Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft
File: QdFPKPmNO9zEXhkibx9WFw4xKr8.mft (raw, json)
Hash identifier: EkS+xaYFls9oIjOhyrCS4G538h6AACKESaD4w6b+jjw=
Subject key identifier: 37:9E:F2:00:2D:CA:8D:30:B0:17:C2:C8:82:61:3F:B8:DA:43:B2:82
Authority key identifier: 41:D1:4F:28:F9:8D:3B:DC:C4:5E:19:22:6F:1F:56:17:0E:31:2A:BF
Certificate issuer: /CN=41d14f28f98d3bdcc45e19226f1f56170e312abf
Certificate serial: 0196379B5D8C5B1B620DE6386C107D366565
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft
Manifest number: 14F0
Signing time: Tue 15 Apr 2025 04:00:50 +0000
Manifest this update: Tue 15 Apr 2025 04:00:50 +0000
Manifest next update: Wed 16 Apr 2025 04:00:50 +0000
Files and hashes: 1: QdFPKPmNO9zEXhkibx9WFw4xKr8.crl (hash: xJ/4s5kQbYbE6xf2ycdA9+kWG2EafAkmn6xP/S3FPw4=)
2: TfT6AZyh9UGWuKPzLXDw4XK7Cjc.roa (hash: 4OX2vbS8uyBAPoRn5NlTz3A25sxN9Wre4w3pzzWneG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:37:9b:5d:8c:5b:1b:62:0d:e6:38:6c:10:7d:36:65:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d14f28f98d3bdcc45e19226f1f56170e312abf
Validity
Not Before: Apr 15 04:00:50 2025 GMT
Not After : Apr 16 04:00:50 2025 GMT
Subject: CN=379ef2002dca8d30b017c2c882613fb8da43b282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:80:d8:50:56:91:15:6b:e6:27:ae:1e:6b:
d9:78:ef:c4:d1:23:65:7a:28:43:41:1a:80:74:07:
b6:e9:1e:d0:ab:4d:d0:ed:ca:24:03:b8:a4:56:17:
32:e2:20:f9:e8:a8:52:d1:91:76:cb:07:53:ac:13:
bd:52:3a:6c:eb:4b:da:91:e1:8d:f3:6d:f3:84:77:
c5:3e:c3:68:33:c7:1d:a1:2b:32:5c:72:c3:43:de:
cc:98:48:74:42:ef:7b:2e:8d:ce:bc:21:4c:0a:9d:
d2:0c:62:d0:20:bc:d4:5c:4e:72:69:05:3a:06:96:
79:14:5a:89:e1:1e:02:b6:8a:96:1b:32:ef:20:f3:
97:7a:93:79:30:79:29:f0:c4:d3:a0:23:58:3d:e3:
fd:f3:31:8c:ce:b7:f8:5c:82:02:c8:58:20:d9:6f:
4c:0d:ea:31:7e:e4:0b:91:89:fd:9b:73:ff:f6:2f:
df:e0:a6:a3:23:75:10:f2:d2:61:c3:d3:ae:b0:f5:
54:57:ff:45:a6:40:7d:7b:fb:a4:6b:76:af:9f:e3:
a8:c3:7e:f6:55:3d:f1:31:6b:aa:0d:45:2e:fe:7d:
6d:ac:83:be:17:05:1c:f3:93:b3:2d:23:63:3e:25:
91:57:03:50:c2:79:78:a8:3b:15:29:22:64:97:e5:
35:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:9E:F2:00:2D:CA:8D:30:B0:17:C2:C8:82:61:3F:B8:DA:43:B2:82
X509v3 Authority Key Identifier:
keyid:41:D1:4F:28:F9:8D:3B:DC:C4:5E:19:22:6F:1F:56:17:0E:31:2A:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:4a:27:dc:1c:a9:84:f7:36:fc:59:75:a0:77:9d:1e:6a:4a:
f8:30:1a:2e:7b:fd:77:e0:4d:1a:ec:fa:e1:57:9f:41:ee:b0:
3a:27:d0:30:cb:25:43:5f:06:96:b4:21:f0:e2:b2:fd:53:94:
54:64:75:d6:b5:c8:cb:20:b3:c6:b6:c4:e2:b8:a6:bf:8d:b2:
aa:b6:5e:46:d0:8a:df:32:1f:a1:06:39:97:d6:10:90:79:82:
ae:f9:1f:68:e2:21:65:29:dc:a7:71:30:9f:85:50:59:cf:5c:
4b:ba:75:7d:0f:0e:06:ec:f5:7c:40:08:ec:94:bd:3f:27:14:
4d:95:89:9f:a8:8a:c4:2b:89:f2:9b:95:43:8d:0e:2f:58:c3:
3b:fb:f1:af:3f:d6:d0:be:04:3b:d7:99:c0:17:68:23:ea:d0:
d8:35:14:09:02:08:91:ca:79:47:82:bc:41:13:ce:f2:76:d7:
54:6c:7f:7a:af:56:2c:37:29:bc:97:72:3f:a3:d6:5e:a5:47:
f4:9c:ed:99:45:ac:4d:6d:f2:79:92:b9:83:09:7c:7c:16:4b:
6c:21:90:49:cd:9e:8c:b8:bc:0d:22:67:f2:73:62:db:c5:4b:
31:9c:2e:21:65:52:c2:6d:8d:ad:3d:10:5e:01:df:8b:ad:a0:
61:fb:90:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 13:43:50 2025 by rpki-client