Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json)
Hash identifier: 2ZXvAzWSfMC96SfR1+783mPAhTIbO1QtjI5P1KoE/0I=
Subject key identifier: C0:58:D5:3B:4B:07:1B:1E:CA:5F:3D:98:6A:46:5C:5A:D7:70:28:DD
Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e
Certificate serial: 01958B84AAA68A249FF1E2C2CAEC776AEFD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
Manifest number: 0364
Signing time: Wed 12 Mar 2025 18:01:22 +0000
Manifest this update: Wed 12 Mar 2025 18:01:22 +0000
Manifest next update: Thu 13 Mar 2025 18:01:22 +0000
Files and hashes: 1: KrtTh6gsfptfdAcGq3CmJjqfV2o.roa (hash: eRRAdGSdFwP7Zvo2rxHWeAe37W0cOjnKNlia+tVBb+M=)
2: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: ffnSwqnuo5ttED/Axzxyi9INKr6p0JnfPhlNk27s9Ow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:aa:a6:8a:24:9f:f1:e2:c2:ca:ec:77:6a:ef:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e
Validity
Not Before: Mar 12 18:01:22 2025 GMT
Not After : Mar 13 18:01:22 2025 GMT
Subject: CN=c058d53b4b071b1eca5f3d986a465c5ad77028dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1e:19:2a:52:de:84:ff:b0:3a:61:4e:4a:5e:
58:3b:3e:78:d5:83:c1:1a:dc:6f:82:6e:3a:73:73:
ed:75:1e:e6:7b:84:a6:14:25:6c:6a:28:76:03:f6:
a6:23:9c:8a:e6:70:43:20:66:87:f8:c1:4f:15:db:
b4:9f:1a:b8:77:60:af:ab:46:10:f7:c8:51:9d:c1:
23:ff:d1:be:e0:4d:92:2f:a6:81:c9:bb:e2:0a:5e:
dd:71:62:d1:43:58:34:2d:11:fa:34:b5:9a:ba:83:
4c:5e:a8:91:f8:b6:b6:b9:11:04:0e:e5:5d:5b:10:
42:8e:20:fb:06:f4:cf:01:7d:f5:94:28:9d:2c:bc:
e4:86:c7:df:2b:b8:65:66:05:53:fc:22:ce:18:b1:
26:b6:c0:e5:9b:18:c2:19:97:3b:f0:26:d4:df:c9:
af:c0:e0:76:b9:70:f9:4e:6d:ca:6e:ec:6d:16:7f:
2e:89:62:09:ff:b0:e9:45:b1:00:e2:07:01:3e:df:
76:33:de:11:f8:e8:8b:1c:50:17:32:46:bf:62:bc:
52:44:f7:d5:e1:1a:94:37:1e:a4:8f:9a:bc:36:bf:
1d:38:51:03:72:a7:f9:e4:ee:ab:7d:b9:ba:5a:dd:
4b:01:b3:c7:cc:08:f5:47:a6:71:20:fb:0a:80:59:
f4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:58:D5:3B:4B:07:1B:1E:CA:5F:3D:98:6A:46:5C:5A:D7:70:28:DD
X509v3 Authority Key Identifier:
keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:68:c1:e8:27:02:ab:25:9f:fe:44:e9:bd:d8:cb:c6:17:ab:
97:25:ed:3c:1f:63:af:1f:8b:23:1b:4f:c9:1a:a2:4c:e1:28:
86:5d:30:1b:24:a5:bb:89:de:81:a8:ad:b4:d6:14:95:55:44:
4c:47:a1:6c:38:23:36:a4:52:f3:7b:4c:79:62:77:2c:b0:17:
4d:d5:09:1a:bb:3d:aa:67:3e:df:41:eb:27:ef:9b:72:8b:c3:
4d:7a:b3:55:8b:70:b8:b4:31:5c:74:0d:33:ab:e2:dc:5c:67:
d8:14:33:d8:69:c0:7f:29:8b:13:bb:f4:89:a4:8f:b7:82:45:
27:cd:2b:28:33:9d:3f:d2:00:55:da:88:b3:0a:c1:f2:f2:8c:
ad:43:62:9c:b3:ec:94:8c:97:7f:01:03:b3:75:fe:65:b1:68:
c6:29:be:9b:c4:35:1c:0d:a5:1e:94:1e:e3:cf:a0:0f:53:4b:
71:a0:3b:13:61:3a:05:3d:8d:3e:61:7f:dd:ea:ad:e8:77:76:
98:dd:77:bf:46:58:e7:8b:28:0b:7f:5f:35:f8:9e:09:45:17:
5e:7f:75:16:a5:e4:6f:81:c5:42:3a:4d:cd:59:7d:18:89:7c:
86:78:77:7a:46:e7:1f:a8:2a:b5:56:cc:db:6d:88:7b:42:53:
26:66:44:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:19:57 2025 by rpki-client