Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
File: q53IX5TKZH3g22TXTTE5lHzESbo.mft (raw, json)
Hash identifier: CaI+7W7av9tPbDHlpF4sQ/FvQvnXQcCPpiLAUWKOyZA=
Subject key identifier: 1C:AC:E6:09:7B:EB:2B:DB:A5:19:1A:3C:52:60:4B:05:6C:DE:45:39
Authority key identifier: AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
Certificate issuer: /CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Certificate serial: 0196C7962D75DDF6E831D4C147F68F555A15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
Manifest number: 1226
Signing time: Tue 13 May 2025 03:00:30 +0000
Manifest this update: Tue 13 May 2025 03:00:30 +0000
Manifest next update: Wed 14 May 2025 03:00:30 +0000
Files and hashes: 1: 3U4MivbAgZFFTzpri9v9qzr-9Dg.roa (hash: OpxoqQJPTPV/7nPesTeS09o0jfmFmQcqEJLqODzVTIM=)
2: q53IX5TKZH3g22TXTTE5lHzESbo.crl (hash: bqshS2WOKmR9J1PTDxNbdNBzG8h8DTc1XxvtqcfeMBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:96:2d:75:dd:f6:e8:31:d4:c1:47:f6:8f:55:5a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Validity
Not Before: May 13 03:00:30 2025 GMT
Not After : May 14 03:00:30 2025 GMT
Subject: CN=1cace6097beb2bdba5191a3c52604b056cde4539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f2:71:6c:98:7b:bf:05:39:9b:93:8b:3e:73:
65:69:33:01:1b:ed:00:5a:40:30:a7:0e:77:a0:c7:
b5:5c:ce:d5:01:92:40:2e:6c:2e:37:ee:cf:41:49:
5c:68:24:86:47:8c:1f:82:a8:d8:41:52:dd:da:74:
6c:90:14:f6:da:fc:d5:eb:00:90:ec:4b:18:d2:ad:
15:00:52:0c:fe:fe:20:cf:d1:bb:c1:eb:55:36:1a:
07:5b:9a:a2:59:cf:81:ad:f4:e4:6f:82:aa:32:bc:
52:64:e1:85:b6:8f:9e:6c:26:0c:6f:16:b5:3c:eb:
e6:07:a5:a3:c7:24:b3:bd:cb:a0:cc:9f:27:24:de:
07:cb:bc:08:43:6f:72:63:31:ad:64:fc:dd:50:33:
da:fa:d9:9d:da:ce:9b:e3:d7:43:4d:c8:e8:98:e2:
4d:c2:1a:f5:27:03:c7:2d:aa:98:e1:9b:97:74:b7:
ad:a8:d6:62:ca:fd:82:6a:1a:9d:87:54:28:12:53:
b6:23:7b:18:fa:2a:ac:0a:07:0e:5d:b9:3b:cf:e8:
c0:4d:bc:62:38:62:6a:27:d9:b4:41:47:d4:20:7c:
15:56:5e:db:aa:be:2b:2f:84:52:7c:41:f5:7d:59:
4a:86:7b:5b:79:51:2d:35:df:a6:4a:cb:6b:9a:34:
19:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AC:E6:09:7B:EB:2B:DB:A5:19:1A:3C:52:60:4B:05:6C:DE:45:39
X509v3 Authority Key Identifier:
keyid:AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:3d:14:e1:e3:41:e3:dd:5a:69:55:00:2c:4a:cd:9a:ff:6b:
c3:9a:e5:d2:01:e2:86:fb:59:9d:15:e1:d5:a3:4d:4a:dd:a5:
53:ef:bb:7e:c8:68:3f:91:8b:dc:61:ce:78:86:91:fd:18:3f:
ea:d4:c1:ed:79:7f:ce:a1:da:d9:80:4c:28:dd:b4:a7:35:db:
e3:14:05:cc:dd:7d:88:dd:d4:01:5d:70:9d:59:a2:44:31:96:
17:fd:d9:2f:22:88:0c:11:47:1e:10:2c:d7:b4:d2:95:19:b9:
ce:55:79:e5:08:16:5d:03:c1:8a:dc:e0:cc:de:59:b4:30:5a:
0f:d8:18:93:c9:dc:b2:0b:3b:6a:06:c8:60:ea:07:11:52:1c:
06:66:68:75:cc:a6:82:d3:69:15:2d:20:9e:e7:0c:c0:8c:29:
7b:d4:37:b5:a5:e2:71:2c:45:c9:0c:05:ff:82:37:cd:c7:e4:
0f:da:6a:d8:31:69:27:f7:24:00:50:82:8a:53:91:a9:b8:9c:
ea:43:bf:bc:f2:f5:d5:83:57:b8:18:66:f2:3c:0f:4f:b0:d0:
84:35:4a:29:0f:00:5d:4b:1f:d8:ff:9e:44:b6:3b:eb:0c:db:
ba:24:25:ff:27:2b:cd:dd:c7:51:be:ba:1a:d0:44:0a:a9:28:
f7:45:f8:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 08:33:34 2025 by rpki-client