Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json)
Hash identifier: vZJD+JsYinG3g+K/S0H0OQ1Wh6LMGPBv6Xv4v1Xl8M4=
Subject key identifier: BB:91:BD:51:6C:2B:72:8B:85:92:46:D9:90:D8:0A:2D:7F:61:12:C5
Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Certificate serial: 0196C2A6FE134FA5B3D65AB645B264B864AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
Manifest number: 8C
Signing time: Mon 12 May 2025 04:00:45 +0000
Manifest this update: Mon 12 May 2025 04:00:45 +0000
Manifest next update: Tue 13 May 2025 04:00:45 +0000
Files and hashes: 1: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: RpUx11WmJH66LT/JuH0EYmqPJHBrUCdbwqtuHueukVg=)
2: etqHJp94mEXyM-mZRNVFRO7Kziw.roa (hash: Y6iOU/XBP66s91SGzXjQj2BEKS4QjWa/buoOF4uhFqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:a6:fe:13:4f:a5:b3:d6:5a:b6:45:b2:64:b8:64:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Validity
Not Before: May 12 04:00:45 2025 GMT
Not After : May 13 04:00:45 2025 GMT
Subject: CN=bb91bd516c2b728b859246d990d80a2d7f6112c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9a:89:26:d6:b5:c2:f9:e8:96:65:4a:5d:82:
2f:b3:23:8f:59:99:fc:ca:41:c5:18:69:cc:30:5a:
d0:ca:96:46:67:4e:88:9c:fe:2b:42:d2:fb:91:99:
f4:42:fe:08:16:07:57:bf:d0:27:0e:fc:9c:a7:03:
36:01:2b:e3:8d:2c:61:cd:9b:d2:e5:39:6f:a5:b0:
97:44:c2:1a:b3:61:86:7c:d3:1a:3e:e4:2d:f4:60:
6c:b2:a3:e4:d4:6f:1d:d9:9c:43:4d:35:d3:56:65:
5b:9f:95:3f:41:27:f2:4e:18:25:d6:0f:ad:56:77:
47:3e:c9:c9:89:06:7d:15:12:9a:e9:e0:f5:c3:5e:
a4:41:27:15:37:90:42:1e:8f:42:d6:af:5e:b4:54:
ff:a2:fa:65:6e:29:8e:2f:60:d1:08:03:ac:41:3c:
65:79:2e:57:86:5e:89:21:77:2f:92:91:d0:9a:64:
51:b1:89:aa:6e:fb:bd:c3:5d:1d:ec:39:41:5a:a0:
38:d4:90:e0:6f:31:55:57:d9:f7:d0:4b:d7:91:ae:
0e:69:b1:8f:c9:e5:e6:52:c2:53:36:d4:77:8f:45:
66:95:d4:7f:4e:de:aa:42:14:14:95:21:29:1b:43:
9e:71:4f:da:a7:b1:ea:95:41:be:ba:83:dd:c4:db:
c1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:91:BD:51:6C:2B:72:8B:85:92:46:D9:90:D8:0A:2D:7F:61:12:C5
X509v3 Authority Key Identifier:
keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:2e:ef:b1:05:ea:a0:68:99:b7:02:d3:07:53:0d:69:99:ba:
78:6a:43:16:eb:fa:77:e1:df:85:5a:12:5e:20:bd:c4:eb:dc:
ad:3c:0b:43:f3:4a:5a:ea:af:04:5b:89:05:5c:a9:a3:5b:7b:
7f:36:1e:ec:60:bd:0b:9d:4a:0b:9d:a7:6b:35:e2:34:74:d6:
30:2a:bb:0f:dd:07:d2:51:c0:01:68:23:6d:f6:e8:4d:43:ce:
6c:4f:db:ca:4f:2b:41:a8:85:48:53:0a:df:0f:33:8e:51:78:
28:12:fc:c8:0d:bf:2b:9e:08:ab:d8:ba:13:86:4d:ee:3b:2b:
c7:0e:f4:61:2e:11:74:77:2c:52:20:fb:19:a5:ee:17:fb:a6:
b3:18:0b:6b:4f:4b:f6:7d:d7:05:cc:e2:08:6d:2e:e1:76:0c:
33:32:12:90:2e:48:07:1b:db:d0:78:64:7e:5e:3a:8b:56:e3:
56:8c:4e:8c:04:0d:c7:89:91:cb:cd:08:36:04:9c:cb:72:cd:
20:55:d1:a8:8e:78:4b:5a:05:aa:87:52:50:a1:a6:9f:1c:1e:
e4:34:26:9d:26:04:48:fd:58:f1:c5:dc:84:0e:16:c7:a3:2b:
9e:5c:39:36:aa:4f:b2:f3:1e:13:0d:dc:b0:87:aa:20:93:0b:
39:1f:32:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:07:33 2025 by rpki-client