Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
File: IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft (raw, json)
Hash identifier: nX//+pXaz+KV0dMYqAjlIEyV6Kw7cqvbBDqJZ/frS+U=
Subject key identifier: A9:6D:AD:A5:B7:97:4E:30:06:31:07:88:26:58:6A:44:DB:F4:A3:1D
Authority key identifier: 20:7E:90:D6:2D:E2:C7:27:CD:45:39:A2:F0:70:C4:E9:1D:F3:2B:B4
Certificate issuer: /CN=207e90d62de2c727cd4539a2f070c4e91df32bb4
Certificate serial: 0194C351112772CA6C72FF67147196F4CB25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
Manifest number: 72
Signing time: Sat 01 Feb 2025 21:00:57 +0000
Manifest this update: Sat 01 Feb 2025 21:00:57 +0000
Manifest next update: Sun 02 Feb 2025 21:00:57 +0000
Files and hashes: 1: IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl (hash: sYzDaUwH00ccgl+I3jkORy/t+jucGYJ3t6ljdt0bZCU=)
2: QpNcCoA4Z5ottRskUsrVfwUI5R4.roa (hash: 3Ookyfb7wHO7/58EMfYEHBR9Z8xGK4lUfT1UByxh2SI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:51:11:27:72:ca:6c:72:ff:67:14:71:96:f4:cb:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207e90d62de2c727cd4539a2f070c4e91df32bb4
Validity
Not Before: Feb 1 21:00:57 2025 GMT
Not After : Feb 2 21:00:57 2025 GMT
Subject: CN=a96dada5b7974e300631078826586a44dbf4a31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1f:ef:2f:44:6a:99:ba:49:df:7b:3d:b4:20:
d8:ab:ff:ef:c8:1d:a1:4f:a6:f4:33:e5:1d:0c:f7:
8e:b5:5a:eb:42:46:5b:f9:89:01:50:64:47:20:de:
cc:9a:4e:a3:ed:a3:63:d4:f3:c1:a1:e4:a7:1b:97:
2e:cc:80:9f:95:b5:2d:dc:fb:f5:d2:39:2b:2e:dc:
e4:d8:e1:ba:22:f7:42:06:1b:85:ba:71:e0:04:c5:
36:cd:68:64:8e:00:20:20:4f:98:43:93:ec:79:9f:
e3:7b:3b:2e:5d:f5:da:8a:fc:36:95:e1:e3:46:da:
9b:88:d3:ec:22:f1:4d:8e:e2:4a:01:a7:f4:10:6f:
2b:cc:31:03:af:c2:15:11:e8:d7:b8:d6:50:47:70:
0f:81:14:de:48:09:5c:76:21:dd:06:4b:36:01:1b:
2e:09:e3:1f:b7:f2:87:35:2a:7d:30:a6:60:3b:95:
28:f4:fb:61:c5:4c:52:90:d3:87:4f:a6:b0:7c:42:
03:2a:e4:30:71:68:32:53:ee:33:fa:8e:72:b6:ee:
78:8e:0c:9d:4b:f7:04:ba:95:e2:13:87:b2:c8:7a:
d9:c8:21:b1:b6:68:a2:12:1a:87:79:96:e7:e6:6c:
7e:cd:fb:a6:9d:29:f0:31:b0:8b:e5:4b:b9:ec:7b:
c2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:6D:AD:A5:B7:97:4E:30:06:31:07:88:26:58:6A:44:DB:F4:A3:1D
X509v3 Authority Key Identifier:
keyid:20:7E:90:D6:2D:E2:C7:27:CD:45:39:A2:F0:70:C4:E9:1D:F3:2B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:0a:e3:3b:38:eb:75:a0:bb:c1:80:83:cf:5c:46:8a:d9:28:
38:d9:7e:67:28:ba:26:7c:ec:18:d5:79:96:d8:ac:d4:d3:95:
20:cd:e2:73:83:81:f6:c2:55:23:92:1f:c3:df:e3:ce:0b:d1:
f3:be:64:be:c0:0b:1a:b5:bd:2a:4b:a4:7a:44:b9:9b:41:e9:
62:d1:4d:19:b7:29:16:a5:ff:c8:1a:2d:cb:21:f6:a6:36:a6:
85:0b:4f:bb:b9:b7:ef:49:98:6c:ee:48:a3:e2:db:22:e9:88:
1d:6d:34:42:73:22:a2:ec:d7:7b:d2:d2:ed:a3:0f:fb:63:a1:
4a:ab:89:dd:96:4f:fa:28:b2:36:59:88:03:0f:66:ab:c1:57:
3e:61:7b:4c:69:2f:0c:fb:60:f2:cd:07:27:6b:fb:92:7b:1d:
66:88:6d:48:aa:ac:fe:f4:00:01:55:4b:a1:f0:34:4b:48:2f:
e4:70:67:ab:f0:4c:3a:9a:dc:fe:f4:a7:de:f9:eb:54:56:ed:
54:9b:da:f9:e5:eb:4b:37:6f:1f:83:dd:17:c4:e8:3d:7e:c8:
da:79:1c:df:f0:6e:53:e6:b5:dd:17:1e:bf:f8:46:4e:6f:60:
41:0a:c1:34:0d:31:3a:ec:f7:d6:05:c0:34:03:81:2e:00:76:
98:f3:68:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:41:34 2025 by rpki-client