9960865d0f/1/yj7NoA-sC_tjsoVD6itdXx5N9ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/82eed1-d9d5-40d8-ba58-3f9960865d0f/1/yj7NoA-sC_tjsoVD6itdXx5N9ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:c3:dc:f6:8d:52:1f:37:03:44:75:d5:13:75:e9:e9:c9:1b:
16:52:e2:96:e9:b2:3c:88:2d:9c:77:59:9b:1b:55:09:7d:d7:
4a:10:73:24:25:15:9a:e3:07:0a:74:4c:f1:ec:23:63:db:a8:
de:43:52:c1:94:f4:97:0e:b2:97:e4:22:8f:4c:6f:78:0e:b7:
31:e9:e8:c7:e1:f8:a8:e2:38:d8:a5:e5:0a:4a:75:33:b1:57:
d4:1d:cf:fb:e0:88:9b:f6:cb:52:75:5b:22:3d:4c:1f:b4:fd:
e2:86:9a:f1:ba:56:ae:c3:21:a4:de:d5:e7:22:e3:92:6b:98:
a6:e1:28:a3:73:2c:71:3b:53:0e:b8:e6:2b:27:6e:63:36:c9:
2e:57:1f:01:bb:61:07:e5:20:40:bf:24:21:df:09:3c:37:58:
f9:a3:80:e1:58:e3:33:e9:5b:14:13:8d:0a:ba:36:e5:01:83:
94:0a:89:51:65:7c:6c:ff:ec:29:15:ed:07:e4:6c:7b:70:22:
9a:95:a1:72:43:8d:bd:84:6a:a7:d4:ea:16:ff:13:38:c3:72:
d3:f6:56:bc:db:28:13:88:5b:00:33:70:6f:d5:a2:78:90:f6:
8c:18:9d:0c:a9:c0:98:1c:68:ea:ce:a4:41:8b:05:9a:d5:cc:
e1:6b:79:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:42:04 2025 by rpki-client on console-fra.rpki-client.org