Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: AeG43CMlMaCsq7T14HbV1e1T2S/UDiUUQZygrC3DsSI=
Subject key identifier: 79:01:A1:CF:91:41:0C:5A:7F:4B:C1:FA:3F:6A:5E:6F:56:CD:60:BD
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 0196BB91CE6058997B167E35C707622F6DC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 1533
Signing time: Sat 10 May 2025 19:00:16 +0000
Manifest this update: Sat 10 May 2025 19:00:16 +0000
Manifest next update: Sun 11 May 2025 19:00:16 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: iDcu9YhMQ9/CEHg0pLfRo/79QRY4UhTFq5gaRG/SsEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:91:ce:60:58:99:7b:16:7e:35:c7:07:62:2f:6d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: May 10 19:00:16 2025 GMT
Not After : May 11 19:00:16 2025 GMT
Subject: CN=7901a1cf91410c5a7f4bc1fa3f6a5e6f56cd60bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8a:eb:c9:27:12:07:b3:6e:57:1d:69:ac:f8:
fd:f4:03:5b:99:e1:8b:a0:36:d1:4e:f2:75:3f:70:
a3:3a:0b:b9:6b:eb:ac:7b:62:cd:79:d9:1a:da:b4:
5d:b0:fd:bc:61:29:2e:21:7e:a8:4c:1e:05:58:f0:
e5:5e:f1:f1:5e:8c:80:2c:83:5f:b6:7a:8d:ad:83:
37:39:27:9f:4f:4e:b7:d5:78:00:07:f1:2b:e6:f6:
ad:2b:67:9a:f1:e4:2e:3e:c3:93:36:2b:a5:24:bf:
86:c8:6f:9d:b5:54:52:af:67:04:ed:ce:be:6b:e0:
9e:d2:0c:4e:3c:96:25:b8:c1:6b:91:f6:e7:3f:7e:
e4:7f:0d:06:f7:01:11:4e:ea:16:10:9d:b3:67:63:
ec:55:53:91:b6:e6:e6:66:fd:11:a4:6c:7b:81:16:
c6:f0:60:83:19:d9:77:95:b7:eb:ba:9f:75:a3:bc:
7c:85:91:2f:da:f8:59:c5:fa:c9:ee:0e:73:a4:3c:
20:95:a2:ac:e8:46:f6:4f:7a:63:bf:85:9e:f4:90:
39:c5:bc:4d:95:4b:cf:c3:bf:74:2a:e6:af:fe:f3:
a6:5d:8a:b8:b8:cf:c7:86:b2:bf:e5:49:d6:ed:e5:
44:48:22:9c:a9:48:2b:10:78:11:7d:e7:27:6b:5b:
90:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:01:A1:CF:91:41:0C:5A:7F:4B:C1:FA:3F:6A:5E:6F:56:CD:60:BD
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:3c:47:62:54:e0:d5:89:1d:48:d7:fd:11:00:05:15:0d:b1:
0f:cf:79:a7:6d:32:c0:e0:2e:fb:51:01:5d:4b:5d:1a:93:01:
fb:c5:be:fa:63:99:35:b9:70:e4:5b:47:2e:2b:c2:e6:95:42:
98:98:0d:83:fa:de:fe:2c:5c:f9:1e:ac:14:44:da:d2:0a:c8:
57:3e:bc:2f:e8:a2:3b:66:82:67:b4:89:00:f3:3f:cb:3d:4f:
97:ca:af:74:0a:0c:aa:25:36:b2:32:84:96:1e:59:6f:49:de:
d1:e2:17:b7:21:7f:10:eb:4f:8c:65:a3:55:16:67:ee:8e:f0:
12:80:18:96:89:7d:9d:b5:f0:94:02:7b:c8:34:a7:8a:d7:83:
54:45:5f:b5:61:52:5b:68:b3:96:26:f1:9c:00:89:e3:fa:ac:
51:82:f0:e2:6c:a7:10:fa:71:f9:a5:88:f1:c3:f3:70:49:0d:
48:be:3c:d3:4b:75:d3:20:bd:18:c6:c0:76:b0:18:60:ad:aa:
f6:b8:0b:3e:69:f8:61:23:8e:72:b8:95:ca:99:a0:05:2d:57:
d1:0d:d8:aa:a1:85:e1:e2:d2:2c:de:41:c4:5f:e8:e6:6b:ab:
32:3a:16:bf:00:cc:06:7f:fa:61:d4:1a:ad:7b:a6:07:83:24:
6f:af:5d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 23:06:52 2025 by rpki-client