Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
File: q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json)
Hash identifier: pnYUyFJQtjgV3jF2yf9Udps9+Z7TjpAUbuWy1IYYbng=
Subject key identifier: 2C:D6:C8:D4:5F:95:06:40:76:91:7E:67:A5:85:BF:0A:26:6F:0C:32
Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC
Certificate issuer: /CN=aba374394fe1080d64a219d7d35a49462e8e99ac
Certificate serial: 019579B5053FFD640D92F3AE085959DC25B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
Manifest number: 0599
Signing time: Sun 09 Mar 2025 07:01:01 +0000
Manifest this update: Sun 09 Mar 2025 07:01:01 +0000
Manifest next update: Mon 10 Mar 2025 07:01:01 +0000
Files and hashes: 1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: r5MDbntJ2U4V2YSUgT3k8WWSC+Wasaj0UVudzJZ9DCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:79:b5:05:3f:fd:64:0d:92:f3:ae:08:59:59:dc:25:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac
Validity
Not Before: Mar 9 07:01:01 2025 GMT
Not After : Mar 10 07:01:01 2025 GMT
Subject: CN=2cd6c8d45f95064076917e67a585bf0a266f0c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9f:54:96:4c:41:43:bf:34:33:1c:21:1a:17:
42:02:6c:54:0e:0f:71:0f:0d:f1:15:df:b4:17:51:
7e:e4:3d:26:1b:4c:d7:f0:23:34:e0:e8:12:7a:01:
0d:34:1d:60:e2:bc:ae:3f:b9:e8:56:6f:bd:26:eb:
ce:86:71:07:fa:f9:7e:67:0b:5f:cc:80:42:10:25:
bc:d8:b9:85:9d:b6:53:ea:86:6b:9e:7a:e7:49:eb:
15:d0:9a:4b:58:31:53:7f:b6:20:24:a9:3f:a6:5f:
86:3a:56:85:e7:fd:b4:7c:81:6e:e8:bc:15:30:4c:
df:0c:01:21:b0:e8:89:fc:13:6c:d2:40:7d:ca:8b:
1f:4b:88:7e:24:01:6e:c5:5d:d1:35:14:40:db:43:
ad:4e:a4:ad:60:9a:fa:96:5c:1e:af:63:75:7a:20:
fb:d4:41:bb:48:fc:6c:c0:40:09:04:f3:a3:25:31:
39:d5:22:ed:5e:d3:b6:1e:e7:e6:50:b5:94:aa:ee:
8f:bc:be:ba:6b:17:6d:29:53:66:38:0e:23:51:03:
42:3f:c1:a9:21:f4:e7:df:00:c8:c0:02:f4:d8:d3:
7c:a5:d4:5e:d9:53:a3:73:04:62:f7:54:30:7e:7d:
db:fe:af:61:b6:18:d0:91:5b:53:e6:88:f5:23:c0:
42:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D6:C8:D4:5F:95:06:40:76:91:7E:67:A5:85:BF:0A:26:6F:0C:32
X509v3 Authority Key Identifier:
keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:6f:6d:f4:d9:38:e0:62:32:a8:06:c5:dc:7a:72:ea:37:e9:
ae:24:74:85:f0:ab:28:e5:d8:2d:fa:76:65:f5:99:24:ac:4b:
6d:eb:03:a0:1b:2d:38:65:f9:07:e0:35:82:8f:1a:ff:62:1c:
90:e2:ef:85:d8:4c:20:da:6a:5d:5c:4c:19:12:da:7c:5d:19:
d9:7e:d1:b1:01:af:8f:92:34:0a:9d:75:33:0d:2c:61:50:c6:
3a:1c:41:ed:9f:cc:14:32:3c:f1:c4:fa:d6:9a:df:a8:54:5f:
df:c5:c0:fe:57:b9:d2:cb:18:d4:9b:ff:60:51:a2:4b:18:fc:
5e:47:45:f4:89:c0:d9:4c:76:2a:24:7c:8c:6e:ae:0b:1a:a9:
98:9a:a7:a0:fc:93:3a:74:27:04:a9:77:af:6c:2c:52:0b:63:
a5:9c:18:d2:b2:71:0c:81:76:0e:92:c8:c5:af:8e:26:11:8d:
30:6a:02:07:c7:10:3e:d0:c1:00:c4:4c:c1:5a:46:2a:d2:b4:
e8:d3:08:86:bb:fe:89:51:26:87:c7:9c:f3:c9:dc:4b:5a:0c:
e9:e0:8f:66:47:dd:6b:07:6b:79:62:d9:9b:d4:b6:34:36:01:
54:62:64:da:ee:4d:1d:26:e1:95:44:35:59:f4:88:a5:ea:51:
88:85:46:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 11:43:27 2025 by rpki-client