Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
File: qxSu-APVDXALuYUq6LsrtAkmFqU.mft (raw, json)
Hash identifier: rUibx2JVb/gev/fY+snOUS7ZM+cHQ3w/c4kqNE+Q4WM=
Subject key identifier: 1B:D0:B4:0C:26:9F:6A:C9:5D:5D:E8:CE:44:D6:69:4E:B2:7E:0A:28
Authority key identifier: AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5
Certificate issuer: /CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5
Certificate serial: 01974CD749FF685E28D75A7A6EB3E6F0E3ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
Manifest number: 0C96
Signing time: Sun 08 Jun 2025 00:01:06 +0000
Manifest this update: Sun 08 Jun 2025 00:01:06 +0000
Manifest next update: Mon 09 Jun 2025 00:01:06 +0000
Files and hashes: 1: qxSu-APVDXALuYUq6LsrtAkmFqU.crl (hash: 0ooHxfxAloVkei7DSYsEW1FTansuoyzoVAeumII70Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:49:ff:68:5e:28:d7:5a:7a:6e:b3:e6:f0:e3:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5
Validity
Not Before: Jun 8 00:01:06 2025 GMT
Not After : Jun 9 00:01:06 2025 GMT
Subject: CN=1bd0b40c269f6ac95d5de8ce44d6694eb27e0a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0c:89:ed:17:83:9c:27:9d:aa:ca:cd:93:74:
0e:c1:ac:f9:d4:9f:b9:ab:0d:1d:ce:0d:d0:99:53:
21:49:7f:a8:25:ea:97:3e:aa:ce:90:e9:23:b7:8b:
8b:e3:ac:ac:02:f9:1e:9e:4f:97:96:a4:b6:2e:6d:
b1:7a:3d:1a:59:04:03:b3:87:e8:e0:56:11:bf:25:
6f:44:6d:2a:70:0b:16:a9:28:bc:ca:36:dc:2d:6e:
d8:c3:1a:b3:20:73:73:16:90:18:e1:6a:dc:fe:89:
e4:54:17:d1:75:b8:07:1b:e5:37:64:3f:34:17:89:
be:80:cb:8d:af:c9:ef:b7:2f:4a:f9:7f:12:ea:54:
cb:68:8d:38:ba:69:06:10:9b:3f:ad:a3:13:ac:f8:
f0:03:84:69:80:c2:07:b2:12:6b:7d:75:df:71:51:
ae:74:94:89:18:97:cc:b1:67:7a:a7:e5:79:df:be:
b4:a2:a5:14:0b:33:e7:d4:48:6d:e3:94:11:da:74:
03:dd:17:f2:9b:06:be:2c:04:82:99:5e:b6:7b:a1:
35:26:bc:12:e9:b8:12:30:de:49:77:3b:66:84:42:
45:e6:85:57:1f:a8:77:17:06:4c:43:cd:0c:0d:78:
75:ec:ea:4f:9a:6a:97:94:b4:50:a4:ec:9f:6c:13:
af:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D0:B4:0C:26:9F:6A:C9:5D:5D:E8:CE:44:D6:69:4E:B2:7E:0A:28
X509v3 Authority Key Identifier:
keyid:AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:cc:7a:1b:8f:c4:0b:1c:27:80:fd:39:db:bd:b6:a5:cd:6b:
1a:ae:47:71:91:59:ba:2b:43:b0:25:d8:d0:e1:17:83:1d:0c:
f6:c9:af:74:dd:8e:8d:ca:fc:8b:ad:cc:b2:d3:68:16:e3:f0:
d6:75:d5:82:ae:f0:f0:77:da:8b:16:53:b0:1f:16:e1:ad:ec:
0d:bf:36:40:c7:cf:ab:aa:44:f4:41:1f:70:2d:b4:85:8c:4f:
df:5e:05:01:67:ef:37:be:88:66:ce:09:84:d9:5b:6c:a8:e3:
1f:1c:68:5b:e6:92:4d:d3:1e:ae:76:e0:5d:2e:9a:f6:12:6c:
30:79:f8:04:3d:a3:dd:62:53:dd:f3:a3:62:2a:02:2c:56:70:
3c:b1:ee:b4:f8:01:50:6e:dc:d5:ca:a0:f7:04:ab:2f:52:80:
c5:c6:83:18:9e:dc:d0:de:3c:d9:6f:36:e4:98:04:5b:f5:f7:
48:77:a9:cc:1d:91:d1:a6:27:69:21:a7:a9:cb:ff:3a:d4:a0:
c3:41:a8:3a:a3:bf:9b:a7:2a:f8:a1:91:c4:29:0b:96:9a:e8:
f0:ef:2d:77:76:f0:61:a4:ae:48:76:13:1e:db:ab:25:4f:a6:
26:bd:3c:c7:82:d3:d9:e7:5d:81:bb:2d:a8:30:b4:19:76:ca:
80:ac:5a:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:04:16 2025 by rpki-client