Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
File: QukMnRAJsywZRbb45liUg8XqR0M.mft (raw, json)
Hash identifier: 1tgSl15qPJUsnaiDkQ5ZaHI3Vnc5oEXoLpe+q+BOAAs=
Subject key identifier: 03:96:38:55:08:84:DB:A8:83:21:5A:2D:B4:EB:45:76:C5:47:AD:71
Authority key identifier: 42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
Certificate issuer: /CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Certificate serial: 0196C796949D26F3AEFB8610281D0C81813B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
Manifest number: 0921
Signing time: Tue 13 May 2025 03:00:56 +0000
Manifest this update: Tue 13 May 2025 03:00:56 +0000
Manifest next update: Wed 14 May 2025 03:00:56 +0000
Files and hashes: 1: QukMnRAJsywZRbb45liUg8XqR0M.crl (hash: AXj0S68WExmlkj3DVXG1dO6BQ3EfIeHsPtWZNNrB3OQ=)
2: vdgwFbYVt8R1VSJ8o61nh0Nw_GA.roa (hash: 76jfpsJ1QF75Cjby0A7bmnFhoDcXagSAAfe9ZF5jiZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 03:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:96:94:9d:26:f3:ae:fb:86:10:28:1d:0c:81:81:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Validity
Not Before: May 13 03:00:56 2025 GMT
Not After : May 14 03:00:56 2025 GMT
Subject: CN=039638550884dba883215a2db4eb4576c547ad71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:53:e2:cb:58:1d:18:52:d9:6f:d3:5a:68:a5:
cc:da:3d:60:64:9b:7d:02:e4:1a:10:8b:5d:1b:93:
0e:e5:14:7f:18:d6:5c:61:3d:46:18:a1:00:8c:23:
30:ef:41:7c:f7:78:21:c9:a7:57:a3:13:30:9f:b1:
7c:bf:12:7b:0f:e5:82:bc:5f:3c:15:06:a4:58:11:
20:5e:dc:12:39:9e:53:66:09:ce:51:69:9b:2a:e2:
03:31:2c:e6:69:10:4e:0c:64:7d:6c:ca:f4:c8:95:
f7:a4:de:51:9b:88:12:e6:2e:be:34:7d:7e:d6:5d:
73:0a:35:ee:a5:83:23:98:ab:20:0a:00:c7:ab:66:
c6:bc:56:44:fd:ab:e9:31:46:5a:fe:8c:9e:2f:9f:
62:38:fa:5a:c7:f3:ef:32:ab:88:8e:50:1b:11:3f:
5f:e8:b0:85:06:4b:d2:00:b6:cf:42:99:c3:db:08:
dd:a0:5b:fe:79:2a:66:f0:a0:65:ce:2b:55:5e:65:
d6:0f:0e:74:d5:3e:5e:8e:8d:8e:a3:1c:aa:6e:1f:
ad:21:1b:58:ac:8a:d3:27:4f:b6:50:59:0e:e1:4b:
41:86:6e:35:f9:2c:16:d9:2b:15:ff:99:9d:e7:17:
fa:bd:6a:11:fb:af:a2:24:fd:c0:88:38:d2:6a:a4:
d3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:96:38:55:08:84:DB:A8:83:21:5A:2D:B4:EB:45:76:C5:47:AD:71
X509v3 Authority Key Identifier:
keyid:42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:a1:10:a3:0c:9e:1f:13:30:3e:cc:4e:b0:76:27:7c:b6:3b:
f0:31:86:47:b2:da:65:f4:34:51:a4:98:b7:42:70:8b:bd:b5:
7c:28:3d:3c:48:21:d3:cc:94:a8:39:b1:41:b9:8d:d7:eb:72:
ca:31:d8:36:9e:13:17:de:6f:dd:e5:35:0c:f5:34:4f:ac:58:
f6:53:df:c9:8e:57:88:e6:af:7b:c4:2b:a0:b8:c4:a8:c9:c3:
b9:c4:a5:81:02:94:f9:85:33:cf:b1:ec:31:c0:aa:d1:dd:ce:
c0:8c:d8:9f:f6:06:57:7a:d8:73:11:14:ea:7a:1e:4a:1c:fc:
08:e1:6f:b9:47:21:01:3f:81:00:19:f3:4e:99:4a:f1:ae:1a:
d3:7b:05:1b:ca:55:13:7c:69:df:70:95:5b:c8:79:d9:97:23:
8a:67:bc:00:71:65:55:d1:3f:bf:41:14:d8:00:b8:a6:0d:47:
75:7e:4c:a0:99:5e:08:f4:49:92:53:02:80:90:4d:0a:8d:71:
97:1f:1a:13:a0:0e:57:b0:e0:49:53:0b:95:4f:56:e7:28:90:
b4:c2:ad:62:8c:e2:fb:87:c2:70:b4:75:1c:5d:81:3b:f1:c1:
86:3c:15:0c:9b:7f:da:27:e0:b8:b2:5a:cd:4e:5b:c5:43:6a:
d6:ca:22:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 10:16:22 2025 by rpki-client