Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: Dc7skFUSCaqPG/osI+OOpWlgy3PdUzfi2zB5eGKddzU=
Subject key identifier: F9:DF:0D:65:BE:54:DB:25:C2:3E:83:B6:BD:BE:5A:00:0D:99:39:DE
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 01958C611E428649725A91000DC470A9F22F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 0E7C
Signing time: Wed 12 Mar 2025 22:02:09 +0000
Manifest this update: Wed 12 Mar 2025 22:02:09 +0000
Manifest next update: Thu 13 Mar 2025 22:02:09 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: pHFs3E1JVFJ0OkuIxG83omNKMyNT01MhVfAMKkYiE78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:61:1e:42:86:49:72:5a:91:00:0d:c4:70:a9:f2:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Mar 12 22:02:09 2025 GMT
Not After : Mar 13 22:02:09 2025 GMT
Subject: CN=f9df0d65be54db25c23e83b6bdbe5a000d9939de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f1:e9:ad:20:91:c7:10:89:46:82:7f:9a:64:
5b:47:39:ed:89:57:0e:38:46:ad:82:1f:9e:b8:b0:
1a:28:d7:74:b6:d2:7d:96:60:25:24:d4:63:cb:20:
c9:ae:98:0b:a0:50:2f:f0:75:5f:da:14:92:87:4d:
06:d1:8b:25:7c:b7:8c:63:2d:c8:28:78:cc:71:80:
4e:91:ae:d7:9e:09:d8:38:d5:d3:fe:8d:65:00:95:
06:37:10:05:06:8f:74:ba:35:91:5c:c1:68:f7:86:
43:e3:63:eb:8e:39:b0:53:df:c2:00:2b:9c:0a:b7:
5a:1d:f6:85:0a:8a:4b:a1:47:5b:f7:73:75:37:c8:
15:5f:86:32:12:ce:c5:84:f3:48:4e:d3:18:1d:81:
bc:05:93:1d:69:e6:ec:c1:04:59:0d:cf:28:a0:be:
6a:d0:02:44:1e:e5:5a:a8:a6:5c:c0:36:1e:b1:b1:
7b:78:9b:59:63:14:8d:af:b0:b3:1d:90:4f:06:70:
3d:2a:69:4e:be:36:7f:65:95:2e:e3:49:c9:75:c2:
13:61:dd:d8:b2:c2:95:f8:46:e0:8b:be:18:f4:37:
1d:5e:66:fa:b5:5a:07:0a:f6:f5:85:d2:2e:dd:45:
d4:b8:de:fd:05:ad:30:df:fe:38:7c:c5:39:59:f6:
5a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DF:0D:65:BE:54:DB:25:C2:3E:83:B6:BD:BE:5A:00:0D:99:39:DE
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:b1:e4:f2:04:8e:11:1d:ec:a8:1d:fd:e0:97:aa:65:fa:fd:
fe:d6:36:e5:e4:33:87:dd:24:9c:c8:eb:87:fe:79:77:e5:e4:
82:7a:a8:fa:b3:03:f4:4d:19:8c:08:d8:06:9c:4b:0d:d4:1f:
d4:ec:e0:64:b4:2f:4c:3a:d4:19:82:a6:dc:0b:12:43:47:bc:
36:de:15:9a:87:04:c5:62:46:e9:ac:5f:05:3a:7c:a1:6c:b1:
30:cf:35:4a:ab:cb:80:e2:e9:c1:6a:85:e0:d3:82:11:84:49:
7e:a3:51:2f:33:98:e3:a3:6f:fc:da:14:03:61:c9:e1:79:2b:
2c:01:11:37:af:c7:21:6a:23:09:20:29:e7:6c:e5:2a:ed:10:
01:2f:be:1e:bd:b9:a4:b2:f8:17:92:ec:a4:30:3c:fa:bf:68:
12:ad:02:c6:0e:e2:af:d3:06:9f:68:d4:ad:f7:1a:b3:3a:0c:
5e:23:f9:bb:bb:db:3b:e7:06:5f:b1:91:0d:11:d4:02:6e:3b:
e5:76:b7:a6:f1:66:9c:4d:b9:4e:f9:70:40:1d:90:f0:5c:97:
b7:de:2f:fc:c4:56:22:b6:04:82:08:e5:74:02:e7:33:58:08:
72:1d:e4:8a:11:3d:81:e1:12:37:25:d5:d0:a3:6f:30:06:17:
7d:d0:b3:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:35 2025 by rpki-client