Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: 1YWTywjcppHQ5x0dCW2GxLiMHJDnaTemjZyXmnKwZbA=
Subject key identifier: BB:36:46:F8:86:3D:F9:72:65:51:A0:2C:53:F5:37:FD:E7:C1:42:75
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 0196C1CB3F33FE45B64AAE013B2FFBC8E780
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1538
Signing time: Mon 12 May 2025 00:00:44 +0000
Manifest this update: Mon 12 May 2025 00:00:44 +0000
Manifest next update: Tue 13 May 2025 00:00:44 +0000
Files and hashes: 1: QLHEJas53oiAGzs_YSaCGuwaZeU.roa (hash: OfpByeH9dDyJ45cIcWM9guSmvu9MoGjj7YKQgKOyd/0=)
2: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: grhDTKZtElmumGscp/9VRg1lMxxGjZtQwRhXWgEzOho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:3f:33:fe:45:b6:4a:ae:01:3b:2f:fb:c8:e7:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: May 12 00:00:44 2025 GMT
Not After : May 13 00:00:44 2025 GMT
Subject: CN=bb3646f8863df9726551a02c53f537fde7c14275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:89:2d:d7:be:a4:28:10:51:ba:d9:27:19:58:
ad:b7:b2:3b:63:70:9b:8d:84:6d:14:2f:c8:c3:b2:
42:a2:71:ab:c9:2a:5d:e7:c8:5d:76:38:d2:52:76:
a0:a4:7b:13:2b:d5:5f:e4:30:96:db:49:4c:25:43:
f2:dd:73:e5:e5:c0:a7:0f:ac:3c:61:60:13:de:9f:
6d:9e:c7:c9:1b:6c:50:93:e5:49:73:ea:1c:9d:99:
e1:cb:1e:6a:a5:af:25:00:cd:b2:83:c0:d8:ef:d1:
a4:24:fd:cd:05:7d:35:c0:ec:64:e8:d7:09:42:91:
e0:77:d3:81:1c:4d:25:60:78:c3:92:ab:51:a4:78:
f3:a5:6c:ac:00:6b:16:84:e4:5b:69:01:e9:65:e4:
3d:47:1c:5f:fc:06:07:52:89:18:f2:17:02:7d:c6:
9a:d5:47:af:c8:02:f9:9f:fd:ea:47:0c:7f:f9:c5:
00:93:a3:04:96:02:62:0b:a7:64:d7:30:7b:52:f1:
d6:41:6b:c4:36:6d:02:43:47:f5:c4:60:46:f1:14:
0f:9b:7a:7a:5f:ce:c0:89:5d:25:8e:c5:3b:06:e3:
ad:38:ed:cf:fa:8c:2a:96:97:30:d3:8c:8a:c0:1e:
26:58:73:9d:37:4a:42:91:ae:ce:76:87:20:38:7a:
88:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:36:46:F8:86:3D:F9:72:65:51:A0:2C:53:F5:37:FD:E7:C1:42:75
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:87:a8:cc:a2:9d:ca:d2:20:25:92:3b:b2:ee:00:51:96:77:
84:3c:b8:9f:d7:04:62:14:8d:7f:81:4f:cc:dd:c2:93:66:cb:
da:02:59:44:90:38:6a:dd:55:1e:2f:5a:98:5f:2d:64:c5:54:
10:84:76:12:a2:47:f5:45:95:47:c0:84:b0:ce:90:84:e8:58:
02:63:db:60:2c:d4:6f:a0:80:ac:6c:15:5a:30:f8:55:5f:0c:
e2:e3:da:42:80:6b:c7:4f:23:a0:15:cd:d5:22:3d:14:ee:f6:
8c:c8:9c:05:c5:e2:8a:af:b0:0e:5b:83:34:aa:48:dd:fc:7c:
ff:5f:0a:7a:d0:1b:e7:11:9f:ec:12:22:99:00:16:fa:39:24:
56:e6:03:1e:d8:9b:c7:97:23:5b:f6:81:d9:6c:dd:ce:c1:77:
81:a4:17:a6:eb:4a:89:5b:24:00:67:66:b6:86:bc:2b:45:c4:
c5:4a:f4:b9:3f:b1:c2:8d:af:f4:d9:8c:e6:72:ee:fc:75:3b:
3e:98:65:9c:d6:c0:74:8c:01:57:a6:0e:5c:1b:96:50:1e:41:
87:7e:d6:ad:2c:f3:b1:3a:bc:e7:c3:41:f7:0c:85:c3:9a:63:
9a:25:48:31:0f:07:7e:8a:c3:4a:aa:13:16:32:cf:ce:be:61:
1b:a2:2e:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 08:13:05 2025 by rpki-client