Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
File: QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft (raw, json)
Hash identifier: 5fxQDyQAumDaOKB7bQGhLKr5pFcNqhOfdrDd8kfQf+w=
Subject key identifier: 37:31:31:99:1C:D7:7B:C6:63:62:6B:26:35:64:33:83:DA:31:19:28
Authority key identifier: 41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E
Certificate issuer: /CN=4148cbad1748205b4f4334bba638c64c2b21fc0e
Certificate serial: 0196575CE57F38F34288FF2CCDADF4D3487F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
Manifest number: 0F2D
Signing time: Mon 21 Apr 2025 08:00:27 +0000
Manifest this update: Mon 21 Apr 2025 08:00:27 +0000
Manifest next update: Tue 22 Apr 2025 08:00:27 +0000
Files and hashes: 1: 4ylLEVDeXKrfF8Se5wkM9llLd1w.roa (hash: 4hQQfVDyFUxXBSnxIrSQDsLfslrlkzzZ+2tzn4mkErM=)
2: QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl (hash: M90VPzfVGzvZJjaCltuLjyGrjZsIQtJ6L0H+HqTwOQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:5c:e5:7f:38:f3:42:88:ff:2c:cd:ad:f4:d3:48:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4148cbad1748205b4f4334bba638c64c2b21fc0e
Validity
Not Before: Apr 21 08:00:27 2025 GMT
Not After : Apr 22 08:00:27 2025 GMT
Subject: CN=373131991cd77bc663626b2635643383da311928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5e:3e:98:52:a4:02:3b:8b:57:3c:76:a2:26:
ab:0e:e7:78:73:72:c6:54:57:62:dc:b8:8f:16:a0:
ba:fa:46:af:6c:e9:66:5a:1c:6e:d1:af:ba:2a:47:
cd:11:0b:62:eb:45:b3:33:65:16:1d:63:41:e8:f3:
9e:7e:48:13:61:a8:85:6b:88:7b:e6:2a:43:d5:fb:
96:ba:61:e6:ff:31:7b:5c:c4:76:f7:0d:14:70:ee:
fa:96:db:80:fc:61:58:a3:24:f8:a4:e7:0d:4c:c9:
d4:31:5f:22:92:66:29:77:d6:99:f5:d2:d3:6a:11:
06:de:f1:57:ee:7e:d8:56:eb:33:1c:fc:cf:86:11:
f3:96:d1:53:d5:ed:a3:06:c4:db:63:84:e5:a6:53:
d5:dd:c7:e6:14:d6:28:06:fc:cd:ed:cb:2d:48:ca:
0f:7f:c2:25:c0:f9:93:ff:44:10:80:1e:e1:cb:ee:
63:28:5f:39:5a:3b:ab:25:05:af:c4:ab:c8:07:ea:
c3:f0:fe:7d:26:0b:61:2a:88:8d:70:9d:51:50:56:
2d:0a:99:a1:33:b0:fe:ed:4a:5c:72:18:22:79:b1:
3e:75:2b:a2:d5:2b:b7:22:82:53:c3:71:fa:1a:83:
88:3c:3b:d0:60:7f:7e:ee:9f:41:76:2b:47:eb:48:
a4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:31:31:99:1C:D7:7B:C6:63:62:6B:26:35:64:33:83:DA:31:19:28
X509v3 Authority Key Identifier:
keyid:41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:42:2b:a7:9c:93:52:32:77:e2:70:04:08:31:3e:e4:e0:df:
39:11:99:75:60:28:f3:6c:b2:4d:78:54:8c:02:f4:40:fd:b9:
af:4f:02:2a:2e:1c:cd:ae:bb:4f:62:d5:3f:bb:8f:4d:95:e3:
c1:11:9e:cc:d6:15:d7:6f:2a:01:74:ef:dd:22:d6:4f:d0:b6:
63:86:06:8b:e9:59:5f:f5:61:6b:d8:d3:53:ea:3b:dc:fa:06:
63:7d:b5:c2:58:d3:e8:78:5b:34:bb:dd:21:77:8a:6b:b1:23:
d2:76:63:a4:72:22:5b:5b:80:9a:69:b8:d4:fc:a7:5d:49:b8:
a6:f2:98:2e:a6:23:ba:93:b1:03:f7:77:9e:1e:da:5a:3b:ea:
29:89:6b:74:81:88:39:a7:ed:5b:bf:57:62:9b:de:ae:88:a8:
ae:79:ff:87:08:55:82:dc:25:53:8c:f4:50:cf:31:bf:ca:36:
a3:8f:77:e9:cd:58:bd:96:f5:24:a8:2d:17:fa:a3:23:2b:38:
35:6e:d0:26:9f:1a:fc:24:fc:7e:6e:c2:92:c7:90:57:23:3b:
51:3d:bf:e3:79:79:dd:2f:3b:be:48:b4:d2:15:47:63:95:c7:
6a:7e:5d:41:4b:e7:e2:f8:83:f8:ea:a5:0a:c0:f7:d4:9d:b6:
85:00:5b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:54:37 2025 by rpki-client