Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
File: Q7iP8e37ZyBmAwJncaquyEuLHrg.mft (raw, json)
Hash identifier: LbTke+H3F/IjRFom0t7EIepXrL2MPmeW+8haLncGBxw=
Subject key identifier: 4F:94:2E:FD:B5:A8:82:E6:EF:6E:62:A8:C9:F4:6F:6E:A8:81:C5:63
Authority key identifier: 43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
Certificate issuer: /CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Certificate serial: 0196B6A28B0A5F88133F368FD8D31A795E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
Manifest number: 0CE0
Signing time: Fri 09 May 2025 20:00:27 +0000
Manifest this update: Fri 09 May 2025 20:00:27 +0000
Manifest next update: Sat 10 May 2025 20:00:27 +0000
Files and hashes: 1: Q7iP8e37ZyBmAwJncaquyEuLHrg.crl (hash: KqxXkebDlc14tQw6VFWLh0WLBFqeWYiWacuqTy/lznM=)
2: gg-emnwJIGdBmpEHYh5OFvjnfmc.roa (hash: f0YF0XqFky78qYjbpn5730w15nHy84AldxyEdZxgOEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:a2:8b:0a:5f:88:13:3f:36:8f:d8:d3:1a:79:5e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Validity
Not Before: May 9 20:00:27 2025 GMT
Not After : May 10 20:00:27 2025 GMT
Subject: CN=4f942efdb5a882e6ef6e62a8c9f46f6ea881c563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e3:2b:91:68:df:20:0f:e3:c6:75:b2:36:fc:
ed:74:44:01:ee:8a:e0:37:f1:0c:9f:53:80:8b:92:
32:cc:a0:15:fc:50:ba:37:a2:c8:02:5e:6b:f1:26:
9f:b0:a2:24:3a:02:8c:e7:06:1e:aa:67:22:e3:0c:
9d:78:58:2e:c6:18:37:16:ac:3a:af:8b:a0:9c:93:
82:65:01:08:30:87:8b:75:20:c4:ac:0d:de:4a:9e:
07:a1:d9:c0:7e:01:f3:69:43:ef:8f:c3:28:40:93:
a2:fd:b3:9e:28:81:e2:3d:82:0c:1d:af:6b:1a:58:
42:8b:88:ce:da:55:92:e2:69:51:45:a0:7f:29:fb:
ea:e3:2f:ac:80:d6:de:35:c8:ae:db:b0:d1:64:f6:
8a:2d:a2:dc:a8:ac:6d:8b:f7:7d:a4:9a:be:48:40:
1a:4a:05:e9:82:00:00:6d:71:3c:70:fe:a4:66:ff:
63:c6:5f:11:25:cc:da:d3:84:1c:b7:f7:13:6b:df:
e3:57:38:98:9a:47:c2:82:21:dc:09:d6:fb:71:33:
41:38:47:25:ae:06:85:17:6b:02:a1:8a:0b:9d:36:
78:4c:c0:4b:fb:e8:82:77:6a:c6:45:85:a9:68:01:
4d:87:43:c0:8d:d7:6a:61:0e:23:95:18:49:1b:e4:
0a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:94:2E:FD:B5:A8:82:E6:EF:6E:62:A8:C9:F4:6F:6E:A8:81:C5:63
X509v3 Authority Key Identifier:
keyid:43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:10:ea:73:45:46:42:b5:ee:cb:eb:91:f8:e0:a1:3e:2b:6e:
44:3c:54:9c:34:ac:f0:31:6b:c8:a7:9a:d3:15:f1:de:79:f3:
e6:b3:61:61:d4:9f:cc:73:8f:a9:f7:b5:b9:ae:6d:b0:c4:ad:
b7:fb:4c:a8:b7:47:69:6f:b4:37:a6:cb:33:df:03:23:75:6f:
ee:5e:1d:83:a8:f0:fd:dc:9c:3d:e2:99:ff:a8:1b:bd:ec:ec:
a9:35:a3:86:33:e0:42:70:ae:94:5f:15:94:6e:09:67:38:b4:
d4:07:d5:2a:66:ac:d7:98:16:e0:2a:3c:28:70:e6:e0:a9:5c:
0b:7e:8d:1a:14:b0:f8:c6:5d:e2:45:e7:be:bf:40:de:e0:0c:
f9:54:24:8c:ba:b0:17:a6:95:05:8b:c1:38:76:15:4d:e5:f7:
5f:94:2d:42:8a:aa:e2:fb:96:84:4e:5f:89:37:1e:af:55:a2:
ea:db:e3:e4:ef:29:b5:48:5e:b3:6e:60:f1:a4:64:5c:84:4f:
a3:d5:61:d0:a9:0e:84:70:92:73:57:a4:1b:9f:72:46:a3:e8:
49:cb:f0:40:68:a9:0d:fe:55:6d:17:39:64:38:ef:af:d6:d3:
b1:44:54:d6:df:ba:c4:86:17:6d:94:80:bc:bc:3c:50:00:e3:
d4:9b:49:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 02:23:37 2025 by rpki-client