Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
File: qHxnPzWntwWmtCTTORT6OS07li4.mft (raw, json)
Hash identifier: Q8nmMhqSs0x0sO9Ky2R72z9zLtTUoVBLN7B+DomUkco=
Subject key identifier: 89:68:87:B3:83:50:2C:B8:58:7F:9A:41:80:ED:81:3D:5A:4D:27:BD
Authority key identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
Certificate issuer: /CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Certificate serial: 019640304479B4D7A5C01D2F159AEFBE2720
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
Manifest number: 076E
Signing time: Wed 16 Apr 2025 20:00:27 +0000
Manifest this update: Wed 16 Apr 2025 20:00:27 +0000
Manifest next update: Thu 17 Apr 2025 20:00:27 +0000
Files and hashes: 1: Eax-YG047Te5n0m45RUjhbrR1oI.roa (hash: iDlk1T+vVuMTMOmIBdx2Kl0rk1EldiQCxibfcQYd5i0=)
2: qHxnPzWntwWmtCTTORT6OS07li4.crl (hash: aRirJHgS+sl4aAtLw5ibSlKgytq1PARcV7sq51J7yPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:30:44:79:b4:d7:a5:c0:1d:2f:15:9a:ef:be:27:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Validity
Not Before: Apr 16 20:00:27 2025 GMT
Not After : Apr 17 20:00:27 2025 GMT
Subject: CN=896887b383502cb8587f9a4180ed813d5a4d27bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:39:20:57:f7:f2:4a:7d:9b:40:07:70:58:be:
8c:c1:a4:ab:d2:5f:b8:82:c7:e5:17:cb:77:3e:26:
35:a4:9a:36:8a:9b:dc:ef:d4:18:43:62:a0:9f:84:
95:b8:2f:29:ef:b5:ab:af:d6:17:d0:2e:50:82:60:
76:73:7e:4c:aa:eb:0a:2c:5a:bf:15:cc:46:e6:83:
47:5a:cf:6d:ff:d1:21:60:d3:07:6a:f6:52:69:65:
e6:bf:58:2c:63:b6:df:1d:75:66:15:9d:e3:0c:20:
dd:27:37:c9:92:0b:35:41:e6:ff:a7:49:45:a2:51:
d3:ec:d5:5a:90:02:a3:07:73:1e:c3:97:00:f1:38:
fe:6d:3f:44:4f:fd:b9:58:fb:a5:47:00:f2:41:76:
ec:70:5b:5b:5c:c4:cf:8d:96:22:62:31:5e:ff:8b:
73:55:5c:87:df:3d:2f:1d:c5:b3:8f:d9:8d:c8:cf:
fb:21:98:fd:c5:dc:9e:65:25:87:34:95:36:08:29:
7a:bd:7c:b7:87:99:79:62:31:ac:10:55:47:55:d2:
40:c5:54:c5:e8:73:20:e0:66:a7:17:a5:27:f4:63:
d0:33:57:47:cc:34:d8:6f:75:38:40:04:b8:84:f2:
47:95:a1:a6:2e:6a:50:2a:91:83:1a:df:11:21:97:
70:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:68:87:B3:83:50:2C:B8:58:7F:9A:41:80:ED:81:3D:5A:4D:27:BD
X509v3 Authority Key Identifier:
keyid:A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:74:87:f1:1c:c0:20:50:a4:41:9f:93:e1:e3:41:fd:ce:e0:
8e:61:fa:5a:ac:ce:e0:05:f8:16:72:24:b6:6c:59:f7:d9:24:
55:62:8d:eb:fa:1f:e8:b9:a8:4e:05:40:c1:57:95:ac:49:93:
f2:0c:f7:8c:7e:0e:92:5d:a3:db:4f:a6:7d:0c:53:d2:4c:ef:
63:6e:53:50:24:37:d4:b9:08:1a:01:9f:7e:6e:46:c2:0f:09:
f5:5f:1e:1e:ca:86:9a:d8:bc:a0:a8:49:7d:e3:d5:14:40:5e:
cc:5c:ea:bb:32:61:7a:c2:26:ea:65:5a:bc:58:34:d9:7d:23:
a1:c9:d0:89:8e:dc:c1:68:e4:c1:dd:df:4f:6c:e8:4a:be:f7:
f7:6e:48:d7:8f:a4:61:7f:90:a7:60:4c:5e:d3:f6:db:fd:ac:
4d:93:fe:e4:f8:91:8b:f3:43:22:a3:61:e0:47:b1:ee:36:fd:
84:6f:76:cb:1c:08:5a:aa:a7:65:76:dd:08:e0:a6:ba:1b:c0:
a2:22:ef:13:2c:65:ae:ac:11:67:a4:bb:58:d1:96:c5:70:07:
96:9b:5e:0d:9b:40:6e:78:20:ae:e1:ff:5a:d9:b7:21:d1:0d:
92:14:6f:57:e9:fa:20:23:42:34:e9:eb:37:c3:65:58:a2:68:
2e:e8:9f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:00:23 2025 by rpki-client