Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
File: QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft (raw, json)
Hash identifier: tmmiKA4EBE83IEadUCmzKWZjDTJpUguRtVvMwOs+gEg=
Subject key identifier: 96:5F:5F:1C:1A:1E:9B:C6:64:DE:8E:69:E1:14:3E:A8:66:00:6E:8E
Authority key identifier: 42:4C:16:5B:6A:49:34:95:41:C6:5A:F9:B2:15:80:16:38:19:F2:84
Certificate issuer: /CN=424c165b6a49349541c65af9b21580163819f284
Certificate serial: 0196B9A463FC3AA890DFA7AACF539E66C5F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
Manifest number: 08D0
Signing time: Sat 10 May 2025 10:01:20 +0000
Manifest this update: Sat 10 May 2025 10:01:20 +0000
Manifest next update: Sun 11 May 2025 10:01:20 +0000
Files and hashes: 1: QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl (hash: L7bizepX/Wk5f5JMsbIo59d/mKEDQOrwA8SjvlcpoIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a4:63:fc:3a:a8:90:df:a7:aa:cf:53:9e:66:c5:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424c165b6a49349541c65af9b21580163819f284
Validity
Not Before: May 10 10:01:20 2025 GMT
Not After : May 11 10:01:20 2025 GMT
Subject: CN=965f5f1c1a1e9bc664de8e69e1143ea866006e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:92:61:d2:5f:c8:4e:ef:27:61:d8:fd:e9:c0:
33:f0:63:1d:e1:fd:42:1c:fe:e7:9e:58:c3:22:ac:
72:93:9b:e1:2b:6f:c0:32:2b:b6:6e:6e:bf:2d:22:
bb:9e:47:9e:ef:e0:28:06:91:30:fe:75:09:af:2b:
5c:92:07:32:2d:2b:21:c3:c9:5e:8c:a9:04:08:ab:
2f:52:58:c3:48:5c:d8:4b:e4:50:f9:9a:1f:84:fa:
55:28:fe:cc:5c:71:df:c1:56:24:89:db:43:6c:06:
7c:ef:e6:fa:6c:77:72:75:74:dd:7f:8d:fe:2c:a4:
a8:09:6b:7f:c4:db:52:f6:e0:30:c2:2b:b0:49:f6:
1b:ef:39:86:f4:c5:db:dc:3e:05:a6:4f:9e:d6:b5:
e5:71:a4:05:b5:9c:bb:bf:7b:e2:c7:16:b5:2a:c9:
d7:0f:fd:b2:91:c3:97:f7:4a:ee:ab:63:9a:32:a3:
9e:9d:ba:df:27:2f:26:c9:11:89:e7:a3:16:a0:39:
94:11:a7:24:8b:38:48:bc:23:85:98:77:67:28:9c:
ef:9b:59:57:73:fa:88:2a:f3:55:fd:be:6f:2e:e1:
01:d7:ba:ae:63:e6:57:02:21:62:e8:f0:da:84:5a:
98:8a:d4:39:58:e9:06:38:93:c8:d8:0d:4a:dc:e3:
1e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:5F:5F:1C:1A:1E:9B:C6:64:DE:8E:69:E1:14:3E:A8:66:00:6E:8E
X509v3 Authority Key Identifier:
keyid:42:4C:16:5B:6A:49:34:95:41:C6:5A:F9:B2:15:80:16:38:19:F2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:eb:0c:db:8e:f9:07:06:71:c5:f8:97:65:2c:6f:e3:89:3d:
9e:e8:ca:f3:a9:93:46:bc:5f:dc:89:ee:04:c0:51:e9:55:0a:
f3:88:32:9f:c0:19:8f:9b:89:92:39:2a:f2:f4:f6:ab:d1:65:
aa:45:b0:3c:55:03:15:dd:6a:f3:62:28:4e:b2:c7:c7:9d:dc:
fc:ec:3f:40:bb:d5:b7:26:e2:13:d2:95:35:75:25:87:37:a9:
3e:d2:77:4b:86:d9:40:86:28:a0:30:aa:2c:6b:64:c4:31:c3:
6e:4c:cc:96:5d:c5:9d:c3:ce:7c:43:fe:62:7f:53:d8:87:2b:
38:de:a5:57:f0:b5:8e:d6:a9:9f:5f:2b:49:06:1d:44:7f:63:
87:71:c5:27:b5:be:9f:2d:25:ed:d2:e6:f2:23:be:5e:b0:74:
bd:46:1f:bd:fa:f8:a3:ae:57:90:6c:02:1d:8d:e3:40:bd:74:
a3:f2:59:fe:e6:92:30:48:68:cf:1b:b1:f1:55:0f:c1:cb:22:
70:44:0b:b1:c7:29:43:63:6d:d0:7c:82:3e:0c:de:27:c1:69:
d4:2c:12:d7:44:eb:c6:9f:03:41:61:b6:0d:7f:cd:05:84:bd:
fe:a6:20:28:b2:7f:4d:6d:57:18:3f:df:b7:f7:35:11:61:5e:
5e:ab:0a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 18:53:01 2025 by rpki-client