Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft
File: qrHbDgCCCHbfogvsm3Gap5Wswd4.mft (raw, json)
Hash identifier: 1M4f4a47em0FgMLLs7F3qcgWNq+C6/zWlUHyTZjOEGM=
Subject key identifier: EF:A8:56:4E:61:41:B2:75:D3:34:C5:2F:8C:6B:ED:63:3B:E6:3B:88
Authority key identifier: AA:B1:DB:0E:00:82:08:76:DF:A2:0B:EC:9B:71:9A:A7:95:AC:C1:DE
Certificate issuer: /CN=aab1db0e00820876dfa20bec9b719aa795acc1de
Certificate serial: 019579EC20B93B9D719D1D464927591162F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qrHbDgCCCHbfogvsm3Gap5Wswd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft
Manifest number: 148E
Signing time: Sun 09 Mar 2025 08:01:12 +0000
Manifest this update: Sun 09 Mar 2025 08:01:12 +0000
Manifest next update: Mon 10 Mar 2025 08:01:12 +0000
Files and hashes: 1: qrHbDgCCCHbfogvsm3Gap5Wswd4.crl (hash: Aedx5Q/GHCSbX1Zfxn6pmgqMhkO839FFdXRVZJBoFNU=)
2: w4EgtXymNG4qdDGffeejqhzCwgQ.roa (hash: VmcnuEKWSTHxVX4tEucguGz0L6uvVm7W7xv8HWe4KjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qrHbDgCCCHbfogvsm3Gap5Wswd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:79:ec:20:b9:3b:9d:71:9d:1d:46:49:27:59:11:62:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aab1db0e00820876dfa20bec9b719aa795acc1de
Validity
Not Before: Mar 9 08:01:12 2025 GMT
Not After : Mar 10 08:01:12 2025 GMT
Subject: CN=efa8564e6141b275d334c52f8c6bed633be63b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:36:ba:c7:c2:eb:3f:22:80:a8:13:7f:2e:c9:
61:c5:be:3b:67:b2:85:3e:54:28:cc:d6:93:2a:4a:
fa:af:d8:df:da:5c:25:26:1b:c3:c5:4d:03:1c:79:
62:80:da:92:3c:08:c9:a0:0a:a4:ad:0c:9d:e4:ab:
d7:a6:ef:32:3c:ac:c2:e4:8c:ce:6a:e6:de:c5:cb:
6e:f1:ff:d0:6d:ee:ba:11:67:fc:54:23:25:05:8d:
3f:19:2a:55:18:27:3e:4d:72:48:f0:0b:d8:9b:a1:
26:85:6c:8a:ff:eb:7b:c7:64:6b:33:2a:46:44:71:
4e:51:1a:35:2c:20:be:80:a9:99:d2:7a:68:58:e1:
12:e8:45:64:fc:de:74:14:61:3f:85:26:9e:f4:32:
f5:2c:57:b9:bc:7e:ec:b5:90:f4:53:d6:c9:13:47:
14:2b:03:1b:db:22:74:51:87:33:34:a2:a8:8d:82:
8c:3b:c9:c0:4c:82:00:f7:99:01:b5:f6:18:aa:2a:
92:df:bb:37:48:18:8c:94:10:43:c0:55:de:5c:57:
0d:c5:dd:e0:dd:20:0a:03:b5:6f:17:80:8a:99:e4:
76:40:3e:ba:97:29:5b:35:2f:0f:93:c1:37:14:5f:
f5:66:67:88:a2:00:86:88:e3:56:fa:4a:de:45:bb:
4e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A8:56:4E:61:41:B2:75:D3:34:C5:2F:8C:6B:ED:63:3B:E6:3B:88
X509v3 Authority Key Identifier:
keyid:AA:B1:DB:0E:00:82:08:76:DF:A2:0B:EC:9B:71:9A:A7:95:AC:C1:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qrHbDgCCCHbfogvsm3Gap5Wswd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:23:3c:03:63:71:7c:e0:77:0f:b9:50:1b:31:52:98:20:0a:
a3:37:74:a8:4c:aa:44:84:61:a5:bd:e9:eb:9c:7f:b2:6b:18:
29:84:38:de:e8:0f:34:19:a4:87:8a:f4:8a:65:dc:07:c9:c8:
e0:13:cd:c2:05:82:fe:e0:c3:8f:36:67:bf:29:3f:5b:76:e2:
12:17:ad:10:c0:f1:fb:51:89:58:1a:74:de:11:12:53:4d:63:
63:ea:fd:12:04:76:b5:b3:a0:01:1b:b9:17:30:16:07:07:50:
f2:8f:12:c3:f9:1b:60:b1:aa:4f:52:d4:7a:80:14:6a:c7:02:
ac:d3:90:a8:db:27:98:51:00:de:f1:d5:cf:65:a6:b6:69:4d:
65:18:ea:92:b1:53:ba:f0:bf:ca:15:5f:b1:7d:af:34:67:cb:
77:55:a7:6c:2b:17:0d:9f:37:51:11:4f:07:26:0e:c6:47:68:
bc:06:7e:ae:51:c7:ab:54:4f:15:8d:4f:9c:f2:62:12:5e:2a:
28:5d:11:00:12:10:1c:f3:2a:bb:4d:2c:8b:08:ff:1e:80:7e:
f6:c4:35:45:a9:7d:76:48:09:af:79:ec:03:1b:7b:84:8a:5b:
08:c2:2e:ef:2e:4a:f7:86:ee:56:65:de:d4:a0:94:58:dd:ff:
ad:01:84:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 10:13:43 2025 by rpki-client