Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
File: QlbgyzjNYSXO4U5Jcii4SQodQOk.mft (raw, json)
Hash identifier: 71ijGBWol/bbCpIQTXEjy3BnhLUTAbCc4KBT+TUa4p0=
Subject key identifier: 8C:90:0F:2A:F7:0D:C3:C7:41:01:13:42:76:BB:61:C2:3D:AE:3C:ED
Authority key identifier: 42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
Certificate issuer: /CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Certificate serial: 01963EE6A6CE62135EE7D8A01BE941689D12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
Manifest number: 044E
Signing time: Wed 16 Apr 2025 14:00:25 +0000
Manifest this update: Wed 16 Apr 2025 14:00:25 +0000
Manifest next update: Thu 17 Apr 2025 14:00:25 +0000
Files and hashes: 1: QlbgyzjNYSXO4U5Jcii4SQodQOk.crl (hash: KQvRhUCgMgKNOGfp7sdG7rsrPTNJAIHzEZgEV4s1778=)
2: ekPIeumjzc0aQ-0qnlrmTiVhDJI.roa (hash: MI/BYhVlkTAuExjmOk0h+DG2/B/CqzwrvfdzA0OS10s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:e6:a6:ce:62:13:5e:e7:d8:a0:1b:e9:41:68:9d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Validity
Not Before: Apr 16 14:00:25 2025 GMT
Not After : Apr 17 14:00:25 2025 GMT
Subject: CN=8c900f2af70dc3c74101134276bb61c23dae3ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d1:66:f0:ce:04:7f:d4:02:0c:aa:a7:08:01:
eb:0f:85:c8:3c:77:44:b9:de:54:c8:fa:d6:00:27:
e0:18:0d:21:07:48:13:6c:9b:c8:e8:07:24:f8:ba:
4c:2d:f9:09:b8:74:93:2a:60:16:6c:ef:f6:c8:c2:
27:82:57:99:29:21:86:0d:3a:d4:75:b7:8a:46:57:
cb:66:a9:f3:ac:27:7b:be:bd:ff:20:86:cf:7a:fc:
45:f6:81:31:82:96:77:0a:68:e9:b9:aa:16:f3:08:
dd:a0:ff:06:84:e9:25:ff:60:3a:39:8b:f8:f3:e1:
86:0e:43:29:1f:b2:53:e3:10:b6:4f:4e:95:9e:ee:
4c:db:27:78:58:9f:4b:d0:70:c4:2e:6e:1c:00:8c:
fd:55:ff:15:cb:77:58:25:a3:30:76:18:bf:46:ff:
12:75:4b:b2:93:e9:8c:e1:69:c9:29:c5:7c:bf:53:
98:97:80:8c:73:ae:72:82:26:fc:5c:91:bc:ed:85:
8a:31:f9:87:76:08:c1:f0:7c:2d:3d:db:6d:88:d0:
a0:e7:34:20:a8:c5:09:47:54:0a:22:19:1c:86:d3:
26:5f:a2:f0:05:0c:56:ae:58:8e:02:48:fa:fb:be:
90:d5:48:c2:80:6f:12:5b:c8:8e:f7:15:02:4a:cf:
04:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:90:0F:2A:F7:0D:C3:C7:41:01:13:42:76:BB:61:C2:3D:AE:3C:ED
X509v3 Authority Key Identifier:
keyid:42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:e1:84:91:37:c9:37:d7:d3:e2:e3:7f:2b:24:3e:2b:e5:fb:
89:fb:fc:73:80:97:e3:67:98:9f:9c:38:05:f6:7d:ef:8b:30:
d9:25:a0:3e:9a:bc:47:f8:11:a1:00:64:7e:05:b8:d3:b3:b3:
2e:4d:b6:ee:1f:2f:c0:1e:5b:e7:65:e4:a8:f7:f3:e5:7c:2c:
2d:5e:dc:26:c9:5f:0e:d1:6a:69:96:ad:f2:24:34:21:3e:9c:
bf:47:b2:d5:61:dc:bc:a3:d9:56:3d:86:f7:e1:e1:83:f9:98:
31:b6:df:ee:0f:c9:cc:4b:62:48:2a:5c:27:63:e4:ea:70:04:
6f:fa:e6:dc:8a:62:7e:63:44:9b:64:ad:14:6c:a6:23:5a:e4:
ab:03:15:2a:7c:a0:b2:bd:c7:ad:d4:eb:f6:fe:03:c7:be:55:
1f:5a:cf:4d:40:bc:1e:c7:99:e7:41:1f:f5:2c:b2:41:e8:be:
ac:dc:04:e9:16:ed:61:96:47:21:62:db:6e:91:ed:76:af:0e:
b3:cb:66:91:77:91:5c:8a:74:4a:27:91:1c:88:8b:a9:ad:82:
80:ea:e2:83:8d:3d:29:f5:9a:b4:ef:6f:67:64:3a:d0:48:2b:
a2:92:1e:98:06:1c:d9:39:3e:70:18:80:78:f8:b1:8a:0e:25:
b9:b8:4b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:40:07 2025 by rpki-client