Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
File: q9lqrojvmbTVDknsrpyuSPN4gfc.mft (raw, json)
Hash identifier: OutVS2k/R8JlTobahAsK+NOOELbZtcD5QoHdn/Ya564=
Subject key identifier: 64:F5:99:48:25:27:AA:FF:FD:87:56:C5:22:14:36:63:3D:04:B0:BF
Authority key identifier: AB:D9:6A:AE:88:EF:99:B4:D5:0E:49:EC:AE:9C:AE:48:F3:78:81:F7
Certificate issuer: /CN=abd96aae88ef99b4d50e49ecae9cae48f37881f7
Certificate serial: 019578A1F621787E94753D2A9B617F3F9F15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
Manifest number: DA
Signing time: Sun 09 Mar 2025 02:00:34 +0000
Manifest this update: Sun 09 Mar 2025 02:00:34 +0000
Manifest next update: Mon 10 Mar 2025 02:00:34 +0000
Files and hashes: 1: jOBsmTZZQR2oFpHPynuOSfcKlhQ.roa (hash: HS2UqrHXUPTUg04Ke/uHXIU8tldEPiGgxWt1zu5k5H0=)
2: q9lqrojvmbTVDknsrpyuSPN4gfc.crl (hash: 6JRvSWdDCm6OJH+R28QGMNoOKUzpqZ3DF9krN0whIJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:78:a1:f6:21:78:7e:94:75:3d:2a:9b:61:7f:3f:9f:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abd96aae88ef99b4d50e49ecae9cae48f37881f7
Validity
Not Before: Mar 9 02:00:34 2025 GMT
Not After : Mar 10 02:00:34 2025 GMT
Subject: CN=64f599482527aafffd8756c5221436633d04b0bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:53:b8:b0:a0:d6:a1:e8:21:39:17:64:48:a2:
10:f1:c8:68:d2:6e:2a:cc:31:dc:a2:24:be:08:f6:
88:f0:d7:78:2e:19:bb:63:77:81:5f:30:84:49:c1:
24:6a:cb:aa:31:95:6e:07:f6:cd:29:b0:9c:76:d4:
40:c4:8d:ae:50:02:9d:05:2d:3f:ad:c9:90:c9:78:
ad:81:34:a8:ec:55:b2:b9:a0:4e:58:5d:e9:b1:24:
75:4a:66:4a:79:01:e8:d0:64:7e:ae:ae:4e:8b:32:
47:5a:65:3e:41:55:c4:03:04:dd:8a:93:06:38:ad:
e6:14:f3:5c:24:db:7c:d7:58:b0:29:97:06:36:12:
5c:84:64:4b:23:54:13:b8:23:df:10:36:f0:21:2d:
36:16:70:49:ba:bf:b8:33:d0:4d:f4:16:de:b8:86:
33:03:ba:a7:c4:76:90:ea:b0:c5:85:14:0b:6d:fe:
37:b0:d7:bd:33:44:86:9b:8c:d2:26:56:3e:4d:a3:
1e:0c:e8:7b:36:e0:96:7a:19:e8:6c:d0:43:b2:41:
3f:ef:25:80:a0:23:51:cc:80:74:24:e4:15:02:3e:
ea:ce:02:ed:03:77:9d:29:a3:74:97:b4:63:18:c6:
aa:05:e1:e8:d0:9f:64:1c:73:fc:92:b0:80:69:53:
82:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F5:99:48:25:27:AA:FF:FD:87:56:C5:22:14:36:63:3D:04:B0:BF
X509v3 Authority Key Identifier:
keyid:AB:D9:6A:AE:88:EF:99:B4:D5:0E:49:EC:AE:9C:AE:48:F3:78:81:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:9d:13:b1:af:e3:47:e2:c4:fc:69:45:b0:a1:0d:fd:74:c6:
02:a8:9e:f9:83:e7:5e:32:cb:c2:f9:bb:ae:b7:9e:51:67:89:
b2:59:4c:d1:91:b3:3b:7f:01:00:e8:35:bc:1b:e3:40:52:03:
af:c6:70:e2:1c:70:95:88:5d:34:ec:9d:54:6d:d9:69:c5:b3:
e2:ed:b1:c5:04:af:35:74:7d:9f:71:a1:c2:01:54:de:45:9e:
57:a6:a9:0a:e3:15:a8:95:53:06:5a:38:ee:6b:dc:84:fb:54:
c6:2c:aa:01:3c:81:22:ef:09:37:ab:3e:78:34:1f:81:0a:bb:
50:ba:ce:d4:53:6f:c6:cf:3a:ae:74:d1:75:1c:55:0f:93:f0:
45:7e:ab:c2:5c:dc:9a:82:78:73:bf:fa:06:9b:17:5f:b7:d1:
ae:48:a9:f4:07:a5:0d:4d:87:fc:d2:c0:ea:86:ba:d6:d1:7d:
a7:19:90:99:db:96:22:db:be:44:a4:14:33:cb:bd:19:8c:59:
38:1d:65:51:45:83:fe:a0:d7:b8:ba:c0:43:01:56:9d:de:f0:
ad:20:50:24:50:5b:89:d4:99:14:3d:93:01:af:a3:4a:e6:b0:
d1:2a:58:5b:b8:dc:0a:04:ef:9f:db:73:6b:d2:6f:03:63:a0:
71:00:51:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 10:02:50 2025 by rpki-client