Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
File: Q9JznRqU2rlXbiF80N-FdyBLIwA.mft (raw, json)
Hash identifier: sPJam9FnpLwgVt5lubwxkn1MwuFp4cvGHEleZGSIams=
Subject key identifier: B4:0E:43:A5:B5:AD:AC:3A:A6:AD:F2:A2:31:07:B6:A7:7D:62:A4:BC
Authority key identifier: 43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
Certificate issuer: /CN=43d2739d1a94dab9576e217cd0df8577204b2300
Certificate serial: 0196D8529E9D478A8CBCD2E9C11AF2534685
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
Manifest number: 0299
Signing time: Fri 16 May 2025 09:00:15 +0000
Manifest this update: Fri 16 May 2025 09:00:15 +0000
Manifest next update: Sat 17 May 2025 09:00:15 +0000
Files and hashes: 1: Q9JznRqU2rlXbiF80N-FdyBLIwA.crl (hash: VTjIHG5MbUNZ7PURF3iZOp4rZlLOFVJG/yfMlCL6yvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d8:52:9e:9d:47:8a:8c:bc:d2:e9:c1:1a:f2:53:46:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d2739d1a94dab9576e217cd0df8577204b2300
Validity
Not Before: May 16 09:00:15 2025 GMT
Not After : May 17 09:00:15 2025 GMT
Subject: CN=b40e43a5b5adac3aa6adf2a23107b6a77d62a4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bc:85:a9:28:3d:67:8c:b9:4c:b0:fc:f3:d1:
d6:f4:d6:d7:f2:a0:e2:3a:57:e1:84:35:c3:f3:7d:
fe:15:b1:63:fd:b9:8b:cd:78:ef:eb:b5:b4:b4:e1:
e4:8a:12:49:c8:30:85:b4:45:43:28:6e:bc:7f:ad:
63:6b:5b:1d:27:c5:65:40:8c:48:80:f1:9a:60:10:
a3:d2:60:e6:b2:20:6b:b3:6a:85:02:32:1f:56:40:
f9:db:1c:48:4c:c6:9f:58:50:68:06:ce:70:5a:c1:
81:30:93:e6:99:39:12:81:7a:df:33:fb:08:5a:ea:
30:06:e2:e5:ec:cd:5a:23:82:68:fc:7f:f1:26:80:
5c:3b:7d:38:8c:c3:63:b8:74:25:73:49:da:9c:21:
bb:4c:fa:b6:f6:ad:15:35:57:22:84:3d:96:ea:a8:
d3:b3:b0:e0:88:d8:23:be:56:70:cf:43:75:2c:75:
f1:08:f5:3b:1f:e0:33:6a:83:04:fb:a1:12:5c:1d:
a1:58:80:90:d7:6b:09:d6:2f:aa:d8:34:8b:1e:57:
9c:0f:4a:29:9a:2e:c0:f8:50:53:b5:24:18:5a:a1:
21:77:9c:77:d0:92:41:d4:0c:9a:3d:3f:c1:f7:f0:
fa:25:ae:a3:32:b7:f7:a2:d4:28:b1:67:00:2e:d2:
97:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0E:43:A5:B5:AD:AC:3A:A6:AD:F2:A2:31:07:B6:A7:7D:62:A4:BC
X509v3 Authority Key Identifier:
keyid:43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:a1:11:53:1f:02:9b:67:8d:2a:4c:cc:4f:12:6f:0a:12:01:
ce:de:7b:0a:16:38:80:b3:ec:d2:be:df:dd:f2:a4:11:fa:24:
90:bd:3c:22:b6:7d:b9:7f:31:29:92:8e:d8:b2:3d:c6:b0:34:
0e:d2:40:50:d8:4c:26:61:52:17:0f:4d:09:59:3c:e7:32:b6:
e9:af:59:24:a4:66:d9:4a:a5:c5:0a:29:ad:69:7c:2b:38:82:
58:f6:30:cc:9f:f3:73:61:23:57:95:ce:38:46:70:55:a6:79:
5d:a1:0b:e4:3d:82:be:c7:de:bd:18:e0:be:e9:7f:00:10:9a:
ff:bf:43:3a:4b:8d:9e:e6:e0:36:e8:a4:ce:f5:3d:4d:b2:0c:
f5:c4:e6:2c:d4:48:c9:73:5f:ba:12:a1:19:23:6d:8e:40:c3:
ae:00:60:9d:b4:15:23:ce:d5:fa:6a:34:55:3e:8c:c7:b2:eb:
8e:eb:79:77:fe:52:74:f5:06:a2:dc:ce:34:4a:5e:92:f7:57:
10:18:1c:20:a2:0a:c5:18:fa:b8:3d:9a:d3:f9:7b:02:6d:68:
01:1c:33:cf:a0:73:ba:07:f0:b7:c4:7e:7c:7c:bf:1f:3c:3d:
47:17:b3:de:24:ca:60:11:aa:6d:20:e6:4e:06:51:d5:8a:f6:
48:a8:f4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 12:12:46 2025 by rpki-client