Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
File: QPwHKZcRrfoiLiexKLdtHZdFBYI.mft (raw, json)
Hash identifier: y5Q6EfNxVy64WxqGB4kATscAEtHr4gSCf5u1otcBgUM=
Subject key identifier: F0:6D:96:21:E0:A0:C4:94:F6:B1:61:31:D1:78:B9:AC:5B:AA:87:5C
Authority key identifier: 40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82
Certificate issuer: /CN=40fc07299711adfa222e27b128b76d1d97450582
Certificate serial: 019511D9660CE7D35D142506D731BF7DC11B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
Manifest number: 1104
Signing time: Mon 17 Feb 2025 03:00:14 +0000
Manifest this update: Mon 17 Feb 2025 03:00:14 +0000
Manifest next update: Tue 18 Feb 2025 03:00:14 +0000
Files and hashes: 1: 6KpfPRVUGyFsCkAEFBqf-wSXAyw.roa (hash: kWhiEuOzAfB/QvRqngqpda0Xfcej2KhLVFQbnAjy7tQ=)
2: QPwHKZcRrfoiLiexKLdtHZdFBYI.crl (hash: UGBCPPDx/wj0rixAhwtcXUmwAfGgijZixdFJQ0xTLKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:66:0c:e7:d3:5d:14:25:06:d7:31:bf:7d:c1:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40fc07299711adfa222e27b128b76d1d97450582
Validity
Not Before: Feb 17 03:00:14 2025 GMT
Not After : Feb 18 03:00:14 2025 GMT
Subject: CN=f06d9621e0a0c494f6b16131d178b9ac5baa875c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:28:58:7c:ac:4f:4c:6f:c8:f0:f2:4e:71:bc:
5c:00:0a:bc:b5:7f:f1:6b:a3:95:d3:f6:f5:81:88:
81:1b:e0:9b:a3:19:49:83:e5:df:19:fa:1e:d0:15:
99:45:5c:91:2c:b9:b8:b8:7f:9c:be:76:ec:1d:1a:
e5:fb:97:15:64:d5:38:19:82:b7:7d:52:bf:9f:09:
79:53:26:37:14:0f:4f:19:b1:90:04:fa:63:ee:1f:
f4:89:ab:77:25:15:a3:3c:54:4e:a2:8c:28:b1:dd:
22:87:23:73:9c:e4:e8:0e:0f:a4:a4:26:92:11:86:
5e:84:86:0d:6d:b1:78:3d:c8:81:d2:3a:f2:2c:eb:
50:fc:6e:53:cc:32:e8:8f:78:d3:12:71:5c:7d:c9:
97:58:fc:54:59:f7:bd:78:09:0a:37:6f:19:0c:2f:
3b:dc:ac:f1:49:9d:09:97:a3:2e:d0:80:e1:7d:cf:
62:37:83:38:cc:c8:56:d2:30:52:8e:fc:21:c0:f6:
c9:92:24:c7:d9:27:1c:aa:d2:fd:1e:da:18:ec:7f:
ac:92:bc:d7:06:b8:05:ef:8f:9e:68:ec:2c:42:e9:
0d:6d:55:2f:16:0c:ee:85:74:ba:6b:22:95:1c:c8:
8a:04:aa:25:e9:8a:3b:3b:31:f5:d7:8c:0b:1c:b0:
fb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:6D:96:21:E0:A0:C4:94:F6:B1:61:31:D1:78:B9:AC:5B:AA:87:5C
X509v3 Authority Key Identifier:
keyid:40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:8d:77:20:fe:25:da:e2:76:37:db:a4:c5:35:bf:5f:5d:e0:
e8:0f:cb:6d:38:6e:d8:59:79:6e:cc:8c:c1:37:30:de:0f:45:
e9:7f:64:c4:17:ac:8a:80:e1:50:05:63:6e:15:cd:3d:de:30:
c8:73:17:4d:72:15:9e:e4:5d:d5:f5:2e:80:9b:51:a4:aa:c8:
09:93:55:c9:a9:60:fd:5c:0f:38:7a:1e:ea:21:b9:4e:34:16:
d8:5b:92:51:59:64:4f:05:96:11:6a:e4:b0:b4:02:08:42:d1:
4e:84:d4:d9:b7:13:db:fd:ee:05:ff:ac:4a:90:c3:e3:2d:e6:
05:d3:b6:af:cb:11:d2:33:8d:d7:81:b4:1c:8b:14:c9:06:98:
c3:b8:8f:d1:07:1e:9e:fd:aa:83:f0:58:c5:0e:54:df:31:16:
a3:fc:ff:a2:81:60:0e:70:d2:82:4f:91:78:1a:d6:ee:f9:fb:
38:7c:0d:8c:53:c6:06:c7:74:9a:0c:ff:77:fd:2f:01:29:a7:
3d:3e:8c:13:69:27:c1:5d:55:bd:d0:1d:4b:5f:67:c4:8d:21:
a6:57:4f:7e:10:7a:22:21:57:ff:4f:08:00:21:e2:b6:c1:51:
45:3a:03:0e:73:23:20:e4:b2:63:b0:9e:ce:b1:b5:12:3f:36:
a1:5b:80:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:37 2025 by rpki-client