Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
File: Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft (raw, json)
Hash identifier: 1m/V/643jZryVW55Gb60g7QXq6uzuSgQkiCuMxnw7ig=
Subject key identifier: 85:7D:32:A6:0C:34:2A:E5:0C:23:B0:9B:0C:65:A8:C1:DC:FB:DC:C7
Authority key identifier: 43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD
Certificate issuer: /CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd
Certificate serial: 019510C741A5455BC0A0D513D0314BE01955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
Manifest number: 046A
Signing time: Sun 16 Feb 2025 22:00:48 +0000
Manifest this update: Sun 16 Feb 2025 22:00:48 +0000
Manifest next update: Mon 17 Feb 2025 22:00:48 +0000
Files and hashes: 1: Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl (hash: cqDOCzjtrmRYCr8AYEJ4FZzln7QfaPGaRFX34sRltsc=)
2: VMxe0uGWpSo7MC38AuPyARm4ELw.roa (hash: tdke4bTnyhBCQowtj7hvI4mzPoyXG8N51jhjgyuQaj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:41:a5:45:5b:c0:a0:d5:13:d0:31:4b:e0:19:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd
Validity
Not Before: Feb 16 22:00:48 2025 GMT
Not After : Feb 17 22:00:48 2025 GMT
Subject: CN=857d32a60c342ae50c23b09b0c65a8c1dcfbdcc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:71:ad:39:ea:37:be:41:4d:63:a5:2e:99:a9:
a1:77:cf:3a:d6:4a:ce:59:23:8e:d4:23:99:a6:cc:
36:61:ff:0e:cc:b1:49:0d:bf:fe:83:ef:c0:4d:ac:
6f:e2:d7:28:25:74:00:a7:17:ea:f2:57:ce:38:95:
fc:e5:98:04:ba:8c:b1:65:6b:e7:18:ff:ea:05:7d:
51:81:93:51:f3:44:40:65:18:03:5b:02:52:61:b3:
fb:6d:de:8d:2c:f9:db:4a:bc:33:72:a2:49:06:e9:
0b:bc:07:e0:13:da:fc:ec:98:4e:f3:ba:74:4f:b8:
c6:c9:a0:83:04:88:66:dc:48:25:d4:ce:8b:d7:3d:
ac:dc:83:3d:0d:c1:b8:ab:fb:d8:da:8e:9b:59:03:
6d:71:a0:c5:e2:d8:03:52:d1:72:9a:89:a5:54:da:
ae:ae:ca:21:d6:f4:fe:91:36:20:c9:01:e8:af:51:
d4:3f:a9:3c:13:7a:a0:f4:ee:3a:47:23:e8:7a:26:
00:2d:36:b0:f0:e2:79:8d:36:63:95:14:48:6f:42:
4c:72:60:3f:89:5e:da:84:11:ef:86:19:bf:84:46:
ef:49:f9:d5:62:52:b0:55:7e:fa:68:e7:70:50:db:
f9:5e:c3:c6:5f:45:f6:bd:25:64:af:3e:b2:5b:14:
85:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7D:32:A6:0C:34:2A:E5:0C:23:B0:9B:0C:65:A8:C1:DC:FB:DC:C7
X509v3 Authority Key Identifier:
keyid:43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:2c:27:27:9d:84:39:9f:00:51:84:7f:28:4d:93:12:fc:6f:
d5:78:13:64:a6:9c:d2:4a:c9:af:f7:0e:f5:03:47:fc:50:d8:
d3:80:10:25:c9:a0:7a:96:c9:a1:97:00:28:39:01:f7:13:52:
88:fd:5f:a8:db:c0:d0:3d:cd:c7:65:4c:6c:39:ab:90:7a:3e:
62:85:19:02:ed:fa:7b:9b:d0:dc:19:29:9d:37:2e:4c:b2:23:
73:e9:f8:c1:b5:e0:91:b1:d9:e2:c5:91:a7:8a:fb:f5:e0:a7:
41:ef:99:49:7b:09:51:8d:9b:53:67:ee:2c:54:98:de:15:52:
ee:c2:46:4a:19:7d:3d:0a:13:e2:85:dd:a6:54:d3:0f:e8:99:
f6:f9:40:28:f2:e0:68:8d:d2:bb:0f:d0:d9:8e:13:24:64:bb:
db:1d:6f:a0:8f:ad:85:26:82:1a:b3:12:12:0f:f6:19:7c:df:
2e:86:1a:c5:12:1b:eb:33:a3:b5:dc:c3:30:aa:bd:29:eb:82:
b0:8c:93:d9:c0:2d:b1:76:41:dd:7a:ab:df:11:96:bb:af:ab:
9d:d8:b0:f7:b6:86:d7:43:bd:d8:38:bc:84:ed:01:35:2a:ca:
63:f3:c2:a3:54:b7:09:76:9e:98:32:dc:e0:be:1f:b7:76:b5:
47:05:80:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:50 2025 by rpki-client