Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
File: qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft (raw, json)
Hash identifier: CWYFoKYMirvXPJtmPW93hKnuvjq//+YiCbWLTQitf74=
Subject key identifier: B5:B9:A7:17:07:0C:DD:C2:23:07:AF:CD:9E:F0:13:D7:08:99:D8:9E
Authority key identifier: A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
Certificate issuer: /CN=a9a073b31d888e4439e272e007c9532fc305c80d
Certificate serial: 01969CAC56DC4647AB08DFAF512EE01E317E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
Manifest number: 0BE5
Signing time: Sun 04 May 2025 19:01:02 +0000
Manifest this update: Sun 04 May 2025 19:01:02 +0000
Manifest next update: Mon 05 May 2025 19:01:02 +0000
Files and hashes: 1: E0nL2r6tA4Kip6utbHVTl2QsGcA.roa (hash: aen5+JQjIiPGZfLBCbBcX/i0rEODfLs98wUB0AIvd0A=)
2: qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl (hash: 39Hk8aDz0LktiV0SV6Sc/VuySFBIyJPnns0bdoRfJ8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 19:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:ac:56:dc:46:47:ab:08:df:af:51:2e:e0:1e:31:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a073b31d888e4439e272e007c9532fc305c80d
Validity
Not Before: May 4 19:01:02 2025 GMT
Not After : May 5 19:01:02 2025 GMT
Subject: CN=b5b9a717070cddc22307afcd9ef013d70899d89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c1:fb:f9:32:53:67:f8:95:03:48:d2:2d:5e:
74:86:3c:d8:a8:7f:3b:8d:36:bf:ca:e6:a9:27:b8:
ec:41:ca:de:70:5e:b3:f8:7c:86:bb:0b:aa:a9:49:
03:87:9f:a0:55:bf:60:69:95:52:2e:c1:3a:3d:24:
1b:b3:86:76:3b:ae:e2:71:61:12:2a:52:6b:7e:58:
51:2d:04:00:d4:8a:87:0b:2b:b5:8f:7f:e4:41:c8:
f8:33:e2:ad:a1:0e:bd:9e:40:ea:7a:ca:9f:d7:de:
0c:29:ec:61:98:c2:3c:40:dd:0a:b1:d0:37:86:91:
53:3c:f3:6c:29:9f:f6:4a:b3:19:3c:ee:9d:6c:4d:
00:13:26:f3:3b:17:85:58:7c:18:d2:bf:f2:8f:35:
e5:7a:fb:4b:11:cd:0c:2a:ce:a4:7d:b6:49:23:50:
80:16:41:d0:71:cb:ad:e3:78:c5:b3:eb:b5:20:d9:
79:18:e4:de:46:2f:70:1b:4f:6c:af:ae:18:c1:40:
cc:0a:af:e2:cd:f3:93:ea:b4:ea:89:5f:d0:ed:78:
63:a6:84:79:6b:62:90:82:3e:85:9d:25:d3:c6:61:
28:30:df:2f:e8:e1:08:97:7f:42:0d:8d:1f:b9:ca:
1f:1c:e1:9f:b4:76:6f:cd:39:37:d6:ed:23:b1:fb:
c4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B9:A7:17:07:0C:DD:C2:23:07:AF:CD:9E:F0:13:D7:08:99:D8:9E
X509v3 Authority Key Identifier:
keyid:A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:9f:26:2d:ab:d3:01:cd:be:bb:87:1c:bb:2b:20:3a:0b:eb:
d0:1e:54:4e:b9:05:1f:f1:b1:81:05:e5:65:c6:d2:18:21:78:
19:b4:07:30:38:28:d8:67:95:f2:e7:f0:a2:b8:1b:ed:8b:f7:
05:33:7a:dd:4d:9b:d7:0c:10:b6:9c:96:4c:5f:a3:6f:1e:37:
9d:7f:55:45:d6:ef:33:69:b6:c0:3f:5d:01:5a:70:ee:b3:52:
92:01:e6:4b:4e:79:49:68:52:a0:b0:b1:34:ad:51:6b:4b:fe:
bd:9b:3f:f2:c3:d2:b7:3e:80:1f:04:46:a7:e8:4b:8a:e1:7b:
1a:4d:16:d2:11:c4:7d:f4:cc:e4:6c:f4:dc:47:26:ce:40:69:
be:a3:af:3e:e9:3b:37:e8:0a:de:28:b0:97:37:e7:7f:3c:99:
3c:68:4e:63:e4:7d:25:43:40:2b:8a:6b:3a:eb:bd:80:77:ae:
28:e4:30:9e:53:4e:45:c9:d3:cc:29:ad:4f:dc:47:58:50:85:
c7:b9:98:ce:d0:a9:e7:27:51:74:b5:69:bf:cc:a8:87:15:4c:
d0:0a:3b:92:79:c4:58:14:6f:fc:88:55:c1:aa:c6:21:b8:90:
b6:26:7c:26:d8:61:33:03:ac:a3:92:38:bb:61:88:b5:d4:64:
09:5b:8b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 03:55:16 2025 by rpki-client