Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
File: QA8uoVe7tTqwJgEazlzRNg7y930.mft (raw, json)
Hash identifier: wlHX9s+NHl42PQFzHP8RCxKcLFRxgw0SRpz+YeHbu8s=
Subject key identifier: 3C:13:E1:B3:EF:8D:C1:B8:46:09:89:C1:CE:41:B3:8E:11:4C:64:A3
Authority key identifier: 40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D
Certificate issuer: /CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d
Certificate serial: 0196B9A4357D657117FA92B51958E2644983
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
Manifest number: 1486
Signing time: Sat 10 May 2025 10:01:08 +0000
Manifest this update: Sat 10 May 2025 10:01:08 +0000
Manifest next update: Sun 11 May 2025 10:01:08 +0000
Files and hashes: 1: QA8uoVe7tTqwJgEazlzRNg7y930.crl (hash: tpEw5xBVp69Hy7fm7Nb7m3VgFYi0ZX+xR8qxzpNr/xc=)
2: XYTPsqrRjFt2AcvYCap2e2yz93s.roa (hash: Kn1lsHWRvXKbCBaB+H+cKPNwO5N2Gs/SXNbPpw2oiTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a4:35:7d:65:71:17:fa:92:b5:19:58:e2:64:49:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d
Validity
Not Before: May 10 10:01:08 2025 GMT
Not After : May 11 10:01:08 2025 GMT
Subject: CN=3c13e1b3ef8dc1b8460989c1ce41b38e114c64a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6e:e5:bb:36:e0:c4:44:a2:b9:90:10:01:cf:
57:a9:ca:e8:24:70:68:55:01:9b:11:ba:fd:13:ae:
21:8b:e4:d7:d9:0b:2c:82:05:9c:b5:0e:97:69:f6:
53:f1:30:5c:1c:f8:9b:72:3c:ca:1f:04:ad:73:1f:
da:b2:b1:7c:54:e2:cc:bf:40:af:af:19:e2:63:17:
0a:78:26:1e:b7:21:bc:cc:fa:d2:92:f7:27:0b:fb:
63:f2:64:66:9e:55:36:36:b8:87:17:9d:82:e0:bf:
f4:ae:0e:ae:69:a3:2b:69:52:10:8c:41:c3:ac:89:
7c:75:76:c8:d1:7a:2e:32:5c:21:05:9f:19:db:66:
e2:d1:8c:40:cf:15:79:d2:a3:f3:3c:05:e2:3f:66:
59:dc:b3:ba:8a:01:ec:6e:17:b1:45:01:e6:ba:31:
51:58:c6:3d:c1:4c:60:d2:2e:81:c7:57:3e:cc:16:
03:cc:1b:6b:39:84:ac:ab:f9:60:f4:4a:fb:30:45:
c6:f1:9e:c7:27:9a:32:fb:0e:8e:fb:94:87:4d:f3:
dc:6b:5f:1d:61:6c:ed:8f:a4:13:f2:88:bf:0a:59:
0c:e4:b3:7e:e4:a9:5a:d4:90:bf:10:8f:54:5d:c9:
71:81:ba:b4:e3:a8:4a:8d:b2:95:af:fe:55:23:37:
8d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:13:E1:B3:EF:8D:C1:B8:46:09:89:C1:CE:41:B3:8E:11:4C:64:A3
X509v3 Authority Key Identifier:
keyid:40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:f2:ea:fe:b4:33:8f:89:e1:79:e9:c1:43:2c:51:68:fb:a8:
1c:49:ad:20:46:7c:23:fa:b0:db:3b:ec:ce:f7:80:14:63:78:
d9:6c:a1:f5:2f:05:8f:ac:2f:5a:51:be:67:d2:bf:32:73:0a:
21:65:17:b4:19:77:51:7f:11:77:07:c8:ca:74:4a:17:6e:b6:
3a:2e:a0:b9:1e:15:0d:9e:e6:f1:8c:a9:cf:82:34:1b:37:57:
d1:c2:03:44:52:e7:35:e4:ff:8d:ce:33:77:16:19:45:25:01:
7d:eb:e1:ae:5f:22:dc:7b:76:39:c5:9c:eb:20:65:bb:87:6a:
69:59:1a:a9:cf:af:d7:bb:e8:db:53:26:db:cb:7a:66:e1:a3:
1d:86:f1:5d:e6:fd:95:5a:0d:1f:ba:a0:9e:fa:43:e7:cd:64:
fb:f6:98:a3:9a:8d:55:2b:99:2d:1d:b1:a7:e6:6d:69:52:53:
ad:bf:c9:62:ea:af:d9:01:1c:9e:49:5a:3c:a4:17:44:12:be:
92:9e:9f:35:08:45:55:bd:3e:ae:99:fa:97:bd:48:02:6f:82:
c1:52:8d:20:0c:c6:bb:6d:75:98:78:8b:9c:e9:57:ed:e7:10:
52:61:b3:cc:ff:b1:c5:38:dd:90:32:5e:46:69:5a:67:84:2f:
07:0a:3a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:44:32 2025 by rpki-client