Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: F1KgWgHpJfqw6EleAWhOTCcwbADYQWPQGGoz7u5ClBY=
Subject key identifier: 2A:FB:E3:A1:3E:22:2F:16:B9:43:D5:03:09:D8:AB:2E:6A:D9:83:28
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 0196A9F9DBEB0660E08C644AB09055C1BA5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 118E
Signing time: Wed 07 May 2025 09:00:46 +0000
Manifest this update: Wed 07 May 2025 09:00:46 +0000
Manifest next update: Thu 08 May 2025 09:00:46 +0000
Files and hashes: 1: CRyZWe4rqJ2qdiNWuAP-OJQeZow.roa (hash: g+uZ3IirtTKelPa51RylP3yoQBkp1cF9hHY0LUNHp8g=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: PTtVqhyb4kDHBqzl0GPW3i1DTtcLXHpSlHmW1QeUM9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:f9:db:eb:06:60:e0:8c:64:4a:b0:90:55:c1:ba:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: May 7 09:00:46 2025 GMT
Not After : May 8 09:00:46 2025 GMT
Subject: CN=2afbe3a13e222f16b943d50309d8ab2e6ad98328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9a:90:58:c2:61:0a:d5:36:12:65:15:8d:74:
33:d4:e0:ec:ff:52:3b:94:7d:33:2b:d1:a9:cf:ad:
16:8c:4d:6a:aa:6b:39:7e:95:97:98:1f:db:b2:2c:
b3:6a:d1:31:20:f2:83:e3:92:81:d1:44:52:06:00:
81:40:0f:ce:17:ea:c3:7e:10:62:a9:20:8a:d0:e4:
f3:8f:91:03:17:20:29:d6:b4:9c:99:d9:32:da:67:
4d:8d:9f:1e:c4:ba:90:ff:24:b5:b3:2c:9d:c2:e3:
eb:86:86:da:6d:8f:63:90:40:2d:07:cf:a2:6c:39:
81:5b:50:03:a0:3b:2d:15:ee:6f:10:06:15:55:88:
50:a1:97:49:0b:1f:d9:9a:04:7e:10:ae:3b:86:da:
cb:bb:49:37:6f:a6:63:33:f4:53:e1:c1:ad:86:e9:
de:0c:3d:a2:8b:d4:6c:c1:ab:41:bf:cf:35:b6:14:
04:81:e0:1a:e5:4a:d4:5f:40:08:18:c8:49:8a:56:
4d:9d:1a:de:f0:d5:de:48:76:21:0f:bc:6e:2a:dd:
5c:24:cf:5e:8d:9c:09:10:3f:7c:23:54:19:ed:7e:
20:c5:ed:8e:3a:a6:5f:74:0a:95:74:02:76:b5:61:
a3:6e:c3:44:9b:dd:9a:8a:b3:c5:23:df:21:e6:96:
29:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FB:E3:A1:3E:22:2F:16:B9:43:D5:03:09:D8:AB:2E:6A:D9:83:28
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:1b:bc:c5:a7:70:c0:db:f8:2d:f9:f8:01:f1:4c:df:4d:b8:
75:f9:51:85:81:87:a4:70:cc:4d:c4:ca:49:2f:bb:f3:db:e9:
7d:d7:4e:86:27:de:5f:3c:47:a5:d9:bf:cb:8d:1a:cf:aa:07:
89:41:69:4e:1a:6a:5c:7b:b6:28:eb:b9:7e:51:b8:91:ee:83:
5c:33:8e:fa:0b:fe:11:c7:42:57:f3:48:a7:c4:37:12:a7:4b:
ee:bb:3b:01:1f:94:a0:00:ca:31:fe:2e:af:96:1c:d7:e4:33:
fe:25:ab:71:c8:26:5a:d5:3d:e7:87:de:3f:26:7b:1e:20:99:
1e:c9:cf:d9:10:8b:b3:e8:f8:5b:d8:cb:55:5c:2c:09:7f:a3:
c3:83:a2:94:6f:81:30:7a:fa:46:a7:8d:23:6e:22:55:1c:fc:
bc:b2:f1:44:08:d0:c9:44:2e:7c:9e:9f:f4:7e:16:84:de:f5:
36:87:43:94:3b:49:f6:2e:51:8f:d6:9e:42:e7:ea:c2:f4:8f:
53:ab:b4:7f:3d:c8:38:1d:f9:5c:f5:cb:5f:59:1b:90:55:9d:
1b:58:33:4f:4e:03:f6:a7:ca:91:59:41:d9:1c:a1:c3:10:6d:
27:01:55:32:5d:b2:52:33:ee:a9:37:9b:ec:5c:87:22:77:0b:
d4:b0:57:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 12:53:53 2025 by rpki-client