Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
File: qxSu-APVDXALuYUq6LsrtAkmFqU.mft (raw, json)
Hash identifier: YoUiGsbMEBpd4hG0IY+G1vD/H7jqS6LIlFCbpHcbulM=
Subject key identifier: 8F:54:04:54:48:C0:AF:AF:85:E2:73:21:24:D0:A0:4C:8C:25:69:EF
Authority key identifier: AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5
Certificate issuer: /CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5
Certificate serial: 019644449FC7E9AFD9C269A2EFFC5E950DC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
Manifest number: 0C0D
Signing time: Thu 17 Apr 2025 15:01:09 +0000
Manifest this update: Thu 17 Apr 2025 15:01:09 +0000
Manifest next update: Fri 18 Apr 2025 15:01:09 +0000
Files and hashes: 1: qxSu-APVDXALuYUq6LsrtAkmFqU.crl (hash: 8+ytv8FAuvZdhDUrn5/M/GutqvZ5RqNtmvZFXUdawGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:44:9f:c7:e9:af:d9:c2:69:a2:ef:fc:5e:95:0d:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5
Validity
Not Before: Apr 17 15:01:09 2025 GMT
Not After : Apr 18 15:01:09 2025 GMT
Subject: CN=8f54045448c0afaf85e2732124d0a04c8c2569ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0d:98:47:1d:ed:17:d3:01:b1:0b:3c:87:b9:
d1:dd:e8:5c:2f:b7:ad:80:b1:9a:ec:78:5a:7d:4b:
bb:ba:4d:bd:b6:8a:74:78:63:7c:f7:89:2d:84:09:
7c:5f:33:8c:fb:67:c2:e3:e6:2d:52:f5:41:45:f3:
76:11:f3:2c:4f:c6:bc:85:9b:bb:ef:4c:57:58:32:
53:a7:6c:fd:09:64:88:6d:c6:28:0e:2b:90:19:cf:
47:da:9f:db:60:e3:46:47:9e:f5:89:08:99:e4:c2:
bd:c2:ca:48:c3:a7:17:6e:4c:95:24:a9:3f:ab:f8:
d5:e1:1d:98:29:04:8d:d7:cd:d9:21:df:22:2a:75:
a3:07:cc:fc:21:e4:11:45:3e:3b:c2:f6:59:a6:76:
d2:88:fb:fe:25:b2:93:89:3c:d5:1c:3e:12:9e:43:
37:51:c7:f8:6b:9c:71:e8:ae:42:c7:f4:9a:02:20:
3b:b5:a6:bc:2a:12:ff:fb:00:b2:4c:57:7e:34:c2:
e7:78:a8:09:1f:6d:fa:99:a3:ef:dc:ff:ab:c6:27:
c0:a4:06:60:d6:40:25:6b:a2:83:b3:a9:2b:74:56:
1b:45:7f:c9:63:aa:3a:f6:4c:ca:86:0a:ea:e4:45:
f6:ef:b5:7e:cd:a5:2a:23:dd:9d:23:e1:f7:93:81:
df:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:54:04:54:48:C0:AF:AF:85:E2:73:21:24:D0:A0:4C:8C:25:69:EF
X509v3 Authority Key Identifier:
keyid:AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:47:f1:91:6d:23:a0:99:14:45:bf:0f:67:9e:5e:2a:a0:95:
07:61:94:64:f7:86:7f:74:f0:e9:5d:64:ee:fa:b7:09:a4:c1:
6a:56:f9:8f:24:86:b0:f7:b9:a4:a1:f5:b1:d2:df:12:76:3a:
13:a9:2c:64:00:9e:dd:e3:a2:45:98:f7:d7:06:73:54:45:4d:
65:86:04:6b:61:1b:f3:ba:8c:01:ee:6f:32:37:c3:9b:28:5c:
9a:1f:06:3b:64:cb:1d:b6:74:bc:56:81:a9:e9:1a:6a:b2:7c:
5d:24:c0:0d:0a:f0:ff:31:a5:58:df:19:f0:7a:ee:63:d3:88:
93:9d:3c:f3:de:ef:e0:42:b2:00:b1:81:c3:5d:30:a9:f3:67:
64:18:4e:69:6f:06:f2:5d:97:4c:9e:0a:8d:67:01:e5:c4:61:
ae:ce:84:c7:e4:fd:a9:08:b5:13:5e:6d:b8:56:b9:55:0c:69:
20:82:df:db:b1:12:1f:91:34:31:e3:45:db:8f:4f:17:00:5b:
13:34:f3:8b:61:e6:b1:16:10:c7:69:06:72:2a:bb:e6:a9:53:
11:66:94:a1:cb:e1:e2:4a:01:88:04:50:90:14:7d:0f:11:f3:
af:8e:fa:ef:88:e3:07:a9:f4:ec:de:f6:9f:9a:ac:ad:d8:72:
59:2e:68:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:20:42 2025 by rpki-client