Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
File: q22oNLMssSxL2uM_Zy80jZg_MXY.mft (raw, json)
Hash identifier: +Vn4Il1YWjDAzpGrLO1cgV4oY41rb0sFvmeP0n+sq9k=
Subject key identifier: 52:AC:84:EB:8F:06:5E:32:F4:66:21:98:7E:EC:37:BE:09:8A:17:94
Authority key identifier: AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
Certificate issuer: /CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Certificate serial: 0196A0F69BF16AF1DB639F9A1707E17CEA8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
Manifest number: 0D8D
Signing time: Mon 05 May 2025 15:00:38 +0000
Manifest this update: Mon 05 May 2025 15:00:38 +0000
Manifest next update: Tue 06 May 2025 15:00:38 +0000
Files and hashes: 1: evpxyC_xQr6-9_i5vhF3SSD60QY.roa (hash: F+Lkz2iLknBGekmgWZevszL+qAh6hnFUDMady9RqMNg=)
2: q22oNLMssSxL2uM_Zy80jZg_MXY.crl (hash: qNspUEUiDDIaqavqEcbglFNd8huUcwEHE/dXtzoBfZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 15:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:f6:9b:f1:6a:f1:db:63:9f:9a:17:07:e1:7c:ea:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Validity
Not Before: May 5 15:00:38 2025 GMT
Not After : May 6 15:00:38 2025 GMT
Subject: CN=52ac84eb8f065e32f46621987eec37be098a1794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:61:7a:8c:f7:c1:cc:8c:a8:70:17:4b:36:14:
92:26:93:30:5a:eb:13:4c:e5:e0:22:b6:9d:eb:b0:
a7:c8:d2:61:67:20:c2:7c:83:c5:2a:da:e7:0c:71:
9e:80:e2:76:c6:ab:e3:9b:e2:c6:02:19:e1:d0:17:
83:b2:4d:60:bd:82:96:b4:16:d7:73:46:7b:18:61:
ea:b6:2a:83:d2:b7:1b:c8:1d:de:1b:75:ab:74:53:
74:a3:84:96:c7:54:d9:a6:8e:77:cc:0d:b0:79:5d:
00:08:84:5b:bb:98:6e:9f:6b:2a:6d:d3:e3:3c:fe:
e0:80:37:1d:6c:84:23:dc:d9:6f:c0:e8:0a:8a:1b:
91:6f:18:ad:ca:43:7a:3d:56:24:5b:ef:8b:62:86:
26:22:ca:6d:85:dc:60:bd:89:83:28:c8:e1:c6:f0:
f5:54:a7:6a:4d:e0:ce:ba:bc:de:95:6c:c5:c4:3d:
c1:11:17:b2:65:eb:a8:7d:28:46:f1:d0:3d:6e:b4:
28:be:58:a2:5c:6c:ad:4d:ff:df:73:f1:db:9a:0b:
6c:4e:c4:e2:f7:08:e2:e9:64:17:f1:42:9d:24:fa:
c0:6e:9b:4a:b1:14:3b:97:bf:82:51:10:46:8b:a1:
5b:5b:62:3c:83:a9:c6:83:f1:e2:1c:52:41:f5:df:
b5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AC:84:EB:8F:06:5E:32:F4:66:21:98:7E:EC:37:BE:09:8A:17:94
X509v3 Authority Key Identifier:
keyid:AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:54:5e:22:b8:aa:97:7e:d6:7b:fd:f9:8f:0a:4b:d2:6b:44:
31:66:f4:93:d8:ae:9d:6e:62:1f:a0:e3:d7:8a:75:bc:78:20:
c8:13:9e:2b:22:21:85:81:f8:54:cd:ac:4f:34:b1:6b:79:5c:
cc:86:f6:13:aa:f4:84:d8:06:b9:8f:5d:52:08:9c:80:8d:6c:
4e:5f:d6:65:dc:6f:e2:8d:c6:ab:d5:e1:bb:fa:36:2a:d5:8e:
5e:20:7e:1f:cb:77:84:8f:ac:0e:71:31:c8:4a:cf:97:16:0a:
40:25:c0:f2:82:86:48:1b:68:50:ce:02:18:f3:f5:ed:bf:5b:
4f:f5:33:ca:69:ca:8d:dc:b8:bb:f6:7f:c1:7e:a1:9a:67:c9:
6f:cf:07:7b:3b:9d:2d:c7:dd:b3:9a:e0:90:70:24:28:de:0b:
29:39:ae:27:cc:6b:ca:06:5c:13:6b:56:c3:3d:e7:38:a7:db:
f8:ca:0d:1f:0b:68:8a:6e:e6:24:7c:bd:47:0e:09:d7:b4:fb:
1a:bb:cf:df:61:ad:85:ce:08:3a:f1:82:d9:36:c7:5a:a3:76:
db:c3:59:10:2a:29:03:ba:2e:cc:67:3f:06:0f:68:a7:65:c1:
0f:96:24:9a:af:02:84:b4:90:8d:6a:ef:b0:c6:59:f6:fa:9d:
ed:f7:48:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 23:09:23 2025 by rpki-client