Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
File: QGHbehW9JPvKFGzRLMcNQTnIW58.mft (raw, json)
Hash identifier: lwLf6JiNoHPtVfpBpnQ0Sxgh7sO7w4GvonFhQ0jHzp4=
Subject key identifier: 63:3B:05:31:F6:DE:DF:43:0E:3E:63:F8:B7:8C:6B:40:AD:D7:29:02
Authority key identifier: 40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
Certificate issuer: /CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Certificate serial: 01958BBB97677177E4EB1A8FEE9AE3222AB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
Manifest number: 1462
Signing time: Wed 12 Mar 2025 19:01:21 +0000
Manifest this update: Wed 12 Mar 2025 19:01:21 +0000
Manifest next update: Thu 13 Mar 2025 19:01:21 +0000
Files and hashes: 1: QGHbehW9JPvKFGzRLMcNQTnIW58.crl (hash: YWrSKOOmEsNuT7+EWR4wfpyHz1K6/zu8oKC6U2s3FLU=)
2: o-ZlaW1WgunU3TjJVwdOR6husz0.roa (hash: 4yZiG/NqXqcKJ1Bdf8yQPmHJloI/I/ZH5JktUOUh3mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:bb:97:67:71:77:e4:eb:1a:8f:ee:9a:e3:22:2a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Validity
Not Before: Mar 12 19:01:21 2025 GMT
Not After : Mar 13 19:01:21 2025 GMT
Subject: CN=633b0531f6dedf430e3e63f8b78c6b40add72902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e3:d2:c0:66:b8:3a:17:c4:0e:c0:71:7d:38:
d6:0f:a4:81:3a:4c:01:36:af:0f:d1:8a:f0:2f:a4:
aa:fb:07:fd:fc:96:6b:6a:8d:61:d8:e2:f3:13:0f:
a3:49:fa:b7:92:76:fa:8e:b5:b4:0b:d0:93:c7:8b:
f3:bc:e5:1a:13:c0:34:18:77:e7:9b:03:a3:fa:b0:
1e:f3:1a:39:35:0b:58:36:f6:0b:73:1d:ea:e3:b7:
ce:62:4a:ff:54:8b:56:92:32:0c:36:fe:ae:75:ef:
94:04:02:86:d0:06:61:94:17:ae:86:ff:25:31:7d:
a4:6c:94:d4:f9:ef:16:2a:d2:6e:59:8e:27:71:08:
c1:c5:71:db:f5:5a:05:02:b0:3e:57:c8:77:1f:bb:
85:0e:3f:05:b4:3d:42:bb:b7:e0:cf:28:05:ae:82:
51:c5:e6:8c:41:8b:c5:89:f6:38:55:b8:0e:d4:d6:
13:0b:91:88:73:09:9e:49:27:03:69:6b:ec:0c:33:
6e:1c:35:97:a6:cc:bf:6f:a4:9e:9e:2c:b6:29:c9:
40:de:a0:9c:2f:98:25:59:51:f9:12:9b:d4:ab:43:
66:e9:5a:f2:53:c6:4c:be:06:3d:78:38:d7:e2:3d:
94:f0:a2:ae:62:4f:3f:95:3c:a5:95:4b:12:61:35:
c9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3B:05:31:F6:DE:DF:43:0E:3E:63:F8:B7:8C:6B:40:AD:D7:29:02
X509v3 Authority Key Identifier:
keyid:40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:e4:ee:54:ab:3d:f0:7b:9a:65:1d:44:ad:7a:b2:7e:bd:b1:
27:91:2e:f7:77:ca:a0:d8:aa:54:0f:75:af:94:66:ad:55:0c:
4c:df:72:37:cf:b9:c6:eb:1e:ca:4b:d7:53:b8:55:be:d5:51:
cd:55:c4:30:8d:6b:e0:bb:e0:ef:5e:b4:50:1a:56:0a:51:9a:
ff:9a:50:9d:d4:b2:03:80:af:cc:34:4c:56:17:82:3f:17:7d:
ba:97:e2:e2:17:94:03:22:ad:4c:cb:27:24:8f:84:a5:27:07:
e9:3f:53:44:48:a4:db:b0:f9:02:41:df:b5:ec:40:f2:0c:dc:
e9:79:67:f6:b6:d0:5a:59:77:f9:54:cb:3a:6a:5d:09:85:e0:
ec:e8:4e:ea:e5:0c:e0:62:97:6e:8e:a5:a1:44:12:80:2b:db:
e6:a0:a7:7c:11:41:60:7c:8b:e0:0b:15:0f:a0:40:20:4f:64:
56:01:9c:5f:fb:5c:cf:05:88:af:be:4d:d8:1e:cb:80:93:a4:
ae:19:93:2a:02:9c:31:f4:61:51:ec:21:12:e9:b8:d3:1b:25:
69:7c:b9:60:7c:04:76:f6:99:77:58:c4:c6:ed:e6:2a:6e:78:
11:9e:c1:fc:56:af:81:8c:a6:d2:52:64:bd:5a:d0:b8:c3:b4:
14:6d:dc:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:34 2025 by rpki-client