Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
File: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft (raw, json)
Hash identifier: ocPguU6wcwlS6MKJjxDQR7kDP+k2GHNpSAQ6Jw+0MuI=
Subject key identifier: B9:45:96:13:AC:18:9D:16:F8:08:5F:A3:76:E3:52:4E:78:13:92:F1
Authority key identifier: 43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
Certificate issuer: /CN=43cf416193a1c2ed3056b647e5a46503148e3824
Certificate serial: 0196BA48A7C76E345116E97616CB8F74B4C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
Manifest number: 05F2
Signing time: Sat 10 May 2025 13:00:45 +0000
Manifest this update: Sat 10 May 2025 13:00:45 +0000
Manifest next update: Sun 11 May 2025 13:00:45 +0000
Files and hashes: 1: EVfs3Ty5us2kONM9lNbKxeOpQy4.roa (hash: XNAy20rJW1bN/SCZtyAydEWkC3qMnBorsPnV2qCqZ6A=)
2: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl (hash: zrqmFTbgWFTxlqNaF6t6fsiRW1fTKIEe930vMhARYxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:48:a7:c7:6e:34:51:16:e9:76:16:cb:8f:74:b4:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43cf416193a1c2ed3056b647e5a46503148e3824
Validity
Not Before: May 10 13:00:45 2025 GMT
Not After : May 11 13:00:45 2025 GMT
Subject: CN=b9459613ac189d16f8085fa376e3524e781392f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:24:92:4e:cf:b7:a5:0f:91:74:91:55:33:2a:
47:8f:e5:7f:68:4b:00:ac:b2:ae:85:db:5b:9c:73:
a3:2f:ac:3f:59:6d:ab:bb:8b:98:06:06:28:ec:11:
b8:03:d1:e5:2a:d6:63:43:65:f6:d5:dd:18:1c:ff:
7b:37:f2:84:1f:76:6f:c4:a7:bb:c6:fb:da:26:34:
65:d0:79:d7:96:3d:93:0f:75:cf:17:01:19:3a:b7:
9d:a4:da:22:3b:1e:90:e0:3a:7c:33:55:61:6e:46:
84:cc:fa:9c:c1:bb:38:f1:b1:46:a5:2c:03:19:5c:
f8:d2:ac:e5:ff:c3:47:e1:89:de:30:48:f1:bc:09:
b4:98:61:c0:78:1a:4d:b9:74:8a:f6:72:cb:60:3e:
d2:be:e8:47:87:90:d0:db:b3:40:ee:59:bd:37:15:
b0:91:2c:b8:61:b0:46:3f:f8:56:97:4e:b8:f2:72:
3f:9a:31:17:ea:eb:da:04:b8:db:47:32:8b:19:25:
ef:b2:0a:f5:f4:08:ea:4d:d4:0e:c1:39:4f:64:8c:
18:7d:b1:bc:ce:24:03:de:75:79:9b:a9:cc:3f:a0:
05:ed:c6:0e:ae:ea:1b:c7:8b:42:32:e9:6d:25:02:
36:02:2b:a3:74:d8:c3:10:77:89:0f:c7:8d:93:11:
13:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:45:96:13:AC:18:9D:16:F8:08:5F:A3:76:E3:52:4E:78:13:92:F1
X509v3 Authority Key Identifier:
keyid:43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:0a:7f:84:66:ed:a9:3e:2f:54:dd:b9:ec:7b:d3:cd:c6:d0:
8a:ec:56:c5:02:40:b2:3c:d5:3e:03:c2:0d:cf:1a:1d:0d:83:
e4:fd:11:97:97:99:90:37:4e:3b:9e:29:49:5d:e0:8c:60:87:
a7:9a:a8:1e:4e:16:17:b2:b6:bf:0d:04:b4:78:ad:bb:01:df:
1d:ba:4b:27:62:1a:99:71:57:18:77:0c:b9:dd:b2:cd:1a:2d:
64:ac:f2:78:e0:ea:76:75:25:cd:cc:12:3b:48:aa:68:fa:1a:
b2:a5:6a:a3:84:6b:25:22:e3:8e:5a:68:cb:db:99:9a:cb:19:
c7:43:d0:c6:ce:71:9c:9e:8c:98:73:8a:04:d2:11:4a:06:1e:
c8:c1:17:f5:d0:51:07:8e:85:15:c5:bb:53:cf:5f:8e:0a:d9:
31:03:bd:c6:32:58:6b:94:f8:64:47:95:fc:86:38:12:8c:a9:
5e:3d:a8:21:50:da:a1:59:55:04:66:ed:9a:4a:34:a9:0f:03:
08:d9:46:71:e3:34:7d:7f:c0:b5:e9:1f:f5:ab:e9:09:9f:53:
b0:46:46:da:dc:bd:67:7d:6b:0a:20:f5:91:d3:0d:f6:c8:63:
5f:b7:85:1e:0d:28:e1:8a:da:44:a0:e7:38:da:f0:81:a3:01:
44:88:4b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:20:46 2025 by rpki-client