Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
File: Q5i1d7IjtadjUSGadP2kRnBIkPc.mft (raw, json)
Hash identifier: qIgFmE7Xan1vY3MPvdaXUFkTcr4S0bEYy8TnGvVNgOE=
Subject key identifier: 02:B1:D3:F3:20:79:5C:9D:B4:9F:11:18:77:DD:42:CD:94:5A:57:09
Authority key identifier: 43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
Certificate issuer: /CN=4398b577b223b5a76351219a74fda446704890f7
Certificate serial: 0196BC36DA3DAFB4E3B0C864C57F2538E9A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
Manifest number: 121B
Signing time: Sat 10 May 2025 22:00:33 +0000
Manifest this update: Sat 10 May 2025 22:00:33 +0000
Manifest next update: Sun 11 May 2025 22:00:33 +0000
Files and hashes: 1: KL5bIat3Yk7dpaHmhHBN9ywSikg.roa (hash: 2Dm1yDCv5S4uhPon+c/p0fcUA41+SmoP2uLFsPOLfB0=)
2: Q5i1d7IjtadjUSGadP2kRnBIkPc.crl (hash: 2Fr0xOFOzH4mwJ6lJeNhLhkjxSEPqeA4GtSJVsREZy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:36:da:3d:af:b4:e3:b0:c8:64:c5:7f:25:38:e9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4398b577b223b5a76351219a74fda446704890f7
Validity
Not Before: May 10 22:00:33 2025 GMT
Not After : May 11 22:00:33 2025 GMT
Subject: CN=02b1d3f320795c9db49f111877dd42cd945a5709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4d:4d:6a:41:10:7d:2e:3c:4e:97:e1:47:98:
63:25:6f:e7:92:fb:43:b4:89:98:9d:ba:2e:ca:c1:
71:43:84:a5:47:9a:e0:43:64:4e:36:54:eb:d9:63:
7c:b3:7e:fe:2b:8a:37:93:f9:7a:e9:44:a1:80:ca:
82:ba:79:19:06:60:5d:7f:47:93:fa:e3:69:fb:9d:
12:43:47:f3:b8:68:d8:f6:34:fc:69:b5:20:d8:71:
61:12:f2:bd:56:0f:1f:dd:ad:57:cf:36:a9:ed:e1:
13:e2:71:b1:da:57:9a:6c:4e:6d:36:fd:2f:a0:a8:
b7:25:1e:58:cb:f7:43:02:66:38:a9:bd:bb:27:a7:
8e:bb:ef:9b:86:d8:22:ef:78:e0:c8:f9:d7:d1:69:
f7:92:d5:5e:af:47:d4:aa:c1:10:7b:dd:65:4a:3b:
c3:1d:75:ea:e5:51:d7:9f:64:ca:e7:0c:b2:5d:84:
73:89:49:4c:03:16:4f:22:19:99:29:cc:dc:82:65:
05:25:c1:02:29:41:41:34:6f:87:f8:78:94:bd:c9:
aa:98:ce:76:cc:2c:dc:1f:ab:03:aa:76:0f:34:34:
01:e4:1b:19:ee:13:69:9f:8a:6d:56:55:30:5d:de:
df:14:3a:81:8c:de:0d:86:92:9b:37:f9:ac:a4:31:
d2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:B1:D3:F3:20:79:5C:9D:B4:9F:11:18:77:DD:42:CD:94:5A:57:09
X509v3 Authority Key Identifier:
keyid:43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:db:60:17:0b:67:85:09:61:d3:58:84:e3:75:68:67:76:87:
29:4f:31:00:fa:ca:fb:8d:a6:c6:c4:57:f3:cd:b4:86:e4:27:
e6:fa:b4:7c:64:46:1d:10:45:24:ec:d5:13:da:95:31:e6:a3:
c6:b9:3e:13:e0:89:c7:7b:44:47:67:3a:d9:d0:1a:1e:73:83:
4c:c0:e3:2f:90:5b:cc:11:8c:c7:20:9c:cc:e8:66:2b:32:cf:
93:df:4d:fc:1f:7e:46:ec:0e:e0:88:39:f4:d7:4a:73:f0:55:
22:ec:60:a2:ff:aa:ce:ce:05:fd:f6:16:cb:34:cd:29:5b:45:
1b:31:94:7d:7e:3a:db:c8:db:c2:ef:b8:25:3e:38:b6:eb:df:
e2:71:d6:46:da:0d:52:59:e2:a9:ac:7d:15:40:82:7d:0b:75:
06:20:45:a6:97:83:c0:1d:1e:56:fc:78:8c:18:11:b0:9e:7a:
82:8c:18:04:b1:3d:0a:6c:99:54:15:62:f9:f1:a8:b3:5f:c9:
3a:8f:5b:9a:47:a0:30:2e:ed:d8:55:7b:c0:3c:61:20:ca:98:
a7:42:59:f2:98:a5:08:53:64:80:46:1d:63:ed:53:b7:d1:99:
f0:1a:64:c4:69:b1:c7:0f:b7:92:a8:07:d8:a8:30:3c:a2:fa:
88:a8:46:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 06:17:36 2025 by rpki-client