Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft
File: QpoEfERhf8-ynNVy962HR9C5Mms.mft (raw, json)
Hash identifier: d7lC8083NgyEJuK3h49BxO+gs0mYhYdpIrxU8Tn9ZX8=
Subject key identifier: F6:44:D3:9F:4F:31:38:65:25:32:33:80:4C:39:D8:C4:34:C5:2E:DB
Authority key identifier: 42:9A:04:7C:44:61:7F:CF:B2:9C:D5:72:F7:AD:87:47:D0:B9:32:6B
Certificate issuer: /CN=429a047c44617fcfb29cd572f7ad8747d0b9326b
Certificate serial: 0196BD8114C77EF0F2FDAEE7077832C2D432
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft
Manifest number: 09A9
Signing time: Sun 11 May 2025 04:01:15 +0000
Manifest this update: Sun 11 May 2025 04:01:15 +0000
Manifest next update: Mon 12 May 2025 04:01:15 +0000
Files and hashes: 1: QpoEfERhf8-ynNVy962HR9C5Mms.crl (hash: ICwqagPbnneOWWfW/zbAm107AN0QGPuSRhFYbtuLII4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 04:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:81:14:c7:7e:f0:f2:fd:ae:e7:07:78:32:c2:d4:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429a047c44617fcfb29cd572f7ad8747d0b9326b
Validity
Not Before: May 11 04:01:15 2025 GMT
Not After : May 12 04:01:15 2025 GMT
Subject: CN=f644d39f4f313865253233804c39d8c434c52edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1c:a3:b4:41:03:fc:de:0b:f2:51:27:fc:94:
ca:80:0f:b3:6f:1d:35:d8:a8:b1:55:ad:ba:19:40:
8d:4b:03:19:22:ea:65:b2:95:57:6b:c6:20:d8:f7:
b9:27:df:62:28:c2:9a:4a:7b:b0:24:44:19:ea:1b:
46:a6:db:48:51:52:15:21:92:1b:2e:a3:c9:e2:22:
67:dd:13:34:5b:48:37:0e:a1:e5:95:86:39:d5:01:
24:e2:69:48:8c:58:3d:b1:b9:df:4f:85:7a:4a:05:
bc:2d:53:27:1d:f7:d6:f9:da:54:cd:71:f4:96:35:
f8:f3:2c:e3:2d:a0:ab:df:e9:e0:7b:05:70:00:9f:
c0:31:e8:15:0a:84:cf:42:d7:06:df:ba:df:29:90:
2e:55:01:b5:7c:26:1c:e7:24:8b:4b:f6:19:0b:f4:
c2:a2:a8:69:cb:dc:ba:31:fb:22:57:d4:9e:36:e6:
24:51:58:38:77:c4:4b:60:e2:eb:ae:27:26:f4:6a:
5e:1b:fc:ed:b5:4e:d6:11:c3:c9:18:ac:29:38:52:
31:cb:bf:b1:50:df:37:e0:08:72:49:69:2a:f8:c8:
0f:7a:99:41:a4:d4:23:8b:78:6d:b9:64:2a:03:ea:
0c:87:44:b0:ce:43:49:af:15:67:ae:c1:0b:b4:06:
92:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:44:D3:9F:4F:31:38:65:25:32:33:80:4C:39:D8:C4:34:C5:2E:DB
X509v3 Authority Key Identifier:
keyid:42:9A:04:7C:44:61:7F:CF:B2:9C:D5:72:F7:AD:87:47:D0:B9:32:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:b7:f9:a9:43:f1:96:37:2c:73:eb:80:6c:d3:25:15:b6:85:
e8:ef:ed:f3:85:23:58:ef:96:af:a9:d0:3a:18:67:e7:89:e9:
6d:7f:65:8c:40:c1:1c:a3:77:cb:8e:02:44:fc:20:66:2f:9d:
53:e2:3b:6e:6b:74:01:b0:45:e1:bc:21:ef:e9:92:32:ea:52:
cc:2d:9c:e0:1f:0d:36:d2:c6:cf:34:56:37:6c:77:07:d6:32:
f2:8e:14:52:7d:66:38:d9:40:97:d3:9e:44:03:91:a8:82:99:
f8:2a:78:be:47:2b:25:8f:a0:cd:e4:2f:d2:16:e3:18:22:66:
e6:58:36:07:2e:56:44:be:f1:31:8a:d9:a4:df:51:d2:47:73:
34:82:55:db:f8:90:87:07:95:4a:07:81:03:54:fa:51:85:75:
fe:f9:d0:87:e9:09:12:69:81:34:a9:9c:f3:50:32:87:44:d0:
a0:65:c4:af:e3:2c:6b:a3:75:cc:d1:5a:eb:53:12:12:69:ed:
dc:db:9a:b0:8e:56:16:92:6a:a3:68:4c:9e:02:2f:d1:52:f7:
fa:b1:4d:8c:d1:ed:76:55:88:96:0b:e1:67:ac:dc:9b:2c:29:
ee:2c:06:b1:c6:45:da:26:fa:be:c5:64:7e:f3:f2:fb:09:36:
1c:b2:9a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:17:12 2025 by rpki-client