Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
File: QpXD7wDP_s4vcbYZkcbG09pJwRA.mft (raw, json)
Hash identifier: b/0S1iw6rYu/x1IHqFrp1cxqYt0Mx0ML2KNxdJ/RJH8=
Subject key identifier: F4:FB:4A:E4:65:70:85:50:7D:C9:0E:33:E3:4E:E8:2C:2A:1D:F3:E5
Authority key identifier: 42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10
Certificate issuer: /CN=4295c3ef00cffece2f71b61991c6c6d3da49c110
Certificate serial: 0196B8FEF808B1EA10C4EB759C776B34AC7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
Manifest number: 021B
Signing time: Sat 10 May 2025 07:00:39 +0000
Manifest this update: Sat 10 May 2025 07:00:39 +0000
Manifest next update: Sun 11 May 2025 07:00:39 +0000
Files and hashes: 1: QpXD7wDP_s4vcbYZkcbG09pJwRA.crl (hash: OeSlLIoHwrdj7Lqqh/xOwZVb9bulL/iINRikNHPCkhY=)
2: SGxwV5wEplv2xVzvW6jMMH0Hi4k.roa (hash: p0OjWToBEfnkzQw/yjz+AdE3+kwiUg0q1pmwBXRywUk=)
3: eC0FosjTUlbZcnWZVWIH359Lcd8.roa (hash: qDWdvtB5VIYnR+iPBmUfW1ayU92Br+j2BjK1vo1fUg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:fe:f8:08:b1:ea:10:c4:eb:75:9c:77:6b:34:ac:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4295c3ef00cffece2f71b61991c6c6d3da49c110
Validity
Not Before: May 10 07:00:39 2025 GMT
Not After : May 11 07:00:39 2025 GMT
Subject: CN=f4fb4ae4657085507dc90e33e34ee82c2a1df3e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4c:6e:38:2d:5f:69:5b:c7:27:68:5e:45:5a:
8d:62:be:61:eb:a4:e9:bc:a1:73:00:f3:89:04:b2:
11:c0:d5:b4:e9:95:53:2c:c4:d1:1f:97:96:97:ae:
24:71:df:62:41:30:f3:10:5d:8f:9d:3f:91:e3:9c:
9d:96:29:c1:ff:04:3c:99:06:1e:56:15:32:10:49:
8e:a8:50:70:a8:7a:71:86:40:5e:2f:b6:9d:d2:4b:
c7:63:e6:48:c6:31:23:8e:29:27:30:0c:7f:52:33:
93:6e:87:c6:b5:85:18:b1:b1:68:83:03:cb:8f:69:
d2:4a:77:45:9c:d1:97:a7:35:26:cf:35:f2:ec:4b:
3c:5b:40:7f:a0:60:6a:75:89:39:2c:0f:60:04:9b:
17:59:7f:0c:42:f8:8d:6a:59:75:c5:5e:c4:46:34:
61:c6:0c:9e:56:4f:4f:9d:07:5c:59:11:a6:17:df:
0e:65:c2:24:d4:d3:e0:0b:04:e6:5f:b2:d1:89:c0:
46:95:c1:0d:9e:40:26:a4:11:9c:47:a4:71:62:09:
f3:9c:5d:71:f1:7b:85:81:ca:32:e8:fe:02:73:ab:
28:be:7d:21:28:9e:ac:06:19:19:16:a0:3e:61:b7:
64:99:95:23:e2:fc:25:01:80:32:12:e0:25:d9:f0:
f7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:FB:4A:E4:65:70:85:50:7D:C9:0E:33:E3:4E:E8:2C:2A:1D:F3:E5
X509v3 Authority Key Identifier:
keyid:42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:fe:8d:74:4b:55:1d:ab:70:15:29:1c:48:9e:84:f3:a5:91:
12:0d:20:bf:39:81:07:0c:b8:d5:85:06:b1:67:93:3c:f6:f5:
49:1a:40:9f:15:7d:4b:72:1a:16:46:bb:e0:87:99:c9:29:28:
14:c7:d7:54:dc:52:47:5b:fc:d8:12:e8:ef:aa:09:d3:e7:33:
90:2a:1e:f6:d6:2c:1f:bd:d1:04:40:40:4f:a7:79:6c:05:df:
64:47:68:43:83:7c:4b:98:15:fc:67:be:2c:ef:e6:fb:91:2f:
9d:97:bf:9e:67:d8:af:3b:fd:88:7a:73:52:1e:93:57:13:ab:
d2:10:09:14:87:8b:a5:3b:10:b1:72:b0:6d:ca:b2:c8:a8:d6:
4b:9c:55:e8:a1:a6:d2:16:00:f7:4a:12:43:90:e9:ba:12:0d:
9f:dd:2e:bc:ff:a1:51:34:c9:c4:4e:7b:ef:d7:87:b2:8d:85:
a2:f4:34:ae:ae:97:ea:d8:64:ff:b3:ba:f1:8c:9c:0d:e5:01:
cd:25:8c:28:34:cb:d3:8f:15:d6:58:0c:6c:52:f7:f0:32:2f:
34:ba:13:b5:83:4c:ae:8e:a9:ae:e8:f6:1b:25:52:ba:f8:5c:
62:47:95:2c:a9:92:5c:b1:92:b7:91:d1:05:98:cc:68:ec:5a:
26:dc:11:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 09:54:00 2025 by rpki-client