Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
File: Q57sdw36ZitOpkoCLus46D2q4ig.mft (raw, json)
Hash identifier: tRFXlaHoozgmICvj/mVQomPMl7xqSnwo/ujM5pRwsQA=
Subject key identifier: 33:4F:67:1D:03:0C:28:E1:C7:6E:F6:9B:0C:31:2E:5B:85:7F:06:A2
Authority key identifier: 43:9E:EC:77:0D:FA:66:2B:4E:A6:4A:02:2E:EB:38:E8:3D:AA:E2:28
Certificate issuer: /CN=439eec770dfa662b4ea64a022eeb38e83daae228
Certificate serial: 01964DB4B97E8FD29FD3FF8DADD9CC70622A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
Manifest number: 0690
Signing time: Sat 19 Apr 2025 11:00:11 +0000
Manifest this update: Sat 19 Apr 2025 11:00:11 +0000
Manifest next update: Sun 20 Apr 2025 11:00:11 +0000
Files and hashes: 1: Q57sdw36ZitOpkoCLus46D2q4ig.crl (hash: Bb+JweihRrw70LqHO/7FLYXI6GQXQLjUp7fqnZMgFQ8=)
2: s-6iu0euq8mwctWc84gynbP4Gz8.roa (hash: ix817uYIHKTbd4XoAS5Yf6A1NltjL0SfzgZQTYUowKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 11:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b4:b9:7e:8f:d2:9f:d3:ff:8d:ad:d9:cc:70:62:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439eec770dfa662b4ea64a022eeb38e83daae228
Validity
Not Before: Apr 19 11:00:11 2025 GMT
Not After : Apr 20 11:00:11 2025 GMT
Subject: CN=334f671d030c28e1c76ef69b0c312e5b857f06a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3a:00:9a:11:63:c1:f0:65:05:cc:0b:4f:ca:
03:30:c9:63:25:67:76:b9:e0:c4:3f:09:f9:40:4a:
e4:c9:0e:b6:79:5d:34:2c:d7:b4:fd:cc:75:47:bb:
04:df:01:0b:2d:01:19:28:0b:55:20:b9:0a:cd:5c:
72:e3:ba:09:e7:18:b7:7e:48:2b:52:ff:e6:7b:bf:
bf:4a:f4:a5:f3:8d:da:ce:c1:fe:fb:c6:c9:3a:c3:
25:d0:33:7f:4b:24:7a:bf:b3:4a:c4:49:eb:db:c7:
5f:a4:21:98:82:9d:28:28:0d:b2:5a:4b:e9:89:ea:
a6:2e:7a:c8:fb:88:60:b4:18:e4:28:3a:fc:21:bc:
a2:fa:0f:59:a6:05:8b:23:d6:d8:a7:0f:ef:16:bb:
19:36:ac:a4:ce:46:f9:6a:d6:92:17:cb:19:74:94:
e7:a2:58:08:59:c8:9c:5c:d7:65:3f:5b:e2:8f:6f:
23:18:cd:7b:6d:56:37:16:e8:9b:dc:b8:36:b5:8f:
0f:46:6e:f8:ff:30:c2:e6:2d:e8:7c:b6:51:b3:b9:
69:67:ff:23:fc:40:d1:1e:cd:d6:47:d9:e0:fa:19:
89:b4:2d:2f:ed:6e:ac:76:98:e8:1e:21:55:3b:b9:
20:e4:e4:3d:86:c8:5c:83:03:d3:9d:4f:c0:11:e0:
9b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4F:67:1D:03:0C:28:E1:C7:6E:F6:9B:0C:31:2E:5B:85:7F:06:A2
X509v3 Authority Key Identifier:
keyid:43:9E:EC:77:0D:FA:66:2B:4E:A6:4A:02:2E:EB:38:E8:3D:AA:E2:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:2a:c0:15:24:50:42:9f:1f:40:e9:b0:b1:86:f3:1b:ce:e0:
6d:06:41:2d:23:ce:88:c5:cd:75:f7:10:4d:ca:f5:f1:18:45:
b1:61:18:90:24:53:a4:5d:12:a5:d5:50:03:46:0a:72:5a:f4:
cb:d7:61:3f:97:3f:40:6f:aa:51:ac:29:ed:0d:47:91:4d:83:
6e:cd:44:f3:e3:c8:05:82:b9:13:33:73:65:f0:89:07:8c:59:
6e:d1:f5:a9:3d:b6:94:14:45:ba:e6:f7:b0:2f:d4:9f:f5:52:
9d:27:26:75:58:ac:ed:5e:f3:30:07:01:eb:88:fe:b3:ae:98:
89:3d:66:78:8c:e5:f0:72:e5:89:04:66:bc:b7:25:c2:6b:49:
08:25:71:7d:00:80:28:3c:c1:53:63:e1:69:86:7f:2f:d0:d4:
1c:ec:e8:15:df:77:84:f0:fc:e7:cd:e3:1d:bb:76:52:68:58:
fd:c9:8d:13:62:ac:8b:b4:1c:a1:61:ba:ac:bd:23:b4:41:9d:
b2:7d:df:b6:cc:37:b6:b8:cb:01:4d:8a:10:96:9c:d4:a5:fd:
b8:e1:a7:cf:25:ec:5a:c3:34:d0:5b:92:94:78:4c:70:33:b7:
75:35:c6:22:f0:04:77:72:22:e8:83:0e:9d:23:08:f2:eb:3c:
55:9d:ad:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:33:02 2025 by rpki-client