Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
File: QclkksAECK1U1zDA62KeOgtQ2A8.mft (raw, json)
Hash identifier: dBjO7b66mo69a97weB51EHEymmCVPrs6bMp8DxO+lTY=
Subject key identifier: 8A:92:F0:DE:67:35:C9:6B:0B:B0:62:83:9B:3A:C0:B1:64:41:A2:4A
Authority key identifier: 41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
Certificate issuer: /CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Certificate serial: 0196A9F9B7A2139C7A874BC110525531ACAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
Manifest number: 01B4
Signing time: Wed 07 May 2025 09:00:36 +0000
Manifest this update: Wed 07 May 2025 09:00:36 +0000
Manifest next update: Thu 08 May 2025 09:00:36 +0000
Files and hashes: 1: EpeCh_PHvVwvR1jtfMGPQVrMsrQ.roa (hash: XKVWPCeZYhwf3z1v0hUSbNv7x/hm4cVMh5YcJnXqtvg=)
2: QclkksAECK1U1zDA62KeOgtQ2A8.crl (hash: 7heUvCWDTbNygvExrH6jYBaSWpwHey/PCD/EiDbR6wM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 09:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:f9:b7:a2:13:9c:7a:87:4b:c1:10:52:55:31:ac:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Validity
Not Before: May 7 09:00:36 2025 GMT
Not After : May 8 09:00:36 2025 GMT
Subject: CN=8a92f0de6735c96b0bb062839b3ac0b16441a24a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e6:88:57:d8:79:e5:2f:50:1c:d4:16:dc:6a:
55:ef:58:a4:98:49:c9:04:25:a5:bf:41:ec:1c:dc:
f6:1c:82:ab:7e:2d:e6:c8:7d:a2:a6:0f:93:33:6e:
a9:f5:2e:19:92:2c:72:02:a8:23:4d:9b:e5:1b:e6:
c7:61:a8:e2:15:02:76:48:82:c5:54:ed:e8:f3:c3:
29:3b:e4:8b:b3:8b:07:57:d2:bc:3d:44:68:1f:9e:
f4:1a:0b:f1:93:04:f1:a3:f3:c8:14:dc:c8:22:22:
26:15:76:21:5c:9c:af:a6:dd:70:92:b2:35:99:99:
12:2f:ff:1a:61:76:84:8b:9a:37:67:f7:cc:3b:3a:
33:3d:35:bb:f4:9b:99:3e:da:93:f1:de:9f:f9:4f:
3a:03:a4:6e:0d:47:f4:fc:69:ef:79:af:b8:16:6b:
5e:13:c8:b2:8d:a2:86:a5:73:e2:35:7e:f3:fa:1a:
6c:97:b5:7d:2e:d7:9a:2d:a5:87:8d:f4:5a:55:60:
19:de:d0:96:48:8e:81:21:02:bb:37:bc:d7:d6:36:
39:2f:29:87:98:26:79:9c:78:25:74:90:10:c2:54:
d2:fe:94:82:1c:8f:7f:fb:df:8f:01:5b:08:41:75:
d6:8c:e8:0d:c3:4c:d6:d1:a5:89:77:08:71:26:53:
f5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:92:F0:DE:67:35:C9:6B:0B:B0:62:83:9B:3A:C0:B1:64:41:A2:4A
X509v3 Authority Key Identifier:
keyid:41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:8c:93:bd:ac:6e:e0:a3:1d:fb:0e:55:9f:0b:dd:c0:41:36:
af:91:64:75:8e:8b:76:e0:9c:4b:b8:e2:af:53:4f:64:30:6a:
72:cb:e2:5a:ab:dd:a5:90:5e:16:fe:7b:27:c7:3e:bf:41:e7:
85:8d:bc:cd:ad:e5:ed:9d:f6:47:13:22:8a:c0:c2:97:7f:3c:
33:27:c0:a9:7c:2d:bc:6d:8a:d4:aa:14:19:00:92:2c:b7:6c:
a9:07:17:25:56:42:01:97:4e:76:f1:8b:18:61:26:8a:b6:1c:
bc:31:54:81:b9:a0:82:ff:c1:b4:f2:da:0b:44:35:9a:64:72:
8c:62:52:82:d3:d7:b6:79:83:58:9c:ef:c5:f8:d0:79:ad:7e:
3d:f6:9a:f1:d6:26:a4:5d:2e:1e:61:0c:16:73:c1:3e:d0:52:
1f:a0:66:b6:f5:d5:aa:14:4b:01:90:db:bb:ce:7a:46:28:a9:
14:19:11:17:e3:7d:11:cd:9c:d7:4f:5f:4a:4a:06:ec:7b:26:
1d:f8:08:c0:fd:af:7a:3a:04:31:e9:55:86:3f:51:8f:ee:22:
c0:d0:ad:55:a3:f4:6f:43:55:cd:ed:f3:ed:1b:f6:e1:8b:bf:
ab:ea:3e:27:87:18:a3:ba:3e:e5:b8:45:9a:af:a1:80:b9:dc:
81:c3:87:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 17:55:09 2025 by rpki-client