Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: K+R5jszBMUSTfMva/dIve0K922+jjXNV3mA3A/SWRnE=
Subject key identifier: 66:E7:C3:DB:D9:C1:29:76:06:DD:8A:9B:72:79:45:75:28:30:6A:7E
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 0196CD2A5A43A647823FEE169B7828286B21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 153E
Signing time: Wed 14 May 2025 05:00:26 +0000
Manifest this update: Wed 14 May 2025 05:00:26 +0000
Manifest next update: Thu 15 May 2025 05:00:26 +0000
Files and hashes: 1: Diq6O5ga68_B8MEC7x3IDqn6lbc.roa (hash: r+Ep1MU6KZ691K575NCgrIa7fSiICzMjhV/0OlU71vU=)
2: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: DGcVgtMTwl9oAEe99By8EVpuIUo/qZMMTYzK6mw9flY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:2a:5a:43:a6:47:82:3f:ee:16:9b:78:28:28:6b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: May 14 05:00:26 2025 GMT
Not After : May 15 05:00:26 2025 GMT
Subject: CN=66e7c3dbd9c1297606dd8a9b7279457528306a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f8:7f:47:76:3d:83:eb:19:3b:ba:95:ed:78:
28:f2:37:34:ee:3e:39:67:f3:9d:90:5c:83:84:a0:
50:d4:bd:98:28:01:b5:4e:6f:83:37:cf:23:ba:c2:
5f:84:17:2c:df:e8:f5:0a:08:44:b8:c6:d9:da:ec:
41:9c:24:80:4c:d9:be:83:6b:e2:58:94:fc:8f:7f:
94:47:a0:a6:a5:a7:4e:d9:6f:ab:2d:dc:63:7f:41:
87:34:71:4f:23:c3:77:c2:1f:1b:73:26:27:5e:5f:
de:1e:1a:d6:39:ff:5a:4a:9d:bd:2a:e7:d3:b9:6c:
89:00:af:1d:02:09:d4:da:31:a6:ac:e9:6f:1b:b2:
85:86:a1:b8:64:17:ca:75:7a:f4:7a:bf:47:7f:03:
a6:67:2e:45:18:21:cf:43:84:47:9e:b1:0b:bc:43:
61:73:a1:2d:97:62:7b:f1:ec:31:12:73:ca:aa:46:
a6:b4:d2:a7:62:78:57:05:cc:05:a5:44:4c:99:32:
27:06:b1:95:2f:45:99:f7:e3:bf:58:3b:9b:4f:03:
d2:8e:e5:3c:cd:31:e6:48:62:be:f1:04:de:85:9e:
f8:60:d0:4b:bc:86:96:bc:a6:1b:72:58:26:77:a6:
60:08:39:a2:af:90:95:a1:af:e5:f3:66:6e:47:0a:
ec:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E7:C3:DB:D9:C1:29:76:06:DD:8A:9B:72:79:45:75:28:30:6A:7E
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:df:49:48:c0:d0:b1:4c:75:55:63:df:6a:b2:45:66:dc:07:
b3:85:b2:b4:9b:9b:fb:43:68:f4:ee:c2:6c:b2:a8:5c:18:ad:
38:ce:4e:9f:c4:ad:13:1b:a5:d1:cd:09:b7:91:e1:41:6b:61:
cd:73:c1:e2:2d:25:9a:85:e8:f3:cd:da:8c:87:87:9f:8f:98:
61:d3:2d:97:cf:bb:10:98:aa:1b:4b:15:c4:a2:ae:d5:56:e9:
06:72:16:64:20:78:a1:bb:6b:2b:81:ed:e3:3f:0f:74:90:13:
16:f1:e3:98:2b:5b:6a:88:8e:41:c6:e5:fc:0d:9c:28:ce:14:
3f:ff:be:fa:87:b0:d1:78:01:0d:b2:84:90:d6:6e:50:f9:30:
b1:ee:58:70:7f:b6:15:a8:b1:28:ae:94:62:c0:76:41:0a:96:
e3:02:ad:35:dc:4f:11:14:92:a4:6c:d9:db:d8:5e:e8:f8:2f:
30:bf:a0:ef:3d:8d:48:66:68:70:9e:48:7d:18:5f:c8:b2:75:
56:24:9c:f3:eb:3d:b7:de:7c:b0:c6:e9:26:b4:82:6d:67:42:
4b:f0:e3:a8:fd:47:a8:db:15:79:c2:7f:c6:ec:87:3f:8b:16:
15:86:2c:76:5f:83:c1:19:cf:c9:38:06:71:5a:0e:67:30:50:
24:b3:ea:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 10:32:55 2025 by rpki-client