Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
File: QVHWtEHT9XdiwDL4-tIXYIoi96E.mft (raw, json)
Hash identifier: Vz3y1W3yAKPDEM/SkUOIIiqR5UuUmU0JyF6VskyF9C8=
Subject key identifier: 14:5B:79:BF:3C:F5:B3:6B:EF:F0:27:3E:BA:F7:E1:03:E1:CC:27:63
Authority key identifier: 41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
Certificate issuer: /CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Certificate serial: 0196BECA395661001E5019599D6A10BD10EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
Manifest number: 1535
Signing time: Sun 11 May 2025 10:00:46 +0000
Manifest this update: Sun 11 May 2025 10:00:46 +0000
Manifest next update: Mon 12 May 2025 10:00:46 +0000
Files and hashes: 1: Im-QceSwk2rydy4UnBzai_RFayI.roa (hash: 7cmPd6tOwgpnXHTZZ7ExgoosfdS4LnMMgIaEbvg4EPQ=)
2: QVHWtEHT9XdiwDL4-tIXYIoi96E.crl (hash: R7YCElTB8PObZQznWXrst+3a7DBMY7J1QXqd6gsHcmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:ca:39:56:61:00:1e:50:19:59:9d:6a:10:bd:10:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Validity
Not Before: May 11 10:00:46 2025 GMT
Not After : May 12 10:00:46 2025 GMT
Subject: CN=145b79bf3cf5b36beff0273ebaf7e103e1cc2763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:d6:a8:ec:78:21:62:7b:98:c3:e4:b5:4d:a6:
35:20:f2:12:4a:8b:07:92:18:7a:7a:6f:f3:42:3d:
ad:58:60:d5:3f:50:cd:aa:24:f1:5c:0e:f9:46:40:
19:96:18:7e:f8:fc:e4:86:07:12:a1:8f:77:bd:97:
d9:71:1b:5b:df:cd:b8:ad:fc:47:96:a5:42:af:c5:
e9:1e:d1:1c:25:4e:b2:a2:10:c1:9d:af:bd:b7:e1:
c6:36:f5:29:b6:59:33:33:94:07:c9:ed:9c:aa:74:
ae:05:ca:1f:a7:df:23:dd:df:78:5c:2e:41:a9:44:
40:ec:89:8c:2f:8c:28:91:59:4a:c1:a6:1a:57:ab:
74:ff:d4:16:e8:de:6f:44:54:c1:ff:47:f3:fe:b6:
db:9d:1a:ea:28:df:be:fd:f8:18:dd:73:b2:c6:b2:
37:fe:f6:6c:78:69:03:45:14:ee:a6:e5:c5:33:5f:
52:f4:93:23:8e:86:76:d9:f5:ce:ed:fe:f6:44:15:
09:4c:06:a5:de:4d:c1:9f:f6:5c:c2:8d:d6:f3:07:
3c:66:b9:f5:91:bb:cb:e9:4c:cf:a6:fb:21:5a:3a:
11:9e:58:6d:7d:f9:4d:a5:fa:14:2a:4b:2f:bf:38:
24:28:55:11:84:02:61:fc:60:ad:96:cf:66:be:bb:
6d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:5B:79:BF:3C:F5:B3:6B:EF:F0:27:3E:BA:F7:E1:03:E1:CC:27:63
X509v3 Authority Key Identifier:
keyid:41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:2f:38:30:60:f6:ee:a2:66:d6:fe:c3:24:4c:1a:e7:8b:9c:
da:92:18:54:b1:96:1f:f4:8b:f3:fc:56:a6:62:29:49:fb:53:
b2:ed:ec:6e:46:0f:f1:77:af:0d:70:f9:c8:4f:0f:dd:2a:a2:
c1:12:c0:13:98:a9:03:a6:b4:6f:4d:6d:ce:31:38:c1:62:0b:
0f:db:8b:dd:b1:28:a9:11:ba:e2:ed:c5:f2:31:8f:b3:51:4e:
46:60:dc:81:1b:51:24:91:39:68:63:50:0b:04:c7:94:75:43:
1f:7c:b0:92:77:54:09:d9:76:d9:68:8b:ad:59:ef:99:88:2b:
7d:1a:87:d7:0e:81:15:04:c9:d9:61:f8:f5:78:26:96:ce:44:
64:9c:3d:9b:c5:c1:d3:ff:e7:f9:72:ab:97:b7:c4:e6:7b:71:
87:09:77:50:ce:da:c7:06:78:b3:f9:87:be:16:c8:61:12:df:
0f:0f:16:96:ed:d2:75:2b:b7:1c:30:78:6a:40:d2:5c:0a:85:
58:80:2a:d0:ac:32:14:fe:d7:f4:51:5f:65:ae:14:7b:e3:78:
b7:46:2b:67:e4:ce:0d:ac:c6:f2:97:b2:ac:2e:cd:aa:ef:b4:
f1:0c:ec:06:82:bc:8a:45:09:9f:74:bf:42:c9:f6:ec:f1:bc:
00:c7:1d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:23:24 2025 by rpki-client