Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/eacd48-76ea-4ec7-a141-f5201658fa14/1/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.mft
File: Q6zC8r4aNrCJIWVE0jyVrOIy4UM.mft (raw, json)
Hash identifier: UeK4pHt+uL26bOwr49yhzH6Yzl8qKEA/UOnZ5a/weOs=
Subject key identifier: 3A:79:56:8C:60:7B:CA:82:85:12:AE:2E:81:48:45:02:5D:CC:9A:76
Authority key identifier: 43:AC:C2:F2:BE:1A:36:B0:89:21:65:44:D2:3C:95:AC:E2:32:E1:43
Certificate issuer: /CN=43acc2f2be1a36b089216544d23c95ace232e143
Certificate serial: 01965CF1301DFFF651BF37D439047491B46B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/eacd48-76ea-4ec7-a141-f5201658fa14/1/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.mft
Manifest number: 0856
Signing time: Tue 22 Apr 2025 10:00:32 +0000
Manifest this update: Tue 22 Apr 2025 10:00:32 +0000
Manifest next update: Wed 23 Apr 2025 10:00:32 +0000
Files and hashes: 1: KKb3movEaRK5uooL7CLlRng9BxI.roa (hash: QF2heUsD9ZCfGN4fGvk2RN46irWE6FgEYevma5ik6/E=)
2: Q6zC8r4aNrCJIWVE0jyVrOIy4UM.crl (hash: qPV9vpI5U3IdsEfvM2mJ/SeddXJlslCTPeZ+p21Qbc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/eacd48-76ea-4ec7-a141-f5201658fa14/1/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/eacd48-76ea-4ec7-a141-f5201658fa14/1/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 10:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:30:1d:ff:f6:51:bf:37:d4:39:04:74:91:b4:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43acc2f2be1a36b089216544d23c95ace232e143
Validity
Not Before: Apr 22 10:00:32 2025 GMT
Not After : Apr 23 10:00:32 2025 GMT
Subject: CN=3a79568c607bca828512ae2e814845025dcc9a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9f:b9:2e:1d:48:2e:61:e7:5f:d3:ba:0c:a5:
e8:ce:06:8f:d9:e9:eb:df:73:59:77:73:fc:3f:82:
32:40:6f:1f:a1:bc:c3:80:19:7e:af:70:fc:e6:9d:
3f:5c:da:36:10:29:88:44:e3:61:8d:88:31:b2:dc:
99:ab:d1:f8:9f:49:82:51:e0:76:aa:46:03:8b:3c:
95:50:33:e9:c1:21:2d:0e:43:e7:ee:65:1f:e7:ca:
e2:47:85:9d:78:7e:56:59:4c:9e:b6:82:96:7f:32:
09:f3:55:bb:5a:a5:9e:2d:62:a3:a0:47:98:f6:2c:
6b:90:53:2f:4d:f8:c6:23:15:bf:97:9e:7a:a7:70:
ef:60:fb:39:f8:51:9e:15:52:9b:8f:6f:ce:9b:4f:
0a:3c:49:14:7b:49:99:01:6f:a9:94:66:83:69:4b:
a6:e6:ea:72:23:ee:a1:e9:2e:84:43:97:aa:a0:d2:
99:ef:66:ec:42:a6:40:e6:8e:32:67:9e:29:b0:c8:
b1:d0:e6:d4:43:a1:8d:33:f1:a1:3b:ad:06:c7:86:
48:94:b1:8f:55:bb:f6:de:20:3f:cb:b7:ba:1f:a9:
c8:5a:12:3f:4c:79:d2:72:7d:82:52:fe:be:79:42:
3e:58:3d:a3:57:0b:5a:19:21:a5:e3:d0:64:ab:c9:
a6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:79:56:8C:60:7B:CA:82:85:12:AE:2E:81:48:45:02:5D:CC:9A:76
X509v3 Authority Key Identifier:
keyid:43:AC:C2:F2:BE:1A:36:B0:89:21:65:44:D2:3C:95:AC:E2:32:E1:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/eacd48-76ea-4ec7-a141-f5201658fa14/1/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/eacd48-76ea-4ec7-a141-f5201658fa14/1/Q6zC8r4aNrCJIWVE0jyVrOIy4UM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:a9:95:cf:07:dd:f3:bd:04:de:cd:9f:39:0a:8e:fb:4a:d0:
26:fb:e8:89:a6:f2:2e:28:b6:c0:fd:ea:b0:30:2e:57:a0:ec:
1a:22:7c:d0:d4:a4:46:dc:db:87:17:67:b4:52:53:03:80:bf:
cc:d8:10:67:5a:70:77:e9:75:f1:df:1b:19:5f:13:2d:8c:e7:
92:41:d8:18:6d:47:a4:18:64:d4:c2:52:df:b7:3e:e9:73:13:
88:0c:2e:1c:b7:cc:4a:2b:c7:68:70:d2:d9:52:22:9f:91:87:
9b:9e:3a:f7:4b:a4:cb:a9:1f:c3:db:4c:67:7b:12:f2:37:02:
4e:c0:a8:de:0a:9d:ee:6c:a0:96:c2:50:7e:63:84:20:c7:5b:
a3:dd:3d:c7:2c:be:7e:0d:bb:c9:bc:32:9b:0f:d8:8c:17:13:
2e:53:c5:c2:3f:28:e0:ef:ca:fc:28:92:2d:d8:ce:49:d3:47:
11:14:c1:2a:c0:87:21:8f:2a:df:50:f7:0f:ef:8d:9e:f8:b9:
ac:e1:da:2c:cc:5e:96:b5:a5:b9:26:43:ec:45:c9:7c:f0:a6:
32:2a:e7:4d:57:8e:2a:62:73:2c:67:3c:69:1d:44:dd:58:ba:
63:fc:da:aa:3f:82:02:97:88:4e:dc:e1:46:ce:30:13:39:59:
b0:10:44:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:05:36 2025 by rpki-client