Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
File: QPwHKZcRrfoiLiexKLdtHZdFBYI.mft (raw, json)
Hash identifier: e5OA2CAkCemXdhUadZUg7fUDv4S2RnDa71+lgsgLgaM=
Subject key identifier: 8F:F0:3C:14:73:23:BA:36:09:47:7B:E4:6B:D1:5E:66:8C:5F:BB:0A
Authority key identifier: 40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82
Certificate issuer: /CN=40fc07299711adfa222e27b128b76d1d97450582
Certificate serial: 01958F6165CFBAA7488386895E8D0217122F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
Manifest number: 1145
Signing time: Thu 13 Mar 2025 12:01:19 +0000
Manifest this update: Thu 13 Mar 2025 12:01:19 +0000
Manifest next update: Fri 14 Mar 2025 12:01:19 +0000
Files and hashes: 1: 6KpfPRVUGyFsCkAEFBqf-wSXAyw.roa (hash: kWhiEuOzAfB/QvRqngqpda0Xfcej2KhLVFQbnAjy7tQ=)
2: QPwHKZcRrfoiLiexKLdtHZdFBYI.crl (hash: 2uDnK8UvxgEXgwEeBwtK458SKmVTlkdLGQSDAP5rdKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:61:65:cf:ba:a7:48:83:86:89:5e:8d:02:17:12:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40fc07299711adfa222e27b128b76d1d97450582
Validity
Not Before: Mar 13 12:01:19 2025 GMT
Not After : Mar 14 12:01:19 2025 GMT
Subject: CN=8ff03c147323ba3609477be46bd15e668c5fbb0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e4:fc:6a:75:0a:aa:f6:7a:1a:35:2d:94:4b:
b4:6d:0a:ae:e0:cf:e8:2d:d0:db:8c:d1:af:87:12:
5e:37:bc:b5:97:ca:21:de:3b:5f:2a:b0:41:e6:15:
f5:d1:92:b3:ae:8b:ce:5b:b4:74:d9:eb:99:cb:0e:
cc:cb:21:23:81:66:77:52:68:c1:cb:16:3b:69:0a:
49:21:8f:30:9f:f8:5d:e2:77:50:4d:49:94:7f:43:
67:60:cf:41:5b:62:0b:3f:8e:14:ca:5d:8e:ec:6f:
bf:7e:c4:b5:77:75:9e:45:83:de:72:9a:38:e0:5e:
ea:b3:85:4b:a9:fa:60:12:7c:6a:b1:72:e2:ab:dd:
b3:d9:70:94:24:75:58:a9:13:93:e0:fd:e3:8b:04:
b5:b0:f0:ea:25:47:0f:b0:6d:fd:60:94:08:6c:d8:
c8:da:4e:d7:c4:83:2c:91:e5:a8:48:f3:7d:04:04:
07:87:78:fc:7c:e6:42:6a:a4:8d:2d:3d:e1:9f:86:
83:9d:95:1b:53:94:af:67:16:50:fc:8d:47:55:7f:
ce:02:db:31:52:b2:26:45:69:85:85:b1:cf:c9:a6:
42:62:e5:a6:86:67:32:85:94:68:cf:aa:72:a7:9f:
91:09:3c:10:7c:4e:ca:3a:e5:a1:e6:cd:6d:8e:37:
54:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F0:3C:14:73:23:BA:36:09:47:7B:E4:6B:D1:5E:66:8C:5F:BB:0A
X509v3 Authority Key Identifier:
keyid:40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:d9:63:d0:45:77:d8:30:db:b0:8a:00:b6:87:b7:96:ce:09:
00:03:6a:76:6a:c8:88:b6:2f:a4:0f:a5:40:f9:b9:32:49:15:
91:b4:00:36:07:ea:3a:71:c7:ca:b5:7c:d2:fe:aa:42:d9:f2:
dc:36:79:02:4f:f3:6d:6f:49:ab:30:27:5a:47:fa:e4:5a:42:
e2:f5:80:f3:b6:d8:6b:08:e2:52:84:05:89:97:63:ca:eb:08:
4c:d8:2d:79:83:d4:93:7e:08:9f:83:3b:96:13:02:a4:03:9b:
04:e6:d3:ea:4d:71:18:33:68:57:f9:4e:5a:1c:a3:65:53:3f:
50:83:6c:8d:86:a7:29:c2:f0:85:89:65:bc:70:e4:d3:78:fd:
c9:7e:50:44:26:36:73:d8:63:ac:eb:12:ae:10:34:95:26:03:
11:93:e2:4e:91:8d:d0:66:5b:76:52:59:b0:29:ec:a3:50:37:
5a:b6:70:de:d5:2b:2b:15:6d:2b:c9:f2:1b:13:08:60:7e:60:
40:19:8e:de:0d:11:f2:76:48:c7:e3:bb:b8:08:d2:b0:58:4d:
e3:1d:7f:fe:8e:bf:93:5a:d6:0c:fb:7e:87:eb:08:93:14:29:
d1:d3:57:e9:c8:49:b9:34:58:c4:3a:5a:70:57:a2:cb:8b:6c:
e9:d8:f2:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:09:09 2025 by rpki-client