Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
File: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft (raw, json)
Hash identifier: 8GVmTTFfK9IMx/DhU3W+QuXr6f3cquL6+7+YXX7+dKU=
Subject key identifier: 94:B4:12:39:90:8D:81:6E:87:17:5E:69:9C:86:6B:7B:93:80:DB:21
Authority key identifier: 40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
Certificate issuer: /CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Certificate serial: 0195116BAB295FCC0448B9A097B71D1D2F97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
Manifest number: 1452
Signing time: Mon 17 Feb 2025 01:00:23 +0000
Manifest this update: Mon 17 Feb 2025 01:00:23 +0000
Manifest next update: Tue 18 Feb 2025 01:00:23 +0000
Files and hashes: 1: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl (hash: jVcz4PWWqGqv/Vi/umVamGyFzNBHccAxfNU/sLGpGR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:ab:29:5f:cc:04:48:b9:a0:97:b7:1d:1d:2f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Validity
Not Before: Feb 17 01:00:23 2025 GMT
Not After : Feb 18 01:00:23 2025 GMT
Subject: CN=94b41239908d816e87175e699c866b7b9380db21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:a1:3d:c6:86:74:46:bb:03:d9:d3:2c:6a:
45:43:5f:3b:ed:13:bf:43:61:8c:6a:36:17:30:ac:
de:a3:af:32:b5:ea:37:58:0a:be:84:0d:0b:8f:9d:
1a:23:fd:10:0d:50:aa:7b:2d:5e:81:56:29:ac:12:
41:d6:31:84:a3:2b:3d:3c:b7:2c:cf:04:12:a7:85:
16:98:ae:e1:b6:08:23:46:1c:3f:71:24:49:3f:8f:
82:2b:9e:3a:ef:ea:f2:67:b7:91:f9:02:6e:e1:f1:
9a:d3:a5:2a:00:36:0d:15:1a:1d:83:22:e7:e7:39:
31:a2:de:58:02:c0:7b:e4:3c:25:b0:2d:44:0d:60:
ff:57:b8:b4:e8:05:b5:d7:4b:8b:c8:bd:ce:13:db:
c7:00:cb:1d:73:e5:7c:41:e7:c9:0c:6c:f2:10:55:
c8:7f:81:89:aa:ce:b9:03:48:7e:39:e2:05:40:ef:
43:ce:40:65:e6:11:18:3d:d8:03:66:ab:b5:cc:5a:
b3:76:1b:1a:14:e2:6a:8e:1e:f4:6e:70:d8:ed:a7:
25:28:4d:45:7e:0f:e4:5a:60:fd:4b:51:3b:cf:6c:
c7:68:bb:6e:99:fd:93:53:97:c6:f1:ec:aa:7c:a8:
0b:90:80:c1:93:92:49:0a:ce:8f:21:f6:75:2e:a8:
3d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B4:12:39:90:8D:81:6E:87:17:5E:69:9C:86:6B:7B:93:80:DB:21
X509v3 Authority Key Identifier:
keyid:40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:86:59:b2:41:5d:af:21:38:8c:33:b0:08:d4:d8:b9:aa:41:
de:a1:80:e8:62:22:03:9b:0d:4b:8c:1a:d5:fd:0b:3f:fc:7e:
36:c3:4e:04:29:8c:2d:88:cc:80:0e:53:e2:93:38:c1:4c:03:
28:60:ee:e2:bb:0d:8e:b2:35:5e:53:88:8c:43:15:81:0e:73:
ca:b1:ba:57:ee:cc:18:ab:f3:a4:04:f1:26:42:93:af:8e:12:
c1:d5:b3:5c:da:b8:b9:e6:0b:7e:54:d7:db:09:dd:81:df:c7:
f4:5a:53:7f:23:b2:f1:00:54:33:53:6d:a2:5f:29:42:53:9a:
be:a5:ba:76:b1:24:43:12:41:ac:01:be:e6:83:3c:0a:64:60:
dc:e4:ff:9d:05:40:1b:eb:9c:5d:21:29:b2:83:6e:3f:b0:fe:
d1:ce:e2:18:ca:c4:49:40:cd:58:cc:c5:70:5b:93:a2:1b:b7:
73:1c:01:40:7c:97:11:48:74:f0:dc:51:c2:1a:85:c1:57:d3:
92:a4:55:db:52:9c:8e:4e:0e:0a:69:fe:09:8a:ea:1a:60:31:
cb:e2:d3:58:86:9c:85:18:72:1c:4d:aa:e0:c7:2f:38:2e:8c:
b5:49:26:70:c3:a1:63:9e:b6:45:d2:1e:97:93:4d:c0:e4:9a:
64:1f:20:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:20 2025 by rpki-client