Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: pq9tAWCoWnF364fwCxkM/eefepYsZxkS79hV55q2WeI=
Subject key identifier: 01:C9:0F:F3:7E:C3:09:C7:FF:6D:A1:21:18:92:F9:88:DC:CE:36:41
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 0194C49A37CF6E9022853426574D9232BAD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 16
Signing time: Sun 02 Feb 2025 03:00:28 +0000
Manifest this update: Sun 02 Feb 2025 03:00:28 +0000
Manifest next update: Mon 03 Feb 2025 03:00:28 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: LMX+GuMsEXrdk5DoHI7rC87aa4hAX+RiCCKtMzdAOBI=)
2: nvx0QRZQO1QzuvMN00Bva6hTGZw.roa (hash: Gw59i4bicuVuHEY8V6dHsuW9MPHvsYhnw1rq0LLdv8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:37:cf:6e:90:22:85:34:26:57:4d:92:32:ba:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Feb 2 03:00:28 2025 GMT
Not After : Feb 3 03:00:28 2025 GMT
Subject: CN=01c90ff37ec309c7ff6da1211892f988dcce3641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:70:c4:f1:a4:70:f8:3f:b8:8c:dc:9a:24:51:
87:f1:da:c4:33:8a:05:8b:12:e5:b4:b2:a9:86:b2:
6a:10:b6:5e:13:44:c8:3d:2f:8e:ed:7c:29:50:ac:
5c:94:d7:e9:05:5e:6e:81:eb:1a:6e:ea:32:16:e9:
be:16:68:0c:d8:9b:e1:90:20:e1:8c:4b:78:aa:36:
cc:59:66:a0:57:37:ae:6a:99:41:0a:9e:de:0c:c3:
2f:74:1b:db:36:2a:ea:ea:7a:50:07:17:53:45:e8:
f8:26:05:05:3c:f2:9f:78:9d:86:49:7c:4b:66:bd:
cf:3a:e3:9f:10:20:e3:0a:2d:19:83:db:23:3d:14:
97:b9:13:3f:92:17:f0:ec:a0:2a:9c:2c:ec:80:f7:
85:63:45:c7:8f:51:5d:e7:1a:97:4e:c0:bd:71:38:
d2:30:cb:56:19:d2:ad:68:01:8d:63:2d:9c:61:98:
9e:01:1f:75:c4:0a:c7:37:43:b1:90:99:2d:b9:96:
f9:58:eb:a7:ba:6b:c1:c0:1e:ad:25:75:9d:fc:9e:
c5:a2:5e:53:b1:c3:7f:e4:e2:88:f9:ca:4a:c4:aa:
d6:41:fa:8f:ac:77:8f:fe:0d:fa:7a:db:5d:c6:5e:
e4:66:3e:51:20:ee:74:c3:06:06:46:f2:5b:30:4d:
59:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C9:0F:F3:7E:C3:09:C7:FF:6D:A1:21:18:92:F9:88:DC:CE:36:41
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:2c:e6:4a:a1:38:ca:df:d8:8c:6e:4b:dd:da:57:a4:fb:40:
a5:8f:c4:2b:53:75:1e:80:94:64:84:f7:fe:25:bf:8a:7d:cd:
b5:44:2f:b2:3e:7c:7f:15:0c:fb:9c:b2:d8:6f:01:23:5b:bd:
65:1b:73:27:34:ac:37:7e:17:7e:f1:bd:02:46:d2:9f:01:1d:
59:13:03:74:da:7a:93:e8:75:33:50:c0:32:45:c0:0c:59:0a:
df:ff:9b:a8:51:69:63:91:89:74:6f:01:c8:1b:ef:c4:aa:a6:
8a:bb:6e:51:5e:3d:02:24:c9:6b:ac:91:a5:5a:ca:f3:64:56:
d8:c6:a9:a0:aa:b0:b8:dd:6d:ef:11:3f:72:28:09:c4:f3:4c:
5e:c1:2a:e9:bc:b3:af:a9:4a:be:53:ff:c0:90:90:e8:76:c7:
c8:e0:4f:ab:e0:92:e4:89:8f:5d:6b:e7:e4:fe:a5:1e:09:07:
77:d6:c3:ed:47:5f:ba:77:56:dd:7a:8c:cf:ee:a1:26:a8:08:
ab:bf:dc:07:b8:8f:66:5f:06:d1:ed:db:b2:59:77:15:75:1d:
39:a7:f0:9c:58:6b:28:79:f5:c7:30:c7:07:fb:8e:47:8e:43:
10:37:03:a8:fe:5f:1c:b6:f4:63:54:d1:b3:6c:5c:a5:79:3a:
d9:d6:86:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:13 2025 by rpki-client