Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
File: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft (raw, json)
Hash identifier: OVOLqYsGm+kkGqC3gjSbSbmH1XZ9qVujOAY4ieKq9BQ=
Subject key identifier: 67:7C:81:0E:C9:B2:FF:B6:9C:1C:AC:47:54:A7:A4:3C:5C:70:5B:2B
Authority key identifier: 46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32
Certificate issuer: /CN=46aa60676c130c6438e45b5a607210e9566b6832
Certificate serial: 0196B823B8A93E0C8484E1201CEE95F65E03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
Manifest number: 024A
Signing time: Sat 10 May 2025 03:01:10 +0000
Manifest this update: Sat 10 May 2025 03:01:10 +0000
Manifest next update: Sun 11 May 2025 03:01:10 +0000
Files and hashes: 1: 4pIrmmCZWAO8NuTmun2AQKQETQo.roa (hash: Pf6nhAI8L5UL8XOlhvccLv1CzKTIGW/DapLLMv9479I=)
2: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl (hash: ZnPBHI3J1KAGVrIrRoOP6HVz/zmgNEMJPKvTwvxtlAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 03:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:23:b8:a9:3e:0c:84:84:e1:20:1c:ee:95:f6:5e:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46aa60676c130c6438e45b5a607210e9566b6832
Validity
Not Before: May 10 03:01:10 2025 GMT
Not After : May 11 03:01:10 2025 GMT
Subject: CN=677c810ec9b2ffb69c1cac4754a7a43c5c705b2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:48:e7:4d:ba:d0:17:ed:0c:e4:53:cb:6d:09:
8b:35:60:d8:f8:67:ff:f6:27:a2:c4:82:cb:3a:c4:
46:85:22:62:bc:34:ee:05:13:85:dc:a0:af:f1:3d:
39:cf:a6:ff:f0:7d:43:fb:f2:d0:00:b4:42:1c:1c:
79:58:04:be:0e:12:bf:ab:2e:82:9f:69:07:e1:5e:
b8:a7:08:e3:4c:c2:44:d6:9b:e9:a0:50:04:6d:76:
17:05:72:42:b6:73:c8:4d:cd:1f:33:c7:77:ce:bf:
ca:5a:7f:eb:dc:5c:d2:40:bf:ac:dd:03:dc:8d:29:
3d:67:86:6a:0a:0d:a9:8f:02:b1:d3:6c:59:d4:70:
75:00:10:e5:f3:9b:c3:8e:81:58:4c:08:ab:53:3c:
85:9d:53:55:c7:fc:4d:28:52:e4:5d:b9:bd:d9:d9:
a6:5a:6a:6f:b2:1d:ea:78:61:4d:5a:0f:21:5b:61:
4d:85:3c:ed:66:40:fe:55:00:91:93:ac:b0:46:e8:
48:1a:33:92:ff:3d:8c:18:ab:33:5e:f4:20:b4:98:
6f:61:81:91:fb:0b:b7:0d:b7:f7:db:c1:bc:f4:ac:
e4:db:d3:0f:a7:e9:85:22:99:a7:5e:49:50:7a:4a:
15:51:1e:e6:6e:4f:b7:b3:8b:05:c2:1a:a2:04:e5:
06:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7C:81:0E:C9:B2:FF:B6:9C:1C:AC:47:54:A7:A4:3C:5C:70:5B:2B
X509v3 Authority Key Identifier:
keyid:46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:81:c9:9c:bc:30:52:62:41:d4:b4:48:66:01:5f:7a:de:17:
c5:1d:f4:46:9d:c6:06:a0:40:48:25:aa:c5:58:19:3e:0a:2e:
79:06:4a:41:ad:47:3b:b9:49:1f:52:1e:99:14:9a:55:a1:64:
ff:97:82:0c:1d:18:4b:29:cb:c1:75:7a:c3:f1:f6:52:7d:1d:
fa:65:1d:d4:24:7f:15:0b:c6:dd:84:39:9f:1d:45:57:4c:3b:
b7:f1:44:ac:4a:8e:59:1a:ff:e3:26:c7:01:05:80:54:77:d6:
b8:6d:e6:88:51:01:c4:f6:d4:95:da:17:1f:b7:6f:11:84:ab:
8f:8d:07:49:5c:5e:77:bd:12:a1:3e:ed:19:0f:a0:58:45:3b:
3b:eb:0e:33:2b:22:bf:05:e8:61:ea:a7:9a:79:81:ec:03:4d:
67:f6:0e:a8:c8:aa:6c:49:be:d5:5a:04:3a:bf:b3:fe:e9:12:
1c:87:94:28:98:89:b3:00:fc:05:2f:bd:e2:2c:04:90:3d:f7:
09:30:03:c1:f3:f4:ad:20:93:98:24:e0:6a:2c:0f:3d:71:e2:
e8:5f:21:34:4a:17:37:0c:c8:80:90:0f:64:ab:ab:53:79:75:
92:54:3e:5f:05:5b:45:04:fb:65:b1:d7:65:3d:e6:38:f6:ea:
fa:ab:14:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 10:17:52 2025 by rpki-client