Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json)
Hash identifier: oVdhLJ9elaADkC0Nj90pQ/a9IPVbeg1fvuf7Qf3NeEI=
Subject key identifier: DA:67:11:3F:BC:60:11:40:6E:52:11:96:CB:AF:28:E3:B5:DD:A3:07
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 01969E2C9DB6B7DBCCACF930AE5816B013FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
Manifest number: 1525
Signing time: Mon 05 May 2025 02:00:46 +0000
Manifest this update: Mon 05 May 2025 02:00:46 +0000
Manifest next update: Tue 06 May 2025 02:00:46 +0000
Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: RBES4cg6C4R14UlEBURgnWi6Zvh5KeWoAF7ppLSqvew=)
2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:9d:b6:b7:db:cc:ac:f9:30:ae:58:16:b0:13:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: May 5 02:00:46 2025 GMT
Not After : May 6 02:00:46 2025 GMT
Subject: CN=da67113fbc6011406e521196cbaf28e3b5dda307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:41:53:8a:6d:73:07:d6:1a:ba:d5:fb:66:a1:
fd:51:d8:7f:65:11:21:9a:ff:8e:2e:48:a7:77:49:
c2:13:f0:dc:d3:db:d2:fe:e7:9e:d4:2f:cc:60:18:
dd:00:10:18:da:7a:a4:36:53:b6:39:6e:43:a5:d0:
9b:1f:88:71:6e:6f:0e:20:14:86:80:cb:b3:9f:93:
bd:11:06:e1:a2:0d:34:a8:df:7c:68:e7:42:d9:4b:
ad:08:99:c8:00:1e:34:9d:39:cf:b0:ab:ca:ed:ba:
4d:b9:b8:4e:f1:6b:e7:21:a1:5a:0a:d7:7c:5a:12:
9e:7f:83:77:5d:93:e8:a9:26:cf:0d:20:4f:9d:5b:
0e:ad:76:9e:bf:fa:4b:51:ce:ab:95:49:00:cb:97:
ca:31:76:1d:b7:d3:66:bf:61:9a:e4:6c:87:97:db:
43:8b:2f:db:98:f2:a5:28:fe:9e:cb:8c:c6:44:be:
98:e7:fb:a6:2c:65:ee:6a:10:91:05:4f:bd:75:34:
55:52:66:a6:cc:da:5e:e8:b5:97:08:e5:24:4a:bd:
c6:6b:ae:a6:7e:d7:4b:1c:3a:37:2f:82:14:79:13:
59:99:6e:ab:dc:de:18:69:ce:94:0d:60:bf:94:1c:
5e:81:7b:fc:d8:2a:50:94:a9:68:48:35:11:8e:8e:
64:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:67:11:3F:BC:60:11:40:6E:52:11:96:CB:AF:28:E3:B5:DD:A3:07
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:37:4d:63:2f:dd:11:7f:61:e7:3c:29:46:8d:53:22:f1:c5:
19:d9:21:cc:5b:38:00:82:2f:e0:74:1a:78:e1:63:c9:b6:4d:
73:33:9e:33:a2:be:37:7a:63:44:67:22:2d:36:5a:8d:8b:1e:
36:5f:3d:37:21:93:b5:ef:91:19:da:b7:2e:eb:a9:08:4f:43:
36:90:3f:4c:06:4e:91:48:e4:74:fd:7a:94:8b:fa:b8:0b:e1:
8a:d0:87:ce:f6:c8:43:f7:c5:be:d6:e5:22:08:f4:05:22:81:
ef:06:92:95:67:50:8c:d6:3a:ba:6f:6d:b1:b2:02:10:6a:9c:
9e:2e:65:6d:e8:47:90:13:84:34:2b:c0:4e:41:76:fe:23:cc:
a2:87:c0:f1:47:b9:42:b1:49:92:de:de:65:b9:61:c0:dd:91:
93:3d:03:48:79:a1:69:6e:40:57:d7:46:cd:63:00:d5:3b:20:
c2:62:11:33:d2:d5:e5:09:fa:95:c3:e7:30:d2:0b:c4:de:a7:
4e:f3:e4:d0:8a:c0:f8:ad:d2:1a:f3:ac:cc:e6:f8:b4:73:1a:
b8:4c:29:0b:da:67:fe:43:ec:a8:84:1a:5d:02:80:e1:a4:c3:
71:49:ed:72:ca:97:38:fb:aa:3c:6f:55:43:91:a1:97:72:e2:
4d:f4:9a:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 05:25:28 2025 by rpki-client