Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: d3DewKowVZf+bkJaUgxAre4VWn8AmiaGVCTU1EmFTZo=
Subject key identifier: AD:18:8A:24:4E:90:66:DB:8B:4D:68:44:FA:0E:0D:6E:F3:9B:90:98
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 0196C7CD36ECC0B56C22E5DB2B4182906895
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 1238
Signing time: Tue 13 May 2025 04:00:36 +0000
Manifest this update: Tue 13 May 2025 04:00:36 +0000
Manifest next update: Wed 14 May 2025 04:00:36 +0000
Files and hashes: 1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: N6tNQhn5yco6tsll+8rQ0N2JyGEOV7PaPRBnZXV/i4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:cd:36:ec:c0:b5:6c:22:e5:db:2b:41:82:90:68:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: May 13 04:00:36 2025 GMT
Not After : May 14 04:00:36 2025 GMT
Subject: CN=ad188a244e9066db8b4d6844fa0e0d6ef39b9098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ac:a3:91:3a:8c:40:9a:01:ad:5d:be:fc:79:
98:0f:b7:12:d7:4a:8c:f9:00:62:01:5e:d0:ea:27:
06:b6:e2:bb:14:c6:56:32:db:ac:23:a3:7a:a2:fb:
d7:3f:d5:30:f0:81:23:d5:93:92:3d:94:65:d5:a4:
d3:7f:78:41:b7:f5:68:0e:08:12:b2:a8:e1:63:e0:
ca:f7:4a:ae:08:87:6f:59:0f:6a:80:18:db:06:19:
8c:9b:1d:b1:c3:71:8b:0c:c6:5b:df:9c:d9:6d:c4:
f0:98:fa:fb:a4:7e:a7:de:28:0a:34:72:65:7a:b4:
8c:a6:11:80:e0:cc:1c:29:f6:7e:4a:58:dd:67:b0:
23:6d:4f:b4:c0:c3:92:dd:b7:46:05:b8:86:c2:b0:
9a:46:6a:96:e7:cb:54:05:5e:e7:47:9f:60:b9:a4:
2a:f9:6c:16:d2:04:cb:47:51:9a:93:e1:41:db:6c:
d0:64:1c:5d:ff:26:c8:47:ed:fb:40:86:84:13:7c:
04:8f:1a:b7:09:ba:7f:1d:44:64:45:cf:df:4a:fd:
99:3f:8a:ea:68:5f:3c:44:96:73:5c:8e:06:46:0c:
37:02:f9:e8:3a:38:2b:2f:75:9a:4d:80:39:e7:56:
fc:db:e1:db:0d:17:87:aa:23:b8:b8:9b:99:f1:ab:
ec:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:18:8A:24:4E:90:66:DB:8B:4D:68:44:FA:0E:0D:6E:F3:9B:90:98
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:fb:3e:c0:24:48:40:de:72:df:a5:4c:f1:4c:22:be:fd:ed:
b3:66:85:3a:16:9e:cb:2a:f4:2d:7f:10:ee:1b:95:38:73:f6:
8d:f5:91:34:71:aa:4d:32:be:c9:e5:cd:6a:cf:54:fd:86:1c:
55:fb:db:b2:6c:3c:7c:78:13:5a:62:8c:98:85:aa:9a:c4:2a:
37:f9:a2:86:6a:5c:2d:ce:2d:8d:84:cd:8b:34:92:d0:92:53:
8e:1d:2c:cf:85:c8:53:ca:51:1c:99:0c:3e:db:61:ec:5d:d4:
cf:30:be:e4:10:72:68:e1:9a:37:4e:62:35:55:e9:a3:80:e3:
12:40:ee:48:87:24:31:b7:56:2c:4c:43:9e:ee:d8:14:20:b4:
d5:ed:ca:72:49:4a:d2:6a:d6:6b:34:ae:79:e5:f3:08:73:80:
60:50:8d:40:6f:1d:0a:6a:53:62:2f:29:33:0e:25:62:58:e4:
20:7d:39:63:94:c3:4a:1f:09:b7:09:c1:01:e7:a8:8d:d9:bf:
4f:b2:21:37:6c:f7:89:c2:11:a8:a4:aa:d3:64:61:90:b8:8a:
0f:5b:10:c0:cb:05:a6:b2:e9:10:b6:6a:e5:4f:0f:fd:07:7e:
45:55:1c:ac:4d:aa:d2:b2:c4:8b:7f:89:2d:0a:2d:37:bb:6c:
b8:7f:bd:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:19:29 2025 by rpki-client