Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
File: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft (raw, json)
Hash identifier: Q6LL0Thtnuq7rjxiYcIEcP8LepemjgLRLSXdum4PK7s=
Subject key identifier: A5:D3:E3:7E:9B:6B:A9:98:1C:3A:D6:70:9E:67:B2:10:A1:46:59:6C
Authority key identifier: 42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
Certificate issuer: /CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Certificate serial: 0196526D83A92F407566E8AFB9EC010AEFAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 09:00:30 +0000
Manifest this update: Sun 20 Apr 2025 09:00:30 +0000
Manifest next update: Mon 21 Apr 2025 09:00:30 +0000
Files and hashes: 1: 3wDf96BAjCwHPGLFXHfr6FPj5tk.roa (hash: n76aMPDVHHg0+waIaYLD5Tllb242OUUWngTT/Znka38=)
2: Crd7C8SVck2OIDtSkQeAyuMLu6I.roa (hash: wscKj8/Aoswv3PHZoE2nGYXdRz4QSyUb5GTz6Q8fmgM=)
3: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl (hash: Y4BirVaUj5/yBHv/plPYtobEdshsM8XA7KQqo0pw304=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:83:a9:2f:40:75:66:e8:af:b9:ec:01:0a:ef:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Validity
Not Before: Apr 20 09:00:30 2025 GMT
Not After : Apr 21 09:00:30 2025 GMT
Subject: CN=a5d3e37e9b6ba9981c3ad6709e67b210a146596c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:da:2d:19:88:ba:92:52:0e:53:df:ea:61:66:
62:9a:e0:b5:42:2c:9c:a2:79:d0:0b:37:cf:21:c6:
5f:24:7a:4a:0b:2a:0d:ff:f7:36:1a:01:c0:e7:97:
c3:20:db:f3:4f:6c:de:2a:87:b7:26:e5:f1:b2:9a:
02:b5:53:7b:4d:ef:a5:b0:43:35:99:97:f6:e4:00:
03:27:ce:23:03:ef:d7:5a:7d:05:bc:bc:bb:46:31:
6e:de:63:0a:f0:7f:0e:64:4c:c3:40:08:80:35:60:
43:29:29:3a:6a:e5:ce:aa:2d:4f:5e:dc:02:aa:a6:
ef:5a:e9:b7:66:ae:c2:38:44:5a:b5:c3:7c:3e:80:
b5:55:a1:85:ee:91:94:55:a5:26:2d:45:b1:8f:e3:
9e:30:04:57:b3:fd:02:13:9a:50:7a:ed:e9:c1:fe:
db:86:ca:3f:4f:bf:70:a8:e5:10:5f:0c:df:da:23:
24:85:50:97:41:6f:cd:a2:c8:d1:1d:d4:c8:0b:44:
25:54:c2:c2:20:47:50:e4:e7:b0:21:dc:99:ff:9f:
be:16:ea:c9:c7:cc:45:3b:74:41:73:7a:66:fe:72:
1a:e6:cd:fc:e4:fd:60:39:ea:3a:8f:d3:bc:25:de:
da:17:5b:8a:0d:25:3c:88:73:6d:59:a7:1d:f2:9f:
a0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D3:E3:7E:9B:6B:A9:98:1C:3A:D6:70:9E:67:B2:10:A1:46:59:6C
X509v3 Authority Key Identifier:
keyid:42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:8a:11:78:7c:80:c0:a4:24:19:7c:a6:b7:5e:a1:a5:ba:b7:
79:49:c8:1f:58:1e:98:b3:0b:6b:c2:2f:d9:e2:db:06:db:d5:
c2:50:30:da:36:e8:9a:ef:75:46:ff:5f:b9:36:54:bb:1d:c9:
96:66:36:d5:9a:bd:73:38:0e:f9:b9:e0:71:25:2f:76:bc:9a:
a0:a8:99:88:4e:cb:6f:df:cd:00:a3:c1:81:11:c9:1d:6e:9e:
58:3a:94:6a:ab:80:22:e3:3b:b7:91:34:b0:f6:a5:89:c2:58:
db:a6:f7:ce:59:a5:09:18:9b:86:34:46:a9:f2:ea:78:f9:0b:
c4:52:6e:d1:c9:f2:0d:e0:bb:4b:e6:c9:8d:46:5d:f5:86:22:
8a:0a:4d:aa:c4:ed:8d:3b:be:e6:5c:b4:2a:47:b9:e7:f6:0f:
3f:80:23:88:7d:ad:bb:f2:be:5e:16:a9:b3:e1:ee:1f:c6:dc:
a6:96:7b:35:39:ac:8b:46:bb:28:1f:2f:64:c2:c5:14:eb:1a:
d0:8f:63:cf:94:3c:c8:bf:1c:ae:4e:66:df:b9:56:eb:42:41:
ca:bb:9e:e8:8b:17:13:2a:05:f6:81:3b:78:e1:5e:d3:79:2b:
bf:8c:e9:ad:9c:ef:82:04:1b:55:a6:d1:ed:7e:ed:1d:d7:d6:
a5:29:e9:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:17:23 2025 by rpki-client