Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft
File: QZYjDljezAy8-xX1aqZN7dHzifU.mft (raw, json)
Hash identifier: O9E07px+BuQ5aIWsdYbR3PS5WlGiPkdqAsg2NAuYSsg=
Subject key identifier: DF:11:CB:37:98:1C:85:96:97:CD:96:4F:E5:32:37:1A:EB:BA:C3:99
Authority key identifier: 41:96:23:0E:58:DE:CC:0C:BC:FB:15:F5:6A:A6:4D:ED:D1:F3:89:F5
Certificate issuer: /CN=4196230e58decc0cbcfb15f56aa64dedd1f389f5
Certificate serial: 01962CE1864CC712AE93737E1C6D07A7E3CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft
Manifest number: 0DAB
Signing time: Sun 13 Apr 2025 02:01:39 +0000
Manifest this update: Sun 13 Apr 2025 02:01:39 +0000
Manifest next update: Mon 14 Apr 2025 02:01:39 +0000
Files and hashes: 1: 3MDGg1OHtAL-geuqk_TgrHeNJds.roa (hash: UTv0UG9oxSEa8ZKyczNWu3GLgSXbEFX86w4PXZf/pcw=)
2: QZYjDljezAy8-xX1aqZN7dHzifU.crl (hash: t7Knw6I4kYcUiuGGVScvgIqwp9RJ6Cj2pfF5dDWn4gE=)
3: YXNgqkH32mHlbxjAP4XMYGxuX-A.roa (hash: U+xr/pCSHTkJQcJTemkszlIrTDWL9g14UMPWkZKLV+k=)
4: d3N4PsuvCl1rvX4ossRl_Xc4jsA.roa (hash: eCiVHw72+bTZlv8fotK++2o6VMWQ+UX2AuVuNcdkIqk=)
5: iXw_41SDwVWtAf5ihJuQUw9Lk8I.roa (hash: IeaHE4eJJAlQPpX43/jtDGK9a0UQu+G72Lz6Qc9LhBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2c:e1:86:4c:c7:12:ae:93:73:7e:1c:6d:07:a7:e3:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4196230e58decc0cbcfb15f56aa64dedd1f389f5
Validity
Not Before: Apr 13 02:01:39 2025 GMT
Not After : Apr 14 02:01:39 2025 GMT
Subject: CN=df11cb37981c859697cd964fe532371aebbac399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ba:c0:3d:aa:29:91:d9:f6:a0:b0:1e:a7:d2:
0a:f1:e1:4f:30:c0:3a:e3:89:80:3f:69:99:33:92:
d0:7c:34:32:22:c3:6c:f2:16:04:0d:40:e3:df:6c:
93:84:98:98:6b:22:71:0d:b6:ea:25:bd:48:57:37:
87:85:c0:1c:ed:02:dc:1c:6e:98:aa:22:21:ff:d5:
4b:61:dd:8c:f7:28:87:c5:6e:7c:2c:b3:b3:a9:f8:
93:a2:24:b5:77:6d:17:a3:8e:49:e7:0c:b6:a9:3f:
10:c8:7d:a0:da:7b:1b:57:d1:55:c8:b6:07:59:1e:
ea:84:2e:c2:69:63:6b:0c:67:6f:9a:f2:3c:84:7c:
41:95:9d:da:06:f2:39:09:5c:f8:bd:7a:57:19:18:
6f:7d:ea:e9:0b:a8:50:9f:0f:1d:ef:4f:5b:7c:f7:
4a:73:cc:94:ab:69:10:f6:0f:05:21:70:af:4c:5d:
b7:17:82:4d:31:1f:17:ee:63:80:f5:5d:bc:bc:5f:
fd:1f:12:6e:58:b6:58:5f:82:7b:d9:3a:60:95:54:
ee:d6:80:bf:3e:70:f1:07:fd:ca:46:88:5a:36:f2:
e4:f1:2b:e3:e2:86:0c:52:da:e2:7f:ee:20:10:87:
2f:9e:56:1e:a8:50:90:2b:00:9f:5a:4a:a7:26:c0:
93:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:11:CB:37:98:1C:85:96:97:CD:96:4F:E5:32:37:1A:EB:BA:C3:99
X509v3 Authority Key Identifier:
keyid:41:96:23:0E:58:DE:CC:0C:BC:FB:15:F5:6A:A6:4D:ED:D1:F3:89:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:43:83:38:ca:6c:a6:62:c0:0d:d5:bc:21:7f:20:91:c3:f2:
4f:90:a2:e6:ce:ae:e7:60:69:e3:46:5d:34:eb:f1:03:fb:98:
54:9f:69:51:ac:3c:9c:1a:71:64:7e:46:ed:e3:9c:45:32:c5:
06:af:60:9f:66:c0:aa:5d:48:38:48:cf:26:5b:60:da:8d:1f:
48:c4:84:48:e8:34:92:97:aa:c4:03:d7:d1:96:13:57:4d:f1:
16:b2:97:35:81:09:d8:a8:c6:00:97:d1:66:02:4d:7f:81:9a:
7e:a3:25:91:a2:57:38:d5:1f:45:bf:c7:5d:b0:b1:83:f1:11:
b1:4e:e6:69:7c:3f:bb:bb:30:e2:b0:e5:da:a5:b3:ea:c0:be:
32:66:6d:a3:72:42:e8:e8:8c:0d:de:ef:ea:ee:2f:71:69:55:
c0:d1:0c:40:f1:e5:4d:77:14:f9:79:25:72:0b:9e:b7:18:da:
ad:49:54:5b:90:c1:7b:40:7c:f9:a5:f5:24:05:ac:f9:4a:37:
62:ed:17:bf:82:7f:4d:24:aa:d5:09:c3:e6:d5:ff:76:7a:52:
1e:d2:a2:97:cf:63:07:3f:a3:31:35:ce:e0:c5:5f:17:15:55:
31:d7:3f:a2:97:50:a6:13:85:0e:14:ee:51:56:73:97:3f:c8:
ed:c9:ac:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 09:09:38 2025 by rpki-client