Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier: PiDZJM7MWWcX4iYK9lf0Ogwenvr9RrL1ZBXTK27TcvE=
Subject key identifier: 81:77:62:9D:03:C2:62:12:7B:89:58:0E:30:36:AB:E8:2D:4A:D7:CE
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 0196AA316D63E8FB45D4ED3E026779BA9406
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number: 152A
Signing time: Wed 07 May 2025 10:01:28 +0000
Manifest this update: Wed 07 May 2025 10:01:28 +0000
Manifest next update: Thu 08 May 2025 10:01:28 +0000
Files and hashes: 1: USQ6h1BmGX_5l6r9JsziO1Ui1Vw.roa (hash: W3xrS1zgc7QMM+ux8ilDAtn6lUWxhEYKoHwrzSB4Kb8=)
2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: uJVLSBsWb4YN07Fo09NWgApTQiWsyxAZqZiph6s+0TA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 10:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:31:6d:63:e8:fb:45:d4:ed:3e:02:67:79:ba:94:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: May 7 10:01:28 2025 GMT
Not After : May 8 10:01:28 2025 GMT
Subject: CN=8177629d03c262127b89580e3036abe82d4ad7ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:20:31:12:8c:9f:13:01:90:5a:a6:48:57:bd:
f4:5f:f0:1e:33:02:a2:d0:88:28:16:70:06:3c:d2:
9c:16:ad:3d:6f:90:3b:d8:46:5d:6b:81:a1:88:8f:
f7:e7:9a:f3:ee:bf:57:40:37:03:71:e7:4b:08:d6:
d7:82:91:98:c0:26:cc:d7:f4:9c:66:ec:e7:09:32:
f1:98:bc:66:3f:82:69:b3:63:32:39:08:45:94:fb:
fb:74:44:ff:94:60:eb:bf:ad:cf:8d:f5:60:a4:cc:
4f:e5:27:55:05:22:98:02:a0:2c:7e:99:28:82:2b:
1c:0b:dd:b1:3f:45:db:1d:c7:9b:63:d2:f5:48:65:
c2:0a:a6:0d:50:4e:f5:bd:22:3c:90:28:7a:0a:d2:
bb:e4:28:ec:63:d4:2e:cd:a8:1f:71:a5:34:ce:22:
10:06:ad:23:d0:a1:56:a0:13:cf:bf:da:a2:ec:be:
f2:c5:09:32:98:fa:56:43:5d:7b:f7:f9:c8:e8:a5:
98:1e:c5:06:b5:1f:91:d0:8c:e4:17:29:76:aa:33:
65:ef:7f:8b:a9:dc:ec:46:cd:b2:5f:25:b1:34:b5:
2a:d4:95:22:1f:f9:7b:d7:87:36:ce:a6:5b:98:13:
9e:6e:a8:b8:9e:68:c4:02:f3:99:ce:db:c3:05:a8:
ca:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:77:62:9D:03:C2:62:12:7B:89:58:0E:30:36:AB:E8:2D:4A:D7:CE
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:95:f2:18:5c:a0:6d:81:e0:be:bc:2c:a4:08:a0:e8:d3:db:
b8:87:3e:24:e1:37:7d:a4:1d:0c:e5:ac:fb:b4:51:3d:c4:a1:
a5:fa:3d:b1:2f:24:82:f9:f6:8f:15:36:88:69:4b:71:ed:e1:
fa:eb:b3:f4:fb:52:04:77:3b:d6:e3:10:65:7e:31:d3:dc:0c:
e9:a3:66:f5:f7:5a:9d:2a:54:a2:45:47:8a:97:19:ec:81:3c:
6e:7c:84:a8:58:b3:9c:35:7c:aa:63:f1:06:9b:f1:af:ba:9d:
79:6e:65:b2:36:ce:11:e4:1d:0b:02:67:f9:cb:b4:a0:94:c7:
fa:6f:2a:22:4f:08:06:33:ce:55:cf:c0:0a:80:66:d7:c9:1d:
50:71:03:37:a6:ec:12:dd:bc:e6:52:e0:76:62:5c:46:40:f3:
74:98:4b:8c:71:59:de:eb:3a:a7:de:c6:ff:aa:28:5c:29:a3:
04:b2:60:cb:33:bb:fd:81:e6:73:ad:d1:49:3c:e7:dd:c3:26:
44:dd:ae:0d:96:a1:78:19:c7:45:0e:83:09:c8:f0:7f:3c:39:
71:36:a8:c7:90:a4:b8:ec:0f:bb:93:b8:42:ab:1a:1a:eb:dd:
c6:36:83:bb:a5:04:ea:d2:84:5b:59:10:22:eb:91:71:ab:28:
ef:01:31:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 16:03:56 2025 by rpki-client