Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
File: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft (raw, json)
Hash identifier: Ou686eYF6J69rohAXHCao7Slb9gX9wM2k9M0BDNhh1w=
Subject key identifier: 24:1C:34:8B:A0:A5:90:BE:C9:7B:24:29:D9:6C:CA:FF:6A:B1:7A:0B
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 019512473530EDE9133C436F83304D43229B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
Manifest number: 0623
Signing time: Mon 17 Feb 2025 05:00:11 +0000
Manifest this update: Mon 17 Feb 2025 05:00:11 +0000
Manifest next update: Tue 18 Feb 2025 05:00:11 +0000
Files and hashes: 1: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl (hash: BT203RtKG8rTe+NJSey9AEU3BpfB8u2OG+qvdFXgUrM=)
2: Z5KDHzf527U1qRAIHwgcHaWLd8Y.roa (hash: 2FLC0+uc30V7W0I0O5nyFk8rgVmBx+XIWSxS6WsMyJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:35:30:ed:e9:13:3c:43:6f:83:30:4d:43:22:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Feb 17 05:00:11 2025 GMT
Not After : Feb 18 05:00:11 2025 GMT
Subject: CN=241c348ba0a590bec97b2429d96ccaff6ab17a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5e:e1:95:a6:f6:47:3f:4c:fd:b6:70:02:2e:
53:ec:b8:f0:dc:59:66:7d:4c:65:f6:1b:f6:71:88:
50:93:e6:e2:c8:0c:a4:9e:32:5e:90:63:51:08:8e:
8f:ae:c3:26:03:6c:3e:06:dd:c0:4b:6e:82:35:64:
43:10:8f:c4:7c:31:54:9c:3d:ff:1a:31:40:8d:f3:
2c:ce:d5:de:29:4d:d4:17:14:0f:55:16:07:0d:50:
07:63:70:f9:f9:76:12:d2:f2:4d:d9:37:cb:9c:4d:
d2:1f:7d:e2:a4:85:0f:bb:35:35:13:5a:e3:10:fc:
ae:a6:0a:90:e8:61:41:dd:52:1b:a1:2f:af:f4:73:
bf:49:42:84:45:9f:00:34:7e:80:2e:b7:53:86:d2:
38:31:c7:6c:59:f1:4b:2f:e7:41:7c:d2:82:b4:c1:
a3:8c:f2:a2:34:00:11:9c:e2:8e:a9:fe:32:c1:68:
16:0b:8f:f2:5c:24:01:36:c6:89:9f:cc:11:4d:eb:
af:0b:f1:54:65:93:aa:6c:26:9a:bf:c9:94:73:13:
5f:a8:d2:3c:a0:95:27:19:5b:f9:c4:50:42:46:e7:
6b:22:fc:56:e7:da:fc:ea:e4:c9:3a:51:2d:8d:19:
0e:32:76:8e:24:b6:11:47:04:2a:79:2a:35:d6:c0:
fb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:1C:34:8B:A0:A5:90:BE:C9:7B:24:29:D9:6C:CA:FF:6A:B1:7A:0B
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:0b:0e:17:40:12:a8:57:1c:04:36:d0:87:14:87:65:59:52:
58:91:4f:4f:63:b9:9b:15:47:d7:d9:30:7e:cc:c2:ef:9b:2f:
89:11:f7:6a:cb:43:e9:e3:52:5f:d6:99:99:47:14:30:23:32:
3a:7f:b4:d2:58:b7:06:03:d3:7a:b3:27:7f:bc:ab:64:51:68:
80:dc:92:09:b3:46:02:03:5a:69:50:b5:7b:e3:b7:88:0a:5d:
cf:d6:32:79:43:69:35:22:54:8c:76:e1:61:14:9c:18:8c:89:
1d:37:27:81:4a:46:93:bd:5c:3d:d2:94:0a:fa:43:e0:eb:fc:
74:d1:ae:f4:37:c9:08:97:c3:1a:2f:75:4c:39:85:16:1c:e9:
5b:7a:12:04:e4:c7:04:36:2c:bf:36:ed:c8:17:d1:85:6d:64:
b4:ef:13:3a:4b:d9:e3:03:2e:2a:1f:07:0b:7d:c1:2a:04:a8:
cf:21:4c:c2:af:6c:90:98:bb:70:b3:d3:9f:c4:a1:4b:18:27:
7b:39:34:25:f3:0a:ae:bc:1e:07:a8:74:0e:08:7c:8b:a6:f6:
55:09:1e:95:1d:9f:53:a2:23:54:1d:dc:02:6a:19:75:18:d4:
0d:8b:32:ab:01:f4:b8:6c:cb:8f:81:19:23:05:a9:be:8c:92:
29:6c:09:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:45 2025 by rpki-client