Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: 60sTgDnfcp4eGgTM53Jlm4LiNRAHSuW9kCO2crMwW0U=
Subject key identifier: A9:BC:8F:41:E6:FA:7E:49:B3:AA:BF:E7:B7:6F:33:84:82:6F:70:57
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 01964F6CACE672EBD829FF011853B00AC880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 0EE1
Signing time: Sat 19 Apr 2025 19:00:44 +0000
Manifest this update: Sat 19 Apr 2025 19:00:44 +0000
Manifest next update: Sun 20 Apr 2025 19:00:44 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: YEeF3MTHdiAEFv97MhixMoJbONZOeYFRz4mAcmzOgJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:ac:e6:72:eb:d8:29:ff:01:18:53:b0:0a:c8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Apr 19 19:00:44 2025 GMT
Not After : Apr 20 19:00:44 2025 GMT
Subject: CN=a9bc8f41e6fa7e49b3aabfe7b76f3384826f7057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:51:e7:51:5f:8e:f5:c9:89:7a:37:e7:a3:45:
70:17:e2:fb:4a:61:60:46:2a:82:53:f2:2e:14:40:
70:c9:74:23:34:56:d6:60:77:25:50:53:8f:8f:49:
91:9a:30:75:e5:c8:a4:a4:f9:5b:0a:6b:07:7c:4b:
a1:12:57:a8:64:b2:6a:61:95:0b:ae:da:93:d1:75:
d2:d4:55:6e:df:f8:d4:ec:70:16:b9:8c:0f:ed:59:
8a:7d:97:b3:c3:70:88:cd:8f:c1:bf:1c:ed:f2:b8:
7d:72:e9:8e:d4:fb:cc:0d:a6:77:6b:38:d5:9f:89:
38:cb:3c:6d:65:61:86:dd:c6:49:85:4c:48:8f:1c:
ae:a5:75:f7:68:02:e1:02:26:3c:70:db:f4:00:06:
4a:38:13:c0:ec:30:3d:15:8d:82:08:3b:6b:48:92:
52:9d:b3:57:2d:0d:ef:c5:c3:50:d1:d5:94:1e:19:
41:77:c7:ad:3e:11:d7:de:a3:d9:b6:80:0e:ae:13:
6d:49:6e:73:12:d5:bc:ec:48:5f:cc:67:89:8a:3e:
ba:c9:8d:b0:e4:d4:ee:d4:bf:7f:a3:ef:73:8e:dd:
b5:9d:f2:e1:c5:80:05:9a:ed:48:0c:f9:9d:c8:d1:
f7:df:dc:c0:26:b2:27:14:84:5a:a5:bd:39:c8:3f:
b4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:BC:8F:41:E6:FA:7E:49:B3:AA:BF:E7:B7:6F:33:84:82:6F:70:57
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:be:59:10:9b:54:c6:5f:e5:f6:a7:d8:2a:67:59:60:2d:f3:
11:d0:2d:01:e7:d3:96:f7:eb:da:73:27:da:80:63:8c:b5:17:
96:72:50:ce:8a:98:f3:ad:22:8a:43:19:ac:00:0d:f4:f8:33:
a3:22:6e:6f:fa:9b:66:a1:46:ab:8c:d8:96:3a:e8:1b:ee:60:
84:9b:f7:8a:d6:82:d1:07:28:e9:6c:b8:92:3a:38:a6:0f:b1:
eb:c0:79:db:66:ae:e0:7c:55:dc:fa:34:41:6f:1f:85:73:c0:
11:73:d3:2c:91:6c:bc:a7:ba:a2:cf:d0:bb:aa:94:2a:d9:f8:
70:9e:97:0a:60:ce:db:8f:79:10:50:e9:89:5a:40:3b:c0:e6:
d3:b7:73:cc:27:ed:e0:d1:e6:35:bb:7d:cd:e7:01:0e:c2:45:
67:59:63:97:8f:68:28:4f:8c:dc:84:f7:2b:78:52:87:33:f9:
c6:6b:30:3f:7f:fa:6a:b0:c0:3c:29:58:62:f4:d9:ee:9e:a8:
0e:98:43:3d:73:9d:c4:0d:75:49:e0:2e:f9:63:05:45:36:77:
c8:1e:67:04:94:2c:88:12:e0:30:bc:66:a2:63:43:46:22:ae:
93:ed:9a:d0:eb:85:65:18:91:6f:07:b2:56:32:92:c5:ac:e4:
00:06:09:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:00:55 2025 by rpki-client