Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
File: q4PmT3LdWIn7E9whjGg_bi-s9bI.mft (raw, json)
Hash identifier: GcqQPnz9odWBmUFo0Dpt0xY/7xH2GB/E2GjO/7BmpUk=
Subject key identifier: DA:0C:FB:5A:F8:0D:51:09:CB:17:23:B5:3E:4E:4A:91:23:95:62:3F
Authority key identifier: AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
Certificate issuer: /CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Certificate serial: 0196A19B73632F8502552204A45C6E3B2BFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
Manifest number: 152A
Signing time: Mon 05 May 2025 18:00:41 +0000
Manifest this update: Mon 05 May 2025 18:00:41 +0000
Manifest next update: Tue 06 May 2025 18:00:41 +0000
Files and hashes: 1: HrD9axNwojGc9gn0e5_hxSYDCwc.roa (hash: l2Og23VbseBHlL6WgftV+a+c2UrUgOjU/jXZUXL4hQ0=)
2: q4PmT3LdWIn7E9whjGg_bi-s9bI.crl (hash: I1wDcWGR0Iy4pk8CHCPGd1lBhXtItpS2Eivmmf7zIw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:9b:73:63:2f:85:02:55:22:04:a4:5c:6e:3b:2b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Validity
Not Before: May 5 18:00:41 2025 GMT
Not After : May 6 18:00:41 2025 GMT
Subject: CN=da0cfb5af80d5109cb1723b53e4e4a912395623f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ae:29:05:17:6b:7d:11:11:9e:fa:bc:e0:6f:
d4:14:d2:fd:d9:6c:19:fa:53:5d:3d:92:9f:ff:e4:
ce:6a:5a:84:9a:53:58:3a:43:3b:88:28:b1:92:08:
eb:5d:34:48:7d:32:42:8e:80:a5:7d:d9:e0:6b:da:
18:91:90:f7:cd:27:5a:7f:d8:86:d6:30:de:c0:33:
97:fd:77:60:0f:e9:42:cd:db:b7:8f:ba:2f:e4:8e:
1e:32:fb:db:90:78:45:ee:c9:a2:f3:83:32:1f:89:
a6:b4:a9:47:71:e2:af:98:ae:48:fb:d6:fb:9f:8b:
f6:29:50:d6:8f:9b:c6:07:08:14:fa:4f:c5:9e:1d:
50:b2:47:5d:07:e3:17:13:e4:f0:36:33:6e:a5:7e:
58:db:a7:db:e7:7b:e7:23:60:98:a7:93:e3:1c:a7:
b2:20:44:a6:ec:7e:fe:92:94:63:f0:a4:79:04:1d:
26:62:93:73:a2:28:6c:72:9a:27:4c:bb:e4:8d:7e:
61:c1:a4:65:06:9c:be:6c:50:a5:a6:bc:e3:21:39:
fd:ac:cc:af:11:9e:c9:f1:a4:2e:b5:3f:b2:72:59:
20:79:11:13:0b:6c:6d:0b:36:36:b4:68:c2:56:ef:
36:78:7c:de:49:d5:3e:0a:c3:6a:54:cd:0b:4d:d6:
e1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:0C:FB:5A:F8:0D:51:09:CB:17:23:B5:3E:4E:4A:91:23:95:62:3F
X509v3 Authority Key Identifier:
keyid:AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:4c:a9:05:93:e1:c8:f6:79:56:2b:84:dd:e7:36:ef:29:ae:
aa:46:c4:36:87:bd:f3:e7:4f:c4:94:6b:ac:ab:69:d0:99:50:
44:9b:a8:36:1f:51:1b:ac:41:c6:46:ae:50:28:1b:26:6d:01:
cf:7f:7d:24:93:c7:05:95:76:af:66:35:fa:41:3e:03:56:91:
10:29:f2:ea:18:ad:7e:17:2e:59:7f:f3:55:ba:41:0a:ed:71:
c9:b3:57:54:a5:f4:1d:da:99:86:a4:94:ab:9d:d1:3c:b1:8b:
4e:0a:33:ab:b0:fc:d7:8b:29:37:40:ea:9e:0f:7b:a7:ea:27:
dc:83:b0:45:8b:33:b1:4c:d1:c6:01:be:b1:e1:22:b1:68:a0:
a2:c7:f8:d3:d0:2f:50:5b:ad:fb:ae:be:13:53:ce:59:9c:df:
78:cf:54:86:54:87:47:50:51:39:50:3e:d2:bc:69:8b:e1:ed:
1e:b6:0c:6d:14:98:57:1d:04:a6:ca:b9:bc:1e:5b:ab:81:b1:
6b:a5:48:21:db:9b:79:f9:16:67:36:78:88:03:87:bb:11:57:
fa:46:9d:71:99:1c:46:e9:df:9c:3f:c4:9c:1a:19:2e:79:9c:
7c:19:91:25:75:30:52:d2:30:2a:50:77:69:5d:4d:20:71:15:
a7:22:79:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 22:47:03 2025 by rpki-client