Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: S627PukNwEOOkbvXWnroAjymgt7+AKo3NYtOyiDPBEQ=
Subject key identifier: 69:11:77:61:F6:D5:7D:82:2E:A2:85:C5:28:54:9F:45:B9:19:37:35
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 0196BDEE75EC090267EE649B7FF511B00AD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 1536
Signing time: Sun 11 May 2025 06:00:43 +0000
Manifest this update: Sun 11 May 2025 06:00:43 +0000
Manifest next update: Mon 12 May 2025 06:00:43 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: 4TWEGtfrJp5B2XusGeD+ro93Jk9icPzr5/oCBDMaCm8=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 06:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:75:ec:09:02:67:ee:64:9b:7f:f5:11:b0:0a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: May 11 06:00:43 2025 GMT
Not After : May 12 06:00:43 2025 GMT
Subject: CN=69117761f6d57d822ea285c528549f45b9193735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b0:cd:56:43:12:36:18:fe:5f:cc:0a:d5:2c:
51:35:f6:2b:e7:a7:47:bb:71:4b:5e:d1:5e:49:58:
5b:bc:91:d2:1c:e1:2d:21:85:a5:ca:6c:58:e8:18:
f4:5b:6c:16:87:58:e1:2a:9e:7a:79:5a:9d:c7:dd:
76:1a:30:79:d8:89:84:2a:a0:51:57:10:77:df:94:
10:63:99:c1:cf:0f:57:b5:16:c5:54:8b:9e:28:6c:
26:fa:45:79:d8:b7:8a:0d:0a:50:7f:5a:01:a1:41:
00:be:4c:28:ff:99:6b:d1:bf:42:1d:c0:7a:83:26:
78:77:16:13:fe:2f:4d:ab:17:1e:c3:82:71:aa:9e:
23:0e:a6:8f:34:ac:e1:61:39:53:0d:2d:94:0a:e9:
a9:65:da:f7:9b:74:c5:8a:c1:a7:33:2b:f3:51:29:
ae:c6:73:32:21:8f:c4:05:d4:7e:4b:4b:1c:0f:b5:
84:a8:27:be:1e:28:e0:e7:1e:f3:b5:c6:b0:2d:4b:
13:a5:79:b9:ee:cf:a7:d0:06:9c:97:21:fe:c2:64:
93:49:f8:7f:da:07:b6:ae:21:c9:47:c3:12:b7:ac:
96:d3:18:10:e5:c9:35:16:06:5f:ce:72:53:56:38:
5c:cc:85:7d:1b:6f:99:99:38:89:89:1a:b9:ba:a7:
fb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:11:77:61:F6:D5:7D:82:2E:A2:85:C5:28:54:9F:45:B9:19:37:35
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:e0:cc:5c:3c:89:5d:f6:a6:4d:bf:b5:df:56:d9:9d:c4:12:
b5:48:25:99:11:cb:6e:0d:66:2d:79:05:4f:d5:b5:5c:a0:97:
2d:16:b8:40:c0:90:35:f5:a6:4d:a3:b0:d3:61:52:a1:1c:29:
69:eb:90:21:49:40:f1:d0:c6:bd:06:af:f7:f1:57:82:a2:1a:
fa:4c:6a:f8:5b:27:a6:1b:66:98:79:b5:50:e6:64:9c:2a:fe:
3f:63:74:e7:1a:6d:fd:1a:30:dd:78:07:eb:7e:f6:2c:41:be:
56:5d:50:6f:ec:31:e9:cf:93:f9:ae:46:f5:ee:6e:2c:5d:4f:
0a:59:0f:50:49:64:b5:f7:9e:8f:73:72:4a:4a:3f:78:37:56:
a2:f1:09:e6:b6:0d:80:29:02:30:64:ce:46:82:4d:c1:7f:fe:
d8:d6:c9:9c:bf:0c:61:3d:ea:60:04:61:74:bd:86:dd:d8:2e:
32:43:29:65:3e:1d:cf:04:01:f6:eb:1e:e1:d0:66:14:30:55:
39:c2:bf:12:c1:01:bb:b9:7b:f2:46:2d:2b:30:65:f3:c3:27:
7d:c6:2b:2d:ac:a8:03:f7:bc:79:fa:c5:77:71:b1:7f:be:fa:
32:1d:08:22:55:2c:97:a3:00:e7:3f:ce:45:c3:01:02:51:30:
69:50:d9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:47:40 2025 by rpki-client