Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
File: QRoqlAW9oWccEHdvRCYnPJBOStA.mft (raw, json)
Hash identifier: LFFq7Xt2eUKEstcZe+WJkktQMoLADw0TBp5qllm9Tak=
Subject key identifier: DB:48:70:C3:74:23:65:C3:28:5A:31:FA:93:C6:2C:9F:BF:CE:34:29
Authority key identifier: 41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
Certificate issuer: /CN=411a2a9405bda1671c10776f4426273c904e4ad0
Certificate serial: 0196A68A903282D8D9A4EBB119D561D2F6FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
Manifest number: 1528
Signing time: Tue 06 May 2025 17:00:20 +0000
Manifest this update: Tue 06 May 2025 17:00:20 +0000
Manifest next update: Wed 07 May 2025 17:00:20 +0000
Files and hashes: 1: QRoqlAW9oWccEHdvRCYnPJBOStA.crl (hash: V7rRwc+Hh/VCzOqKejSe85e1lF2zGDknRTPt2YXLa4U=)
2: htodApNLGhLpFMruOMlntyiGeOc.roa (hash: cFfgGJzFfvTMD4F+KAnyyiaMBsfRll7IR2YZJcMoxkc=)
3: wzndaPRsTi0mxWGQ8DwrTSyFIjc.roa (hash: kbPsqoJze+tNEJsbFqXpAiz/ui3VxFgmLT6No+U36XU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a6:8a:90:32:82:d8:d9:a4:eb:b1:19:d5:61:d2:f6:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411a2a9405bda1671c10776f4426273c904e4ad0
Validity
Not Before: May 6 17:00:20 2025 GMT
Not After : May 7 17:00:20 2025 GMT
Subject: CN=db4870c3742365c3285a31fa93c62c9fbfce3429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c1:c3:c1:ba:3b:8f:de:56:1f:52:e7:53:1c:
9d:28:1c:9e:95:98:21:84:e8:7a:32:b9:d4:eb:6b:
39:fb:ff:96:bc:bd:c5:a8:62:93:d4:ab:0f:84:d5:
5d:2f:29:2b:74:de:77:8a:40:36:1a:b0:5a:f9:8a:
5a:bb:74:1f:c4:fb:46:9d:d9:a7:46:e1:f1:e5:d3:
78:6e:05:71:65:63:36:6b:44:bd:db:0b:55:05:77:
39:0b:f8:e5:66:1f:81:b5:78:bd:17:1b:89:2a:93:
3b:d9:93:26:08:f4:e2:de:c4:2c:92:b6:f9:c9:1c:
3b:8a:f5:aa:d9:de:c1:05:26:0d:ab:3d:46:52:48:
be:f3:43:63:3e:7c:8d:6b:a0:35:88:2d:d0:78:cb:
83:2a:ef:8f:9f:2a:17:f9:0b:27:a6:8f:fb:b4:0d:
73:8d:d2:c5:a9:23:c6:ba:fd:f9:fc:7f:d2:ca:51:
45:e2:93:06:f1:7e:8e:df:ca:82:b4:5c:82:7a:a0:
30:c9:8f:38:3d:c2:e1:72:50:6d:73:c3:f1:98:c6:
bc:d4:7d:f8:11:b9:09:e2:86:41:9f:84:62:79:1e:
85:f6:4e:eb:56:72:cc:7b:bc:c7:d4:e1:b6:e7:72:
6d:01:2c:09:fd:a8:9c:95:8f:5b:1f:ac:ab:35:ff:
5f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:48:70:C3:74:23:65:C3:28:5A:31:FA:93:C6:2C:9F:BF:CE:34:29
X509v3 Authority Key Identifier:
keyid:41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:c3:02:1e:18:52:d1:62:60:74:37:1c:a9:f6:95:c6:e4:ee:
ad:86:5a:10:5c:61:3c:27:bf:25:f9:43:a9:8f:34:e3:35:6c:
6a:87:a1:70:9b:57:17:47:c5:7c:a9:5c:17:11:1b:a7:08:dd:
85:80:46:bf:ff:27:af:bf:e2:78:2d:a1:4d:78:60:b1:d0:cd:
59:63:1e:f0:de:59:1b:93:b4:79:c9:8b:88:b4:7b:c7:98:7f:
48:2a:7a:f4:60:42:70:90:b6:8c:bf:4e:d8:47:07:be:6d:b9:
2d:1c:b1:29:69:98:4d:b4:f4:3f:57:d1:1f:58:35:0f:94:25:
d7:ad:53:57:f6:2c:58:46:ec:d7:83:ad:68:af:5b:dc:ae:87:
73:99:ab:74:d4:ae:f0:2b:93:a5:cb:ab:1f:b2:10:58:ef:e2:
00:ad:0c:43:7d:7b:17:e6:17:bd:23:b4:86:39:f0:0b:0c:e4:
c6:10:eb:c3:07:d9:35:d7:be:aa:98:24:dc:03:eb:aa:fe:2d:
38:4d:5d:3b:a6:14:c7:26:93:cd:d9:35:cd:07:d6:5b:74:e6:
df:d9:25:bd:a2:d8:4a:82:9b:3e:21:be:65:d0:a4:a5:e7:5e:
1d:b1:70:d5:f8:cb:49:cc:60:40:63:50:85:d2:8e:79:3e:d3:
10:af:f8:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 23:22:28 2025 by rpki-client