Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
File: QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json)
Hash identifier: 0Uch5X1je8pGJfkpB9A7MeO+FH2TgAuMHsF65Y6Hi/k=
Subject key identifier: DD:26:8E:55:D8:14:12:36:50:F4:68:AB:88:91:AA:B2:86:B6:21:A4
Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Certificate serial: 0196C013CDDA6463E9DBCFA2BF0769A5489A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
Manifest number: 0502
Signing time: Sun 11 May 2025 16:00:45 +0000
Manifest this update: Sun 11 May 2025 16:00:45 +0000
Manifest next update: Mon 12 May 2025 16:00:45 +0000
Files and hashes: 1: 4aDro6K4uBzQDwqf0WWWDv-WEKk.roa (hash: KqqgAJBLDDctP248xFMqsm3yeCd/FvEIq/xYuv9Vp94=)
2: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: ARhn9+0I/VdhNfd3otvZHg4kxqsnm/G+yHP4ZV++8Ho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:13:cd:da:64:63:e9:db:cf:a2:bf:07:69:a5:48:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Validity
Not Before: May 11 16:00:45 2025 GMT
Not After : May 12 16:00:45 2025 GMT
Subject: CN=dd268e55d814123650f468ab8891aab286b621a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b3:90:23:29:9b:02:66:ff:f2:56:d4:31:a2:
75:56:fb:d5:50:cb:d5:f1:42:ca:d5:59:18:87:d0:
fb:12:ce:d6:3c:0c:a4:7b:5a:0e:3f:83:82:78:7c:
50:5a:84:9f:85:cc:03:ae:26:4c:82:9b:fb:4e:db:
ab:5f:2a:bf:e7:8e:a9:72:dd:ab:64:9d:06:de:64:
f1:7b:66:6e:11:40:7e:78:ca:1e:a0:6b:fc:5c:16:
db:fd:82:18:68:95:9a:08:43:fd:e7:bf:90:0e:a1:
f6:67:a6:7e:d4:42:41:f6:f0:5e:ee:61:62:95:db:
47:63:49:ae:e7:fb:63:52:e4:2d:b5:20:78:90:80:
d0:90:a7:36:af:8e:8b:92:15:45:5c:59:ca:43:48:
fe:d2:2f:d0:8a:4e:ec:68:1c:69:25:b9:f9:2d:24:
49:a9:86:77:88:a2:49:10:78:86:57:46:83:a0:3a:
20:3a:54:6f:87:4c:14:12:a5:bb:43:98:de:4a:02:
e3:81:c7:c9:da:b5:37:bf:0e:c0:68:5f:28:ef:2b:
fd:dd:05:d4:82:90:fb:a3:05:3a:ab:8e:90:1b:93:
0b:0b:4a:bd:1f:c0:fc:46:26:fc:e7:9a:40:4a:ce:
fc:ad:e0:1c:10:a9:e7:db:e0:41:59:73:00:af:6f:
21:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:26:8E:55:D8:14:12:36:50:F4:68:AB:88:91:AA:B2:86:B6:21:A4
X509v3 Authority Key Identifier:
keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:70:b7:56:7a:03:37:11:17:af:a3:1e:b8:29:da:35:99:7e:
06:f6:d1:f3:29:3c:3d:5f:a3:c0:b5:dd:38:0e:03:e8:04:23:
4d:5b:0c:ad:90:1b:3b:47:4a:c5:27:e0:d1:14:1f:99:c2:39:
8e:26:69:80:6a:19:c5:1a:9e:d2:97:78:31:6c:c7:55:30:6c:
ce:b9:ce:24:00:40:84:5a:37:1a:3a:b4:cc:1f:4f:ef:65:a7:
4a:dd:67:84:eb:0d:f0:3a:47:fc:d3:38:df:6c:f0:f6:93:c9:
ab:85:fc:7f:e4:3a:32:79:8d:18:06:8b:94:65:b3:0a:d0:f8:
ed:12:44:84:6f:f0:e0:1c:83:ec:6e:cd:7d:c8:8f:af:18:09:
f4:55:30:f4:26:5d:48:a8:15:ab:dd:c1:38:05:6b:ea:c2:35:
62:92:24:04:44:e9:a3:98:b1:1c:65:41:48:b7:ee:3d:73:13:
06:46:49:79:1c:dc:bb:52:ce:a8:62:7b:b7:b8:7b:f3:a5:39:
e3:03:d0:79:34:5e:5d:91:fa:70:71:b5:81:eb:07:49:b0:d3:
c8:7a:33:1d:9a:3b:f2:5b:e3:46:55:6c:14:c3:ab:e8:e2:f4:
4b:4d:67:d7:18:9f:e2:28:0e:6d:be:87:45:f1:e4:52:2a:35:
a2:ff:9a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 20:05:19 2025 by rpki-client