Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
File: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft (raw, json)
Hash identifier: Xkva3K9YBdXz66wmHtxk6tRoV/zLFlO4PLyLsx55XaQ=
Subject key identifier: CC:85:BF:F3:05:4B:3F:BF:B9:5A:39:9D:C8:D7:14:59:E3:3B:67:85
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 019652DB253DB157054FD9E028F25010A09F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
Manifest number: 06C9
Signing time: Sun 20 Apr 2025 11:00:15 +0000
Manifest this update: Sun 20 Apr 2025 11:00:15 +0000
Manifest next update: Mon 21 Apr 2025 11:00:15 +0000
Files and hashes: 1: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl (hash: GZOdyhuyBGMgzZOQf31eEgFfTNSWU+BpYJ09Dpt7tec=)
2: Z5KDHzf527U1qRAIHwgcHaWLd8Y.roa (hash: 2FLC0+uc30V7W0I0O5nyFk8rgVmBx+XIWSxS6WsMyJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 11:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:25:3d:b1:57:05:4f:d9:e0:28:f2:50:10:a0:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Apr 20 11:00:15 2025 GMT
Not After : Apr 21 11:00:15 2025 GMT
Subject: CN=cc85bff3054b3fbfb95a399dc8d71459e33b6785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0f:dc:e4:ea:ef:71:07:cd:b8:8f:79:8e:39:
0d:dd:a2:74:b3:ae:f8:c9:3d:f8:23:87:de:73:84:
1c:97:fb:d7:7b:78:73:65:1a:22:03:c3:79:38:66:
4c:67:d3:6a:c4:9b:e7:ee:f7:3a:f0:b0:54:e2:3c:
4c:28:ec:60:9e:60:97:20:b4:ec:01:8e:50:2f:20:
52:0a:48:42:84:86:50:39:69:b3:cb:89:60:91:49:
06:3a:5e:8d:e6:80:5c:e2:3f:88:e8:bd:e4:d4:8d:
e3:43:c5:00:16:c9:87:48:22:b9:db:b0:e3:66:94:
29:d5:5a:80:45:dd:86:40:5e:6d:17:89:e5:b3:a7:
44:9d:a2:d0:4f:6e:21:2d:b9:74:29:d8:3a:cf:3e:
71:ef:d1:5b:04:5d:d5:14:bb:67:4a:f2:94:5e:b6:
ec:f4:b5:8a:67:cb:4b:de:fe:c8:0a:cf:00:91:62:
3f:b7:94:3d:12:19:74:37:b9:37:90:9a:81:86:9c:
00:09:db:93:4d:a5:b1:48:ac:cf:74:b4:da:08:40:
de:4a:f1:ea:1e:7a:db:f4:01:19:a6:d4:c1:fc:f3:
b0:e9:8f:57:57:27:42:c3:aa:93:f3:08:f6:73:ac:
46:0e:81:57:25:59:ea:65:83:9b:6d:38:c1:55:ed:
fd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:85:BF:F3:05:4B:3F:BF:B9:5A:39:9D:C8:D7:14:59:E3:3B:67:85
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:9d:fc:b4:5b:15:f0:89:2b:54:53:17:43:a8:d5:c4:51:d4:
32:89:08:1d:71:6f:36:2b:55:76:79:b4:11:b0:6a:13:ef:20:
79:ca:4e:7e:26:35:30:87:56:e3:b5:8f:64:68:1c:3f:65:6e:
6b:2a:9b:34:80:36:9a:78:b9:4b:49:d6:cc:4b:4b:99:77:e8:
ea:54:09:cc:90:d4:56:11:45:bf:79:9f:e5:cf:d3:c6:55:68:
c6:d0:33:b2:20:dd:10:44:6a:41:5e:01:c4:cf:97:86:50:e8:
11:b8:c6:b3:9e:5d:fd:e0:95:79:8f:41:f6:cc:90:85:65:57:
3a:4f:c8:a2:cd:cf:3c:85:6d:7b:0d:14:a0:d7:8e:9a:ef:d1:
2d:17:f3:0e:82:cf:43:fb:b6:51:95:1b:08:46:ab:5e:0a:b9:
67:3b:ac:45:8e:21:2c:02:cf:98:23:84:92:1f:39:05:4b:64:
c6:3d:99:60:f7:9f:93:ae:66:0c:1e:62:a9:0b:ff:3b:4e:cf:
34:e3:8b:58:0b:a6:c4:c2:01:e3:e4:cb:83:2e:d8:b2:26:67:
29:36:6b:dd:5d:7c:40:bb:db:0b:33:e8:7a:43:9f:a1:bd:9b:
80:8f:42:75:a9:48:6b:4b:ae:bf:e6:c4:c8:ba:f9:88:4e:27:
d7:95:c0:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:33:28 2025 by rpki-client