Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
File: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft (raw, json)
Hash identifier: kOMNkvOGJrzensGHw7vmtPQQ4cUbQYtBUZpECDIo1ns=
Subject key identifier: AC:02:C3:79:CA:34:35:86:EC:A2:66:FB:81:5F:21:74:7B:42:46:53
Authority key identifier: 41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
Certificate issuer: /CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Certificate serial: 0196C3B944246236259F5367EE370817F375
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
Manifest number: 153B
Signing time: Mon 12 May 2025 09:00:20 +0000
Manifest this update: Mon 12 May 2025 09:00:20 +0000
Manifest next update: Tue 13 May 2025 09:00:20 +0000
Files and hashes: 1: NrBghBDxVUP3b8K-s4QfPajtoEw.roa (hash: PXmrD91Lu77kd9R7RmMEPIR9q62nZX3KSQVZITYjO7o=)
2: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl (hash: b9ES+RWQ6a5amB0ivIWvyKftKN2MVMo2OQAlhrGt9U0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:44:24:62:36:25:9f:53:67:ee:37:08:17:f3:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Validity
Not Before: May 12 09:00:20 2025 GMT
Not After : May 13 09:00:20 2025 GMT
Subject: CN=ac02c379ca343586eca266fb815f21747b424653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:37:41:ee:43:cf:75:fd:2c:4b:69:c0:8e:67:
d7:ee:11:0e:d0:73:6a:73:76:5b:cd:40:d7:22:f4:
d8:4f:0e:54:06:2c:92:a2:ac:22:09:e7:5e:ce:7f:
70:62:f8:1d:07:b1:01:86:33:7e:c4:98:cf:bd:58:
b6:b9:fe:36:e0:ff:11:b4:13:23:59:a8:f5:68:4f:
70:9c:c8:2c:7d:6e:c0:5c:9a:9f:68:1b:e8:c1:fd:
c6:83:84:76:79:eb:6e:71:d1:4d:87:7c:d3:0e:d4:
f0:2f:d2:15:65:b4:79:8d:a6:87:98:ad:77:06:72:
96:e1:34:a1:3a:8c:09:65:65:55:31:a2:c9:fa:a5:
a2:fa:9e:4e:ca:14:d7:25:db:e4:ac:bd:0d:95:db:
41:52:4a:ae:5d:17:b0:c1:12:e1:5b:16:b9:1f:4d:
39:00:53:bf:a8:46:25:1c:75:1d:e0:e9:f7:e8:b5:
d0:b6:02:fc:69:d4:90:72:f2:c3:ce:62:14:a8:d7:
fd:d6:e8:de:8f:21:db:3d:1c:1a:69:86:42:cd:49:
3d:67:cd:0e:57:66:7b:ee:de:05:48:8a:6d:44:1a:
3c:50:34:2c:7b:ac:77:38:8a:24:54:5d:41:9e:5b:
f5:2e:a1:ae:a9:83:19:2e:27:8f:39:8f:a0:75:76:
89:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:02:C3:79:CA:34:35:86:EC:A2:66:FB:81:5F:21:74:7B:42:46:53
X509v3 Authority Key Identifier:
keyid:41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:8d:29:38:3e:a3:d9:50:67:74:00:29:82:4f:68:66:f3:24:
ad:37:10:c0:4e:21:69:03:ee:3d:db:8f:38:18:ec:10:81:4b:
94:43:0b:aa:ac:47:a7:8c:ec:4f:d7:c8:de:f1:31:72:10:13:
91:df:47:81:89:21:3f:92:6f:f5:99:63:ee:5c:a1:59:48:fc:
55:8c:9e:ae:e6:66:21:1c:d2:29:7d:4c:b7:f0:b9:66:79:c3:
86:6a:a5:96:d4:7a:04:4a:80:d5:ce:06:1d:d9:27:54:05:52:
0f:b2:9f:8c:0c:c5:5f:73:46:15:00:5b:00:e1:51:7c:f7:ed:
d4:16:72:ac:14:5b:9c:5c:d5:2d:59:a0:53:39:3d:b5:d6:0b:
cf:06:e0:9b:bc:d2:ac:f3:87:92:d9:46:65:05:21:b6:00:00:
ea:40:a7:4e:95:34:a6:5e:0c:cf:bb:e4:1c:58:40:49:5b:c4:
03:98:a0:04:ac:2f:50:8f:fd:be:33:07:6c:90:c5:50:31:40:
ae:aa:37:c8:a2:dd:a1:99:f5:fb:61:b5:20:b1:10:6d:6a:63:
71:f0:54:48:fb:eb:26:bb:8e:0d:31:5f:63:8a:31:2d:41:bb:
e4:0e:57:ca:0a:93:ec:39:0b:20:8a:1f:85:2c:b8:3b:b8:7f:
2a:5e:19:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 17:16:26 2025 by rpki-client