Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: 4//1OY4/+ntSLr4ZL57t6DVpMj4Yu2VMlkTX1FnuMFY=
Subject key identifier: 56:3D:8B:EA:37:16:74:6C:F5:BC:4E:DB:01:92:BB:C6:BC:40:7D:F1
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 01963F8BA02D05EA2D2C6494C8950B6E6753
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 14F4
Signing time: Wed 16 Apr 2025 17:00:37 +0000
Manifest this update: Wed 16 Apr 2025 17:00:37 +0000
Manifest next update: Thu 17 Apr 2025 17:00:37 +0000
Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: OW1awBw5JUmzCMwj1Trk8MnEaHUTLOazjtZ4+bU6jyU=)
2: tBcUVtef6rZ0kSSzgGFNQ0aGmXk.roa (hash: axGcXX34atfoTeccVW4HcK4Aoj164U97BqMvxhWQBsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:8b:a0:2d:05:ea:2d:2c:64:94:c8:95:0b:6e:67:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Apr 16 17:00:37 2025 GMT
Not After : Apr 17 17:00:37 2025 GMT
Subject: CN=563d8bea3716746cf5bc4edb0192bbc6bc407df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:50:83:1b:12:c8:49:69:cb:9e:2a:3a:2f:c1:
de:18:f2:96:30:1f:85:35:9c:ca:b6:bd:d7:8f:e4:
a1:33:f8:2f:76:2d:e4:9d:5b:ff:cd:94:a1:cf:67:
7e:3d:cd:e9:78:c1:77:e4:92:d8:d2:ca:28:af:f9:
1b:e3:1f:81:75:50:88:b0:42:71:d2:66:b6:16:f3:
4b:5d:fa:b9:80:30:e0:3f:a4:88:c1:dc:a0:89:6c:
f7:5d:e3:ed:e9:d8:12:a5:71:48:fc:96:5e:88:a3:
f0:41:be:60:b7:2a:e7:f3:80:49:67:79:1a:c1:d1:
6c:11:bb:00:4c:8e:83:8e:b7:24:a0:a0:ad:c1:2c:
91:a3:af:2c:2f:ed:6a:50:ac:90:25:0a:b3:53:c9:
53:0c:ac:68:96:78:5b:f1:6a:60:f2:35:e6:33:b5:
75:01:07:fc:2b:f3:da:e0:d5:9f:1b:e8:ac:1c:b1:
b4:1f:2d:f1:f8:cb:4d:22:55:cc:cb:3e:93:f9:52:
68:9c:53:b3:90:a4:2d:4c:4e:f8:64:eb:45:d8:25:
f8:51:26:5e:d9:e0:46:f2:44:6d:60:25:8b:26:01:
5e:18:2f:62:b9:36:57:56:f2:d9:7d:22:62:bf:4e:
a0:eb:ad:82:4c:4a:48:fb:3a:36:b7:66:c0:22:f0:
4e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:3D:8B:EA:37:16:74:6C:F5:BC:4E:DB:01:92:BB:C6:BC:40:7D:F1
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:ed:e9:06:41:91:8a:3b:39:b6:44:21:8f:da:35:8b:c0:fe:
f8:7f:88:b4:05:9e:1a:40:dc:22:08:a3:7e:6f:0c:34:70:75:
b8:7e:b9:1a:3c:50:d8:f7:84:3a:12:c8:04:ec:16:56:6e:47:
09:b1:c9:66:03:ac:8c:22:5f:08:ab:aa:f2:67:0f:c5:e9:f6:
c2:fd:fc:d3:33:08:cd:09:ad:0a:91:1e:c5:51:cb:30:cc:0c:
d6:43:e3:8b:ac:b0:cc:5c:a6:dc:2a:2a:73:55:b0:8f:ac:7d:
b2:f8:cc:79:06:08:12:29:20:d5:b3:17:b1:fe:da:4e:63:2e:
6d:41:22:bb:2c:37:97:a2:24:c8:1b:03:a3:4f:d9:73:a1:a4:
4c:5c:2d:28:8a:1d:07:20:f5:af:3c:6d:df:0f:d4:96:29:50:
d1:29:f0:3b:8f:8b:0d:db:81:41:3c:57:f7:12:72:44:57:2f:
c2:1f:76:ea:13:08:eb:bd:18:f5:d7:c5:a1:40:aa:f1:0b:7d:
18:4b:10:b9:c4:d9:b7:f1:3b:30:42:c4:54:c4:54:c3:86:0b:
9b:b3:c6:de:86:9b:78:5a:dc:f6:31:b0:e8:e9:92:4c:07:54:
d2:57:be:30:c0:1c:0c:8d:8a:ae:96:0a:82:4f:d2:47:3b:5c:
d2:ea:2a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:38:05 2025 by rpki-client