Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
File: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft (raw, json)
Hash identifier: Q7nl9bxFRWs8nNSuzGJ8Bd6posjpJZRakDJ4RayKUCk=
Subject key identifier: 21:38:1D:22:89:AE:1D:11:C2:BC:26:A0:70:67:4C:8B:91:E9:B4:F8
Authority key identifier: 42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2
Certificate issuer: /CN=42432a319f54b058372fd32528eae51fc90c15b2
Certificate serial: 0196B77E90865937A1E992530C24DC7D264A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
Manifest number: 01DF
Signing time: Sat 10 May 2025 00:00:47 +0000
Manifest this update: Sat 10 May 2025 00:00:47 +0000
Manifest next update: Sun 11 May 2025 00:00:47 +0000
Files and hashes: 1: Fg4gfGthOyzcFXfxEYyjwrss7as.roa (hash: mWUv12QovIjIHXpuDNAMlgedx6+BQ3vMWaiHrsA7+3A=)
2: Q5e6g1WUMRG4cL4aNZtJqqD_-yo.roa (hash: T3aZ91YVxRUkDJ96e4vMqo7oCynEMTZ2Xb8h0pZbGMo=)
3: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl (hash: vkFZkwCF/sW7osfS07uDDPG7mdxgtrhH4vNtu5FvqqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:7e:90:86:59:37:a1:e9:92:53:0c:24:dc:7d:26:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42432a319f54b058372fd32528eae51fc90c15b2
Validity
Not Before: May 10 00:00:47 2025 GMT
Not After : May 11 00:00:47 2025 GMT
Subject: CN=21381d2289ae1d11c2bc26a070674c8b91e9b4f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9c:6c:26:ba:eb:a0:ac:6b:ca:4a:31:4d:8b:
99:d1:fa:b4:74:df:bc:bb:25:fa:dc:5d:c8:d3:60:
18:8b:9d:4b:39:78:2f:43:fd:0f:9a:af:75:f4:d4:
f1:2d:3e:57:2f:bb:b9:81:fc:05:63:9f:3f:3f:fc:
96:e2:2a:f1:be:30:17:a1:4b:9c:ae:9b:31:8f:35:
13:a0:bc:40:04:72:76:7d:f6:40:31:cd:bc:50:c9:
b8:86:ad:68:c7:86:3c:9b:0e:ae:ce:96:9c:a1:97:
60:6a:0a:1a:b2:b2:8b:c0:d1:a4:f0:c0:b1:44:45:
88:5b:bf:a3:4e:f3:bc:85:12:d0:46:6e:40:f5:55:
28:b9:bd:62:3d:49:70:80:f2:54:18:30:e5:ec:cc:
5c:6c:6b:ca:00:b7:fa:57:2a:57:03:68:20:1d:4a:
6d:3a:af:86:06:0a:36:9b:6f:3b:5e:8b:83:82:51:
61:ee:4f:d1:98:2c:c3:82:82:5b:34:f9:08:9b:ec:
b8:b7:c1:44:fd:6d:c4:87:e1:ec:d7:31:34:b7:03:
14:0e:95:4f:dc:e3:6e:55:af:71:36:5e:76:3c:79:
a5:0f:f2:85:53:85:47:97:56:c6:1d:ac:b7:9e:15:
25:be:87:9e:1e:1b:03:2e:53:62:59:7b:24:ce:df:
79:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:38:1D:22:89:AE:1D:11:C2:BC:26:A0:70:67:4C:8B:91:E9:B4:F8
X509v3 Authority Key Identifier:
keyid:42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:f8:3e:c4:53:d9:7a:25:12:a6:78:b7:1a:64:ed:c8:c9:f9:
2c:08:d0:ef:0c:67:63:7f:64:f5:58:70:d4:d8:ec:9c:c9:e1:
3b:9a:45:b5:f2:ea:39:7b:2c:01:8c:24:00:76:e7:3c:d2:21:
49:a3:94:03:90:52:f9:18:0b:55:b0:fb:dd:e6:1a:b7:0b:44:
d3:f8:15:10:ac:35:83:79:3c:c1:4b:f3:65:48:e2:cb:5f:1d:
99:84:ce:91:4c:88:f6:74:25:0f:a5:e8:4d:3e:e2:66:c5:ba:
ec:9e:3c:14:84:a4:48:41:23:ff:4d:8f:c5:bf:2b:f1:bb:df:
34:27:fb:c5:2b:4e:cd:24:c5:b4:27:a2:7c:ed:63:4c:eb:42:
d9:67:86:3a:74:b3:98:c8:ff:e3:5b:3c:c1:cd:ca:9b:38:a1:
07:e5:de:56:36:1c:c9:0c:bc:8a:1f:fc:2f:7f:08:c0:77:0b:
aa:db:7b:e1:58:60:b3:63:d0:49:33:16:32:58:90:52:a0:c7:
01:30:b0:f7:06:7e:f4:95:2a:a8:bb:12:08:cd:b2:50:09:a8:
f2:22:f3:6d:82:07:fa:02:0c:ca:3d:95:ff:46:6e:83:a4:58:
6a:1e:cb:18:08:db:7a:31:d0:75:20:6f:91:37:ce:ad:27:de:
e7:9a:fd:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 04:48:08 2025 by rpki-client