Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json)
Hash identifier: uxHK5HcnNO7dJ9RU0fIoJItLTgSMldjGl9FeUGmxKQI=
Subject key identifier: 30:B0:E0:50:54:1B:48:60:8E:44:B3:71:75:43:68:B3:41:42:4D:7A
Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Certificate serial: 0196B36AD6AB7AAF3C7C2DF23EBEC6BEED78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
Manifest number: 018B
Signing time: Fri 09 May 2025 05:00:45 +0000
Manifest this update: Fri 09 May 2025 05:00:45 +0000
Manifest next update: Sat 10 May 2025 05:00:45 +0000
Files and hashes: 1: UGApytPJPEIPFbzs4L0oU_KIdHM.roa (hash: cf5ZtJTmEf4eW9FhhtNmIkoS04da9/P7WQkJtlas3+0=)
2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: j6WgDwMZHq8jh1gWkV/PPASOG/fRSSHdr2e7V4cmLxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:6a:d6:ab:7a:af:3c:7c:2d:f2:3e:be:c6:be:ed:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Validity
Not Before: May 9 05:00:45 2025 GMT
Not After : May 10 05:00:45 2025 GMT
Subject: CN=30b0e050541b48608e44b371754368b341424d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ba:af:4c:07:da:bd:61:8e:e0:a6:f5:07:48:
dd:8c:7c:2a:6d:a7:29:b4:2e:1f:a7:93:93:3f:99:
43:2d:49:a6:bf:04:53:aa:69:35:0f:ca:d0:3a:9a:
66:ee:55:d2:81:9e:9c:e1:2c:69:e7:85:af:4a:42:
f0:12:c4:4e:51:35:f3:c7:06:3a:54:1e:58:8b:8d:
87:34:c9:70:d9:fc:c7:54:79:29:03:7a:f5:a4:b7:
29:bb:ee:08:c8:b5:a8:4b:4f:14:e1:a0:4b:49:f2:
07:94:7f:4a:32:f4:ab:27:e5:f1:92:70:3d:88:ea:
91:72:7d:a4:8c:18:d3:b6:73:b0:bf:e9:66:09:84:
24:a7:c4:aa:e7:b0:f7:4c:fd:0e:40:48:bb:95:b2:
fc:f5:db:01:b8:10:c4:e2:21:27:ad:ae:31:7a:80:
09:06:c3:7b:23:09:00:de:dc:24:eb:57:53:32:d7:
ad:7e:86:14:63:88:32:27:c9:44:d5:5d:4c:53:91:
e3:6e:0e:c3:45:e1:74:f8:40:3a:f9:20:d4:44:88:
e8:01:dc:da:a5:1c:b7:86:cc:25:20:80:89:70:99:
a9:11:3b:74:69:36:bf:ff:5d:75:b7:a6:55:a8:59:
7f:ea:51:fb:ec:ac:d0:67:cb:9d:89:25:b1:84:f4:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B0:E0:50:54:1B:48:60:8E:44:B3:71:75:43:68:B3:41:42:4D:7A
X509v3 Authority Key Identifier:
keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:d5:39:c4:23:19:11:2a:7b:c2:f4:86:17:f1:33:1b:da:c7:
64:58:0d:c0:d5:44:56:40:7f:34:88:d9:85:aa:ca:38:66:d0:
01:8a:35:b5:da:40:a3:57:a3:c4:c8:0f:1c:da:43:9f:1b:12:
5e:37:2e:76:f6:2b:4c:29:3d:f2:fe:8e:da:38:68:64:0e:51:
c5:f3:23:55:5f:1e:80:04:9a:1d:a4:ff:fe:7c:67:c4:5b:ea:
f1:1b:ad:c3:0b:64:e7:11:11:9c:e9:84:da:95:67:f0:ee:cb:
a8:44:01:f0:c2:15:ed:b0:d5:d9:d0:f7:c8:14:4c:80:7b:3b:
24:75:49:6c:4d:6b:54:2c:87:c1:2d:6e:19:3d:f1:6d:b2:b8:
02:61:2e:0c:2e:fb:fe:15:57:74:0d:97:1d:2a:aa:b8:70:23:
1b:f1:89:74:a2:50:37:91:f2:94:83:b1:0c:5b:2a:e4:61:75:
1d:cc:66:60:d8:18:80:bc:c9:18:6f:ab:9b:b1:07:b6:7b:69:
0e:d0:16:37:97:60:93:c6:fc:cb:7a:82:9f:3d:2f:01:54:e3:
06:32:d0:fb:ad:37:08:53:5f:0c:59:31:cb:3b:e2:f0:1a:d0:
e8:c5:08:f9:0b:cf:f7:35:83:91:88:98:d0:25:68:ca:20:00:
c4:e3:97:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:03:55 2025 by rpki-client