Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
File: QIyWuStsaY_TT6x9WB1MCQjczpk.mft (raw, json)
Hash identifier: ij/iXXufdZhG2PW1hASAGrLkojzKQTaZePwhZPJbsaw=
Subject key identifier: 2E:8C:A0:87:50:92:E4:72:EC:FD:DE:CC:44:81:58:8F:E1:2B:A5:98
Authority key identifier: 40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
Certificate issuer: /CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Certificate serial: 0196C3B9EA86691DEBA5DC277CDE78D5C735
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
Manifest number: 1107
Signing time: Mon 12 May 2025 09:01:03 +0000
Manifest this update: Mon 12 May 2025 09:01:03 +0000
Manifest next update: Tue 13 May 2025 09:01:03 +0000
Files and hashes: 1: QIyWuStsaY_TT6x9WB1MCQjczpk.crl (hash: wP3uf124EetTNUQUXPNwWQkKLJ81vTAHQMlbWoQN05Q=)
2: o7v3w6s-TtM4FqHNx2KIzrdDfyg.roa (hash: E/bv9FlRfrfb8DUNG3s4m8ELhpH6SWFAZyVqbfxptQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:ea:86:69:1d:eb:a5:dc:27:7c:de:78:d5:c7:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Validity
Not Before: May 12 09:01:03 2025 GMT
Not After : May 13 09:01:03 2025 GMT
Subject: CN=2e8ca0875092e472ecfddecc4481588fe12ba598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:15:ea:59:71:38:d9:20:98:5b:e5:64:7c:d8:
fb:6d:a7:d8:2f:90:53:cf:81:be:43:8a:c5:15:49:
e7:61:4e:9c:c7:19:8f:b3:63:c3:42:0e:d3:63:6c:
f9:54:81:95:29:06:54:74:a1:1d:a3:fc:c7:0e:04:
16:7d:57:32:60:f7:a6:6e:ba:c7:2a:2d:15:06:62:
72:7b:67:14:c7:32:5e:3c:2b:e2:c8:53:4e:03:bd:
e2:6f:c0:2c:ec:7c:7b:69:28:0e:cb:56:f4:25:80:
e9:7f:2f:8c:2b:12:0a:ca:19:02:2c:0c:65:42:dc:
b9:00:a5:04:ae:72:a2:b6:46:62:88:cc:04:6a:8c:
ea:99:59:24:4d:b3:cd:22:37:d1:3c:f3:18:fb:92:
8a:5c:7a:ba:19:56:ff:db:b2:61:e6:ff:67:13:dc:
89:30:30:ef:24:ad:7d:7b:7d:7e:3c:e2:9a:c1:6d:
db:d4:6f:52:f1:90:31:2f:06:ab:e9:01:22:27:07:
df:4b:e3:d1:ff:22:b6:af:43:71:79:3b:41:ee:af:
2b:a0:eb:59:30:7d:32:16:bb:18:30:61:ec:46:46:
65:ce:5b:c9:ac:79:69:65:8b:8c:d7:44:22:75:5f:
7c:8e:32:ea:f8:fa:54:1f:4e:23:22:3b:63:90:69:
d1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8C:A0:87:50:92:E4:72:EC:FD:DE:CC:44:81:58:8F:E1:2B:A5:98
X509v3 Authority Key Identifier:
keyid:40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:0b:64:8a:00:12:45:53:5f:24:a6:13:46:23:97:c0:16:3f:
58:92:eb:b7:f6:3f:c3:4f:e4:62:cb:df:4d:3f:8a:40:96:ca:
ad:b0:14:3d:a2:5d:f3:b1:e5:58:30:c6:1d:8c:0a:1e:a2:62:
cd:79:5e:98:55:1f:41:4e:7c:24:8c:be:cf:84:21:a2:da:a9:
7f:6b:21:ef:21:fc:cd:e5:84:ec:5d:86:52:bd:30:bb:94:bd:
e0:7b:80:6c:9f:7a:38:44:c3:11:4f:74:fc:c5:50:76:28:1a:
9a:cc:54:d2:70:9f:bd:6c:a8:c9:43:a7:11:1e:a2:b8:c3:bd:
f0:02:95:27:7f:4f:af:bb:71:f2:2d:c3:a6:5e:06:ec:4d:06:
ff:0e:66:ab:ea:d9:47:ce:89:e3:96:46:62:28:cc:33:71:20:
56:2f:d3:87:05:03:8c:33:d1:37:03:c0:72:f4:92:19:b3:0a:
96:4c:e4:36:fd:fd:ae:48:d0:86:5f:cc:2d:12:10:52:7b:48:
7f:df:00:2d:77:b8:a8:8a:49:06:f1:97:1c:9b:a0:c5:84:24:
7d:97:3c:4b:86:de:aa:15:83:19:29:6b:f4:c5:26:92:4b:47:
17:1f:9d:5a:ea:b0:49:fe:e6:18:e0:2d:4e:f4:a8:55:43:ee:
59:f8:7a:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 18:15:23 2025 by rpki-client