Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
File: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft (raw, json)
Hash identifier: pLU5O6DOJLU+dAOi15CnVsFibVJamAJb4ixlVGwH2NA=
Subject key identifier: C3:A2:CB:5E:2C:A8:6C:E2:E7:66:D0:55:72:74:1D:17:AC:17:60:A4
Authority key identifier: 40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
Certificate issuer: /CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Certificate serial: 0196BE256EC2FAD0BE2F5D73F6D02A331412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
Manifest number: 1530
Signing time: Sun 11 May 2025 07:00:46 +0000
Manifest this update: Sun 11 May 2025 07:00:46 +0000
Manifest next update: Mon 12 May 2025 07:00:46 +0000
Files and hashes: 1: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl (hash: 1seNeDuz7Z5PTUF+wqGE+0R+SVGnmbmDLa3+1NTLOqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:6e:c2:fa:d0:be:2f:5d:73:f6:d0:2a:33:14:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Validity
Not Before: May 11 07:00:46 2025 GMT
Not After : May 12 07:00:46 2025 GMT
Subject: CN=c3a2cb5e2ca86ce2e766d05572741d17ac1760a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8b:4e:20:cf:69:85:a6:6a:0b:b4:5f:ac:61:
9e:6a:b3:cc:75:35:ce:a9:2f:ae:15:98:29:35:f3:
0b:dd:7d:dd:ba:1a:81:c0:79:1c:0c:4d:94:ac:72:
24:2b:93:6b:46:b9:d6:97:e5:84:31:f5:40:85:ab:
5a:dd:a9:ac:98:70:d4:b4:91:b5:44:2b:bd:54:3b:
6a:ac:91:4c:81:52:84:8c:91:1f:d2:c1:e6:1c:cd:
5e:9e:ba:a6:d9:1b:8f:5d:96:9f:a9:b2:42:3a:df:
51:0c:c2:c7:fa:e2:1c:42:67:f2:c9:92:0a:5c:50:
bc:8c:66:0b:6f:a8:d2:87:c5:80:93:01:e3:0c:1d:
6b:d1:e5:cd:97:fb:83:67:8e:39:6f:9d:a4:7e:5c:
34:d3:8b:3a:ad:bc:8a:10:80:27:e5:fa:24:58:b1:
cc:8b:f7:81:a9:6a:3d:ca:05:ff:2f:9e:d5:d1:a5:
1b:88:0d:0f:54:fa:a8:4b:7a:fc:ef:fe:a3:42:36:
44:76:e4:96:45:bc:8d:e3:53:22:48:19:ff:3b:66:
21:b4:c7:25:4f:60:c2:f8:87:ee:48:4a:a9:3a:c1:
5e:50:a7:39:09:6b:13:f2:3f:e2:a3:2b:98:14:60:
e6:e8:4a:db:98:12:2d:70:80:6f:8a:47:a4:b1:01:
6a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A2:CB:5E:2C:A8:6C:E2:E7:66:D0:55:72:74:1D:17:AC:17:60:A4
X509v3 Authority Key Identifier:
keyid:40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:53:f0:d8:25:c7:7b:23:af:78:45:11:1f:7f:a4:e7:45:35:
57:51:7c:ca:16:48:b4:0e:ae:2f:52:7e:cf:b2:c4:fa:f8:77:
e4:7f:19:86:cd:4c:cf:47:39:20:b4:6c:43:3c:27:7c:c5:9c:
b2:b2:68:8b:32:9c:46:07:63:45:41:f9:3c:4f:c8:93:df:7e:
11:ea:41:b9:df:25:0c:ad:2b:df:5d:a8:bd:d8:89:f7:3a:e0:
fc:cd:2c:c2:c3:90:82:98:81:75:4c:30:9c:86:9f:15:ba:ee:
9f:a0:a9:2b:af:65:f8:8d:31:d0:a2:ef:c7:4b:f3:62:02:36:
79:79:4f:e1:dd:2e:8c:0b:26:8e:81:aa:31:87:70:ef:dd:b6:
28:da:b1:f1:ee:61:f9:63:66:36:e6:44:8c:17:65:9c:1f:4a:
c6:c8:cb:3a:81:97:a3:8f:f7:2a:39:b7:e1:34:a2:ef:66:38:
31:37:a3:37:f2:fe:29:05:b2:ef:c1:47:1c:91:7e:da:56:0b:
8a:0e:47:9a:54:03:50:18:92:6e:1d:eb:3a:cc:30:e5:9e:b6:
21:4e:b6:d6:8c:65:2b:a4:03:2a:12:dc:c0:3f:df:a2:f6:cc:
1e:ba:a7:d1:2f:14:04:19:3a:64:3e:db:1d:8d:3c:a8:8e:49:
20:22:b9:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 11:48:36 2025 by rpki-client