Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: cCFI8qgQyR2pa3h/3L1jBIK9WaiQvD/6w2JzQuGVPNg=
Subject key identifier: 26:A3:13:98:D4:68:39:C2:6D:1C:3B:72:B6:E7:64:51:6F:6F:0F:EB
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 019659F0AE8CF7F2E00AC3661D0210968AF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 1490
Signing time: Mon 21 Apr 2025 20:01:07 +0000
Manifest this update: Mon 21 Apr 2025 20:01:07 +0000
Manifest next update: Tue 22 Apr 2025 20:01:07 +0000
Files and hashes: 1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: SH8SxOuUBFsRIpRX0Tflm59tQlYQL8AJXpw0Or3F/DI=)
2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:f0:ae:8c:f7:f2:e0:0a:c3:66:1d:02:10:96:8a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Apr 21 20:01:07 2025 GMT
Not After : Apr 22 20:01:07 2025 GMT
Subject: CN=26a31398d46839c26d1c3b72b6e764516f6f0feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e9:1f:3e:df:bb:d9:e6:df:57:9e:19:86:da:
a2:cb:19:57:fe:71:7b:a7:9a:f2:71:99:04:3f:16:
be:34:14:b1:26:33:69:b9:2b:4b:92:bd:ca:80:d2:
22:cf:8c:ab:c8:e7:04:db:ac:d0:b1:39:4e:55:00:
b3:f7:8c:13:bd:bc:bf:5e:c1:d1:a6:50:07:08:e6:
a0:20:96:eb:eb:0f:be:d5:d9:76:a0:6b:27:2e:77:
55:72:fb:b5:97:a4:29:85:73:ac:1c:48:e3:71:29:
4a:3a:d8:01:51:54:f5:26:a2:8e:6a:81:b7:6c:ef:
df:29:d3:55:f0:86:1e:ad:75:6b:48:79:f7:4b:b5:
33:8b:59:68:3a:78:f8:2e:29:06:16:58:d5:1f:62:
fa:7f:c5:ba:53:d0:2c:0b:f7:2f:8c:7f:26:f5:0f:
eb:04:ab:04:56:1b:c3:82:d9:48:cc:23:b4:0f:22:
31:7c:fb:65:a3:2c:0c:0f:4e:b6:78:cb:32:d5:72:
f6:ec:66:f3:cb:f8:02:65:a0:36:ab:c6:2b:af:b6:
d1:0c:2b:de:6d:a3:8c:21:d1:52:96:76:20:95:b9:
80:44:18:03:1c:b2:b7:ff:f6:95:21:2c:76:4a:7d:
36:d5:58:ea:06:70:36:ae:20:6f:f1:8b:01:79:f1:
63:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A3:13:98:D4:68:39:C2:6D:1C:3B:72:B6:E7:64:51:6F:6F:0F:EB
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:50:5f:14:db:ff:93:0a:11:ac:6d:f0:59:08:5c:41:37:86:
ea:a2:18:c4:d6:32:43:23:7d:35:0e:82:b7:3b:39:55:0e:d0:
dd:e2:41:91:2b:e3:8e:4e:cf:22:d0:a6:07:34:98:c4:b3:0c:
90:e5:d5:ff:d9:a9:59:a3:44:41:a1:6d:6c:96:d8:c9:a2:44:
e6:d3:40:4c:e1:a4:80:7d:15:27:96:9d:6d:b5:3b:52:8a:db:
55:d3:ca:e2:58:91:fa:f5:91:c3:66:9a:2e:80:4c:27:f6:33:
33:3f:31:86:1b:04:f2:5e:6d:98:f9:a8:76:cc:8a:5c:26:99:
93:08:9d:cf:2d:5d:4d:1b:9b:35:aa:72:42:21:b8:bc:29:ba:
4d:7f:14:f1:a6:f7:01:0d:7e:d8:40:cc:97:d2:ab:ba:9b:f7:
da:d4:63:2f:ee:af:6a:37:57:33:70:cd:3d:f8:bd:d7:bb:16:
ca:02:2a:7e:89:73:aa:e2:66:cd:fc:df:d9:17:60:36:49:15:
b0:1a:ea:2a:b7:ea:11:f5:40:a5:00:05:5a:66:99:89:d8:5d:
c0:4e:07:10:2b:ef:29:30:40:d5:83:17:dc:3f:db:2b:18:f9:
94:4a:ab:2f:05:37:7c:11:df:a4:1e:91:42:d8:90:89:fd:a8:
1b:48:86:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 05:12:16 2025 by rpki-client