Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: qkE9qYBwoyH/UcixpOWSQL4Dm0JZL0HwuWObbx3GEj8=
Subject key identifier: 34:3F:FC:21:5F:DA:75:9E:B2:A9:A5:E3:08:E6:9C:5F:93:84:4C:E0
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 0196579437ADCE6F8C1B94927460FF7F2666
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 14FD
Signing time: Mon 21 Apr 2025 09:00:53 +0000
Manifest this update: Mon 21 Apr 2025 09:00:53 +0000
Manifest next update: Tue 22 Apr 2025 09:00:53 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: TMqu4xyXHnxzV7q8IC2G4wyjv779APshGfGXM88eii0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 09:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:94:37:ad:ce:6f:8c:1b:94:92:74:60:ff:7f:26:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: Apr 21 09:00:53 2025 GMT
Not After : Apr 22 09:00:53 2025 GMT
Subject: CN=343ffc215fda759eb2a9a5e308e69c5f93844ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3d:d2:25:77:7a:81:a7:8d:bf:c2:41:e1:ad:
3b:64:66:20:2b:1c:95:f2:a7:85:8a:8a:5a:1c:35:
a2:61:df:be:29:56:92:46:d2:82:fd:b6:ef:cd:50:
5f:b8:60:f3:dd:16:ce:58:5a:8a:de:23:63:2b:29:
16:08:70:2e:73:c2:37:fb:18:41:8d:a1:24:25:cb:
d4:c0:46:ce:39:36:dc:11:e4:d9:80:c2:8e:b3:59:
6e:10:88:f7:ca:ef:e5:b9:07:72:de:8d:19:31:cb:
e6:f9:39:f7:ba:56:e5:3f:a7:55:ba:51:c1:61:0c:
ba:cb:07:78:91:f7:e4:48:fd:6d:d5:62:fe:f9:7c:
d2:0c:e9:0d:a4:ad:86:8d:9d:b1:9a:04:43:9e:68:
9e:c1:55:9c:15:ec:9a:a8:20:e1:26:17:4a:aa:f2:
b3:50:bf:27:b9:32:c8:e0:5e:d4:52:d3:08:e3:58:
0c:d9:6e:9c:49:80:f3:e3:a3:77:6a:47:d5:34:e2:
e4:c7:5a:c2:f6:03:2a:e4:8e:d5:f7:cb:be:b7:e4:
23:2d:04:97:b0:b0:eb:31:cb:d1:e1:fb:44:7c:83:
a1:d8:eb:71:6d:99:d4:cc:f8:7f:b4:6b:39:63:ee:
8b:0b:1c:3a:cb:d8:7c:93:6c:d7:0d:d5:a3:fe:9f:
1a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3F:FC:21:5F:DA:75:9E:B2:A9:A5:E3:08:E6:9C:5F:93:84:4C:E0
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:07:a2:43:88:53:d0:a3:75:c5:d0:ea:f8:ed:40:87:54:f1:
1b:3b:92:bc:90:cc:bb:9b:63:05:9c:14:cf:ff:e4:bf:d7:29:
c7:39:be:4b:cb:59:48:22:19:f3:98:b0:de:60:91:22:71:de:
63:1f:0f:f2:5d:20:66:ca:96:ca:e6:cc:ec:a9:88:30:d5:44:
f2:9f:e7:15:93:a5:c3:cb:5a:01:24:dd:0f:7b:8e:ab:56:39:
97:75:a5:10:62:ff:82:1b:0f:96:08:ac:20:7f:49:9e:65:d2:
0a:ed:74:2d:f1:aa:80:ac:da:0e:d0:cf:7c:d3:c5:66:a3:71:
d5:f1:e3:42:fa:79:64:11:40:89:98:98:ff:59:78:30:91:33:
32:dc:7c:d6:ae:06:ba:0f:f2:f6:46:1d:e3:bf:8b:1a:48:87:
e1:b0:d4:4e:70:f4:37:63:26:c1:60:84:bd:b1:a7:40:37:4f:
84:ee:b3:ac:95:c8:06:4b:c3:7b:f0:14:fc:1d:a1:b8:d9:7a:
3c:de:4e:b7:31:58:dc:63:46:53:17:44:a6:be:7a:a4:21:5e:
bf:ca:7a:78:dd:29:6d:46:d3:a4:6a:96:92:0a:ce:d7:e0:9c:
f1:38:15:61:b9:a4:fb:f4:0d:27:54:1f:57:40:7c:db:5b:65:
2f:d8:0d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:24:42 2025 by rpki-client