Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
File: Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft (raw, json)
Hash identifier: CJXKSjHeR1FtTTqzgTvSlSXoOWGQTJKUFvw1zAW7DV8=
Subject key identifier: F4:D4:48:8F:3F:8C:A9:4E:0B:90:46:27:27:5C:49:DA:C6:64:BE:7F
Authority key identifier: 43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD
Certificate issuer: /CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd
Certificate serial: 019655377328E7142F9CF7457A2895355C9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
Manifest number: 0512
Signing time: Sun 20 Apr 2025 22:00:19 +0000
Manifest this update: Sun 20 Apr 2025 22:00:19 +0000
Manifest next update: Mon 21 Apr 2025 22:00:19 +0000
Files and hashes: 1: Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl (hash: 6KrBm7InQPmm5D//dc7YcMBENNEfxjiNPx5PLU0kI3M=)
2: VMxe0uGWpSo7MC38AuPyARm4ELw.roa (hash: tdke4bTnyhBCQowtj7hvI4mzPoyXG8N51jhjgyuQaj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:73:28:e7:14:2f:9c:f7:45:7a:28:95:35:5c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd
Validity
Not Before: Apr 20 22:00:19 2025 GMT
Not After : Apr 21 22:00:19 2025 GMT
Subject: CN=f4d4488f3f8ca94e0b904627275c49dac664be7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:be:6d:c3:08:24:c9:90:a0:26:c2:5c:a3:
e8:f3:b0:9a:92:17:12:51:b3:40:76:ba:29:3e:29:
45:11:ac:66:99:e7:cf:0c:cd:b5:4e:d0:b7:5b:1c:
07:5a:c2:84:56:d4:79:60:4c:07:ef:39:45:b2:48:
ce:48:b5:90:5d:7a:61:50:19:94:da:0b:b6:e4:f3:
75:de:48:c7:fa:2c:e0:05:e4:6c:73:1c:27:d0:34:
57:e0:65:3b:de:9e:be:d9:c7:4e:44:7c:4d:cf:07:
38:66:ba:7a:96:df:db:66:94:47:ce:31:dd:1a:8c:
94:a4:67:2f:8f:47:52:d0:a2:98:22:ad:09:ee:20:
cd:f6:8f:fa:bd:d9:38:af:ed:6f:95:0d:6d:1b:60:
28:49:0b:a7:57:ef:12:3d:1f:c5:e9:60:60:ae:cf:
d7:83:a2:ce:83:e1:05:31:02:33:63:70:d0:6d:2d:
bb:f2:a2:bc:a2:06:6a:12:af:e1:87:03:2e:f6:a5:
25:6f:2b:a7:07:dd:89:9c:60:8c:3c:66:13:80:16:
ad:e3:9e:81:08:2a:46:33:33:89:98:15:84:95:df:
43:b4:be:7b:4b:21:32:86:cb:94:31:d5:fd:d5:fa:
8d:b5:24:58:85:a5:f5:4e:29:95:e1:93:14:42:2e:
94:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D4:48:8F:3F:8C:A9:4E:0B:90:46:27:27:5C:49:DA:C6:64:BE:7F
X509v3 Authority Key Identifier:
keyid:43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:0b:45:ed:3f:2b:47:04:b6:bb:d8:ab:c4:79:e1:75:6c:c4:
d9:f8:30:26:6e:26:ce:cf:a0:c2:0d:42:5d:4e:95:9b:24:14:
21:4a:42:6f:db:00:de:4e:75:3c:a0:bd:d3:e0:56:96:09:73:
d7:25:f4:be:45:80:6a:f0:0c:9f:c9:dc:78:5a:b2:d3:5a:82:
b8:66:19:17:ec:b2:be:ba:c2:1e:e4:a3:11:53:8d:53:65:a6:
13:d1:f6:96:f5:5b:26:b6:64:b4:13:d9:8d:5c:a4:83:b7:2d:
26:d5:cc:38:85:95:d5:68:f4:8c:91:57:1e:a0:0d:79:c0:d6:
ca:0c:ec:92:61:00:44:68:ed:60:0a:ba:61:8e:ab:24:3d:fa:
43:f7:5a:0a:81:3e:64:ed:84:81:32:61:7d:c2:2e:8b:d6:71:
22:c6:a8:bb:8a:66:d0:c7:e3:58:3b:5a:52:fd:b2:42:b5:5d:
35:b9:d2:3f:eb:e3:bb:b8:08:08:b1:63:a7:35:22:aa:ab:27:
36:fe:4d:67:40:0f:cc:ad:34:dc:44:85:df:cc:53:f4:c2:69:
cd:4d:7d:d9:1d:e9:bc:52:d7:00:44:4e:32:87:a5:9d:fc:97:
9a:41:41:c5:fe:d8:3f:05:6c:6b:87:fc:e8:6d:bf:c4:1b:8b:
31:de:23:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:33:51 2025 by rpki-client