Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
File: 1-qe1orkHCRPTSTKBX-tH42Mf318.mft (raw, json)
Hash identifier: aPnS3Jrkw1qIlSj+RCI3mgchmQV8p+32bv1Eg0OcrjA=
Subject key identifier: D2:11:12:92:03:58:BE:B2:C5:72:DD:F5:5D:7F:C7:04:F8:FD:26:92
Authority key identifier: FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
Certificate issuer: /CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Certificate serial: 0196B258B3F1929C2BBD380B2959D62EF274
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
Manifest number: 1309
Signing time: Fri 09 May 2025 00:01:19 +0000
Manifest this update: Fri 09 May 2025 00:01:19 +0000
Manifest next update: Sat 10 May 2025 00:01:19 +0000
Files and hashes: 1: 1-qe1orkHCRPTSTKBX-tH42Mf318.crl (hash: ryQ4LrpwQ4rmLRq9oMU9H+kFOJMsXwIzskbPYtQCrN4=)
2: gHlRquCMx6iwfFhK1AbziJf-SOA.roa (hash: vGvXkm75uZ6w5eWBxSl4fiUVkztcBJ6xWRWL2h8kjfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:58:b3:f1:92:9c:2b:bd:38:0b:29:59:d6:2e:f2:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Validity
Not Before: May 9 00:01:19 2025 GMT
Not After : May 10 00:01:19 2025 GMT
Subject: CN=d21112920358beb2c572ddf55d7fc704f8fd2692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:14:82:ee:d2:94:13:92:cc:4c:ff:b3:78:84:
7a:11:54:f5:38:79:fa:9a:b0:af:40:1b:0e:c3:82:
f0:34:d0:0f:ee:1c:91:ed:f7:04:63:5a:1e:de:27:
4b:1b:5c:55:ce:f2:d5:15:a1:c7:48:cf:0c:d4:65:
4a:0f:c5:f4:3d:1e:80:62:50:72:21:25:95:cc:8b:
af:cf:57:a5:3a:07:7e:49:47:28:36:f0:f3:c2:49:
5f:1d:79:03:49:04:b8:c8:87:8f:60:a9:54:84:82:
f8:e6:a1:51:93:b8:26:e7:33:db:a1:01:54:6a:4f:
40:33:eb:bb:0d:e1:f8:d2:fa:5b:49:b6:ac:7e:ed:
45:dc:c4:b7:b7:05:d3:a4:d4:b7:de:c6:37:a2:3d:
4f:a7:26:85:f8:f5:d9:7f:7e:b3:95:3f:da:fa:68:
f8:71:01:4e:df:48:f2:9c:01:ba:b6:36:0f:fa:45:
d4:c3:bc:78:8f:5a:b4:f3:eb:8b:06:b0:13:f9:69:
b3:38:4d:58:a2:c0:fd:72:71:1a:3b:6a:c4:37:91:
4f:96:06:86:d0:79:15:2d:c4:22:cd:c2:25:39:12:
73:ae:ae:3a:12:68:e6:2d:3e:91:b3:67:5a:2d:a7:
9d:79:8c:86:36:3e:de:10:80:ba:3f:70:0a:a8:8d:
12:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:11:12:92:03:58:BE:B2:C5:72:DD:F5:5D:7F:C7:04:F8:FD:26:92
X509v3 Authority Key Identifier:
keyid:FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:9e:ab:b3:bd:33:6c:33:93:13:d8:6c:ce:0a:22:5c:5e:a8:
c4:ec:3a:7a:ac:20:e4:00:67:2d:93:9d:78:6b:9d:74:44:bb:
fe:a2:5a:e3:fc:b4:16:cf:d7:6d:fd:2e:e4:a1:27:58:4a:71:
2e:f4:8a:b2:5b:79:1e:c3:d9:6a:af:b4:e2:54:68:8d:08:90:
71:cf:1d:07:9d:c2:cd:79:37:eb:18:39:13:9e:26:bc:01:0e:
00:90:78:ec:f0:74:e9:c0:75:5f:17:03:89:b8:e3:f8:71:65:
b6:21:35:15:2e:1a:69:81:2f:52:d6:0b:65:65:4e:5f:a0:2b:
41:8c:d9:36:8e:f4:a8:67:ea:6a:8f:62:ad:8e:d1:f4:75:4b:
3a:50:ad:1e:92:a5:4d:43:b4:e3:9a:85:ad:19:03:46:16:d1:
b5:94:95:ec:f4:0b:12:21:9d:b5:54:7c:ce:90:fd:20:fa:58:
b2:18:14:e9:f2:28:3b:3c:fd:90:2b:4d:ae:0d:b5:71:10:bc:
ca:2f:4e:1e:1b:37:b2:e7:cc:53:47:d8:11:0b:89:fa:46:4c:
56:b1:43:99:2c:5a:3f:e1:ca:fb:9a:ab:48:55:d0:1f:82:88:
a7:b1:46:74:50:2e:3b:a3:5d:fe:67:82:17:da:37:ca:4a:72:
02:b9:87:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 08:46:27 2025 by rpki-client