Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: eeFgQIASAjhK2C833L6b+jO5F+gGtOmV0ybhlNUH87g=
Subject key identifier: 66:87:A2:49:17:6A:CD:D9:B1:13:D6:22:9D:99:5A:0F:F8:D6:F7:6A
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 019510C7DF9C67BC0FC6B04841921CCF228B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 0E3C
Signing time: Sun 16 Feb 2025 22:01:29 +0000
Manifest this update: Sun 16 Feb 2025 22:01:29 +0000
Manifest next update: Mon 17 Feb 2025 22:01:29 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: ZEOq9osjF3ftEi24MrnQtIz3a0l88OqvX0MUn/qy6UU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:df:9c:67:bc:0f:c6:b0:48:41:92:1c:cf:22:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Feb 16 22:01:29 2025 GMT
Not After : Feb 17 22:01:29 2025 GMT
Subject: CN=6687a249176acdd9b113d6229d995a0ff8d6f76a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:33:24:fd:f1:12:10:ab:cc:1e:7c:38:3d:54:
17:5d:f2:cd:50:f4:aa:0f:6a:90:f2:40:61:5e:44:
7b:79:4a:bc:74:2e:a0:cc:86:5f:fc:c8:22:99:2d:
59:05:0f:7b:ae:2e:8f:d4:02:0a:bd:20:b2:fe:11:
1e:98:53:b1:89:85:fa:2c:47:7d:33:23:98:ab:67:
8f:6d:08:7d:cb:3d:08:18:d4:28:e9:d8:37:25:c0:
2f:40:7b:8a:a8:96:4a:bb:67:3b:1a:20:42:cb:6e:
bb:b0:63:8a:05:e5:13:fb:76:d2:84:db:4e:69:7f:
f7:8e:70:a5:78:c5:35:54:af:22:7f:3e:d3:5f:5c:
0e:3e:b3:21:c6:06:0a:b6:3f:9d:ce:cc:fa:ba:51:
3d:0d:7e:19:1b:f9:28:ab:0a:a0:08:42:3d:ed:4a:
08:35:ef:51:14:5f:f0:dd:23:5b:83:b5:a7:89:34:
63:e0:ab:41:f2:77:c8:a3:6e:56:f8:03:f8:76:b6:
f8:57:fc:90:6a:17:65:22:6d:05:cf:98:30:d4:ae:
9e:cd:4f:4c:5c:e9:8f:e2:41:ec:7d:59:8b:60:e9:
1f:f2:2e:93:da:d6:ab:0c:c5:6e:ef:5e:26:0c:5c:
98:9f:df:63:07:26:6e:ac:59:21:55:ca:6c:97:62:
c9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:87:A2:49:17:6A:CD:D9:B1:13:D6:22:9D:99:5A:0F:F8:D6:F7:6A
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:b0:b4:d8:ed:2b:f1:8b:f5:bb:26:fc:05:eb:c5:fc:68:78:
66:f6:11:28:68:8c:95:9d:e8:bb:31:32:ea:59:0e:55:0d:a1:
5c:2d:da:ee:f9:3c:a4:c2:ed:12:63:50:d3:9b:9b:a6:b6:28:
a4:6f:11:a0:54:e5:2e:2c:ac:f5:9d:87:d6:7b:b5:8a:0e:e3:
7f:02:5f:42:7f:02:dc:68:4c:7c:08:32:8a:0c:07:6c:05:5b:
c5:56:ba:b0:28:91:ac:2c:58:d0:5f:48:c7:e0:d4:d6:b3:f2:
b8:78:3f:a9:dd:9e:10:27:02:47:b9:3b:41:e6:37:0f:b5:d3:
63:bf:77:ca:3a:c6:24:6b:d1:1c:dc:60:b7:7d:72:1c:e5:87:
a8:75:38:9e:f8:02:cd:30:8c:72:92:5a:ec:15:1d:31:2d:e7:
61:97:14:13:7b:b7:ed:67:83:88:be:cd:47:d6:76:fc:10:22:
19:40:01:33:62:1e:63:6b:a4:b5:b6:f0:68:aa:a6:18:80:5b:
11:fb:83:89:92:f9:f3:01:f2:14:6a:e7:52:2a:33:6b:a6:14:
11:b8:26:2a:7b:3b:cf:9a:28:37:06:45:a0:50:94:d4:81:79:
9c:ac:5e:71:fb:8b:2e:6c:9f:fe:1c:9b:02:df:5a:a8:95:8f:
f3:e9:4d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:56 2025 by rpki-client