Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: lCbmCXLZoRBoeMzArZlDFg4L+jc7CHxWKZf7C4nBdkg=
Subject key identifier: 1F:6E:62:6E:5F:B0:C1:92:B8:D9:67:A5:47:4A:46:E8:45:71:03:31
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 0196A4659310F485E8AD8C0F05ACA7CCA1CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0844
Signing time: Tue 06 May 2025 07:00:42 +0000
Manifest this update: Tue 06 May 2025 07:00:42 +0000
Manifest next update: Wed 07 May 2025 07:00:42 +0000
Files and hashes: 1: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: 0f9m70hFWUpa8LFWq4LJrlonIz0oZUzkbEZFLjlX9SA=)
2: EOgnkpCGO25TfSV28ABNiElbHMI.roa (hash: xamMOb/MG2jklBJl6shRJRNZ2UW4izFBKtZBvXEcSVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:65:93:10:f4:85:e8:ad:8c:0f:05:ac:a7:cc:a1:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: May 6 07:00:42 2025 GMT
Not After : May 7 07:00:42 2025 GMT
Subject: CN=1f6e626e5fb0c192b8d967a5474a46e845710331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:01:10:cb:55:3d:68:da:fd:25:c3:90:96:8f:
9e:10:5c:c3:1d:85:18:75:09:57:b8:3b:f3:67:4e:
fb:71:e7:7b:1c:39:98:39:b9:ec:03:d2:28:12:18:
fe:86:ee:49:2d:45:c9:96:59:1c:82:9f:27:68:13:
ac:e2:a7:b6:4b:81:43:2a:76:e0:ca:63:3a:c1:c1:
a6:f4:2e:39:25:a7:a5:41:72:1c:8e:b3:86:1b:4c:
6b:5f:8f:2a:30:e1:de:35:89:3f:32:5e:f0:75:81:
a2:ae:07:22:ab:01:af:2c:34:5c:2b:c7:74:f4:83:
3d:a7:57:ba:dd:ff:8a:f0:d5:9c:b9:ec:b0:1b:b0:
f3:64:de:77:22:5b:0f:7d:5e:41:bc:c5:6b:d5:cc:
d9:62:a6:c6:ef:88:76:b0:b6:8d:23:ff:5b:fa:b8:
ad:ed:e6:0a:b4:a9:69:e5:f0:88:33:24:fc:eb:56:
25:28:70:ee:2e:a1:4a:d0:aa:4c:ff:ed:2e:6c:c6:
a9:64:34:a4:ed:cc:16:33:37:81:9c:96:93:ae:15:
40:44:e3:0c:f6:5d:35:96:09:64:78:e9:6d:ae:6c:
38:0f:3a:d1:b9:97:8a:eb:0e:2e:0f:bd:b3:ee:76:
f8:87:68:84:2e:a7:48:8d:11:10:18:d8:a9:f7:67:
a4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6E:62:6E:5F:B0:C1:92:B8:D9:67:A5:47:4A:46:E8:45:71:03:31
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:3b:25:ee:ef:3d:8c:90:c9:04:0a:37:70:32:d7:5e:eb:4c:
26:c8:84:54:43:61:6c:d9:9c:7e:9d:d4:3a:4f:90:6b:df:24:
1c:d8:23:23:43:e9:89:13:3d:85:e8:da:5a:db:bc:7c:71:ca:
95:1d:05:d5:9e:f9:06:12:96:69:bd:51:fb:0b:c3:b8:2b:dc:
62:1c:37:61:c5:45:b2:53:90:5d:1f:d2:80:cc:5d:8d:2c:60:
36:ce:87:c5:31:5c:cd:dc:4b:4a:50:a3:50:bd:d5:3c:5f:52:
3e:c4:a2:99:e0:b0:2d:e9:bd:2c:25:15:6a:b0:1b:dc:fe:9f:
4c:7d:57:b7:c8:47:e5:4e:12:91:50:5b:54:cd:5e:2d:e6:9b:
0e:b0:64:ff:f1:cb:72:1f:ba:77:c4:c8:77:6e:71:31:42:3c:
73:60:0f:25:f3:c5:0e:09:51:f6:5e:31:00:ae:f7:2b:f2:bc:
28:39:a7:b9:7e:40:f3:e7:24:97:35:85:91:94:50:6d:65:6c:
66:9c:cf:f1:23:c4:05:40:0a:07:89:c1:85:0e:8d:d9:75:40:
fa:bf:67:89:51:90:ef:3e:7d:cd:e3:c4:e9:d0:65:6e:8b:f8:
60:7e:5b:d4:48:49:ee:bb:7a:0a:01:58:1d:0c:4f:5c:46:4b:
55:41:4a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 11:32:41 2025 by rpki-client