Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: 4Yrxe7GOa4K08kyWB2oxJekd4PHtExJYyot2+AHnYrg=
Subject key identifier: 97:CF:85:08:D9:1C:2D:60:B4:32:22:2A:0F:EB:36:B6:D4:3F:EA:F7
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 01969E2C22E0BEAA2FCC0EEA9C74B80381A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 1523
Signing time: Mon 05 May 2025 02:00:14 +0000
Manifest this update: Mon 05 May 2025 02:00:14 +0000
Manifest next update: Tue 06 May 2025 02:00:14 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: bsup2GPTrnLV449XaMnwB6PpJMYSpokh3Ucabk/bwok=)
2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:22:e0:be:aa:2f:cc:0e:ea:9c:74:b8:03:81:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: May 5 02:00:14 2025 GMT
Not After : May 6 02:00:14 2025 GMT
Subject: CN=97cf8508d91c2d60b432222a0feb36b6d43feaf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ad:2a:13:4b:11:f1:3c:54:00:17:88:a4:d9:
70:08:d4:cf:a4:fc:1e:12:9f:58:9d:a9:3b:6d:5d:
ba:4a:7b:fe:44:85:a1:dc:5a:58:ea:e3:cd:2f:12:
5f:a5:bb:1e:df:48:ab:92:98:6a:d5:e8:a6:e7:f8:
d8:1d:81:bd:6a:ff:9f:22:a6:79:9e:07:4e:ea:b5:
b5:3d:37:8f:b0:71:52:ba:94:88:b9:21:21:82:f8:
b6:60:16:0a:5b:e2:ed:f7:12:59:d5:73:38:5d:47:
21:13:05:5a:c1:85:4a:70:2d:16:8d:86:7d:1f:21:
26:47:04:dd:6d:c9:0a:30:a5:28:b9:d7:0b:3b:86:
30:79:21:7a:e1:7f:24:73:ff:c9:aa:65:4e:ac:92:
db:42:ba:09:ae:98:db:c0:28:70:48:47:35:83:8b:
24:43:6c:54:0a:e0:d4:c4:71:62:06:0a:b5:cf:7c:
1b:5a:76:e2:b3:ea:e0:49:07:c8:b5:8f:5b:49:8f:
d8:6d:c2:b3:fb:0a:fb:c2:da:58:5e:21:50:22:41:
76:ad:88:ec:25:fd:f3:56:37:66:d8:96:5a:8d:3b:
fb:0d:ca:89:ea:24:2c:2d:33:36:99:f7:55:06:8c:
67:ae:03:5d:d1:81:30:33:cd:d0:79:75:26:3a:ad:
f6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:CF:85:08:D9:1C:2D:60:B4:32:22:2A:0F:EB:36:B6:D4:3F:EA:F7
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:a2:9b:83:3d:aa:78:5a:90:df:52:2b:22:b5:6e:99:26:7c:
75:60:d0:0f:07:00:5a:c3:d2:0b:34:1b:4c:59:6f:48:7b:1a:
24:95:b6:36:db:74:ad:24:92:84:e7:8c:b6:ae:31:49:d9:2d:
d1:65:da:33:a9:24:5a:76:c3:57:20:b6:11:40:2d:b5:08:0b:
6a:6e:16:ea:fe:53:6b:32:25:c7:15:f0:eb:b5:65:5f:fc:68:
ad:7a:be:9f:54:b1:36:b0:fa:90:92:b7:5b:e3:57:1d:e8:22:
ce:87:07:d5:7f:d2:48:06:73:13:e3:5a:54:a6:10:60:62:6a:
ad:c5:ec:36:60:f0:5f:b7:c3:d2:9f:5a:5c:0c:56:1c:20:dd:
19:97:0d:4a:53:86:be:4a:83:c2:c8:54:03:49:0f:7c:b4:10:
5f:50:a9:f5:20:fb:b9:3e:6b:b1:47:49:da:21:ac:6c:67:05:
5b:86:dc:94:99:18:57:a4:27:69:db:a2:45:b4:a3:ce:65:93:
41:fa:ef:c4:af:26:d0:cf:37:4c:d6:f9:d0:c8:1c:3d:07:24:
6b:81:fd:81:84:37:1e:fb:06:d2:e6:a9:42:c2:85:15:9a:82:
6d:ff:74:77:91:ac:b9:b0:90:23:d4:41:2d:5e:85:02:e0:80:
1a:e8:c6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 07:43:50 2025 by rpki-client