Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
File: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft (raw, json)
Hash identifier: iBe5edkadKO6X9yNNSnMj3OfXG1nieQB2lUZtWZ+vrQ=
Subject key identifier: DE:E8:C0:1D:DA:C0:3A:E6:EA:3C:E6:AD:09:50:07:F0:26:EE:C1:CA
Authority key identifier: 43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
Certificate issuer: /CN=43d518d7307788fca3891878490e4f32d9aaf6af
Certificate serial: 019647E9C2B122AECF6F8AE140716E286DFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
Manifest number: 0F41
Signing time: Fri 18 Apr 2025 08:00:24 +0000
Manifest this update: Fri 18 Apr 2025 08:00:24 +0000
Manifest next update: Sat 19 Apr 2025 08:00:24 +0000
Files and hashes: 1: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl (hash: zCT4j9fozuIYU0hWfsPiOY1zkKIkZ2E1nxTH1IRfUxs=)
2: hOsUXVARCl8NqYdv3cI6OIcfqwU.roa (hash: w1gjvrKQRUt3hmiD9OYkOr05DsegCS6tRj5zStTTlPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:e9:c2:b1:22:ae:cf:6f:8a:e1:40:71:6e:28:6d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d518d7307788fca3891878490e4f32d9aaf6af
Validity
Not Before: Apr 18 08:00:24 2025 GMT
Not After : Apr 19 08:00:24 2025 GMT
Subject: CN=dee8c01ddac03ae6ea3ce6ad095007f026eec1ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:95:f8:46:18:5a:06:39:60:28:d3:62:2b:2a:
83:8b:da:fb:50:d0:ad:24:02:af:39:d4:eb:98:3a:
cd:84:04:4a:c4:a7:76:c2:4b:ff:22:44:1d:3e:dd:
69:dd:5b:3d:ed:01:44:60:23:df:db:f7:b9:1f:19:
31:ab:cb:0f:cc:a9:56:c8:50:d9:2b:4a:c0:e1:ff:
a2:21:c1:14:8b:cd:35:ff:d3:c2:58:9e:d5:6a:2c:
f6:f4:f7:43:cc:e9:06:3c:7f:d8:1f:e1:3c:61:b3:
f0:da:48:3f:a2:d0:3c:de:1f:47:ed:75:06:ec:c7:
38:4d:04:7a:a4:a8:ce:44:85:aa:5f:92:4d:0d:6e:
3c:39:20:67:41:c5:10:c1:e5:63:f9:ef:40:22:b7:
b2:9b:85:b5:2b:8b:bd:b2:d9:d6:ea:e5:e0:35:81:
85:54:b6:69:1c:4e:b4:71:0f:fc:34:8f:48:e1:7c:
aa:0f:cb:e2:a6:f2:1c:67:0d:1e:a5:b3:2e:96:d2:
a1:60:f7:9d:52:93:3f:c4:77:77:4f:d1:fc:c5:6d:
b0:e2:39:9b:a3:85:56:a8:f3:38:a4:8e:63:7c:b9:
a3:7d:40:d0:7e:44:8c:12:9b:14:63:f6:24:92:4c:
fe:6d:d7:23:c2:15:e2:6b:51:d5:ce:c0:2a:4d:e7:
61:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E8:C0:1D:DA:C0:3A:E6:EA:3C:E6:AD:09:50:07:F0:26:EE:C1:CA
X509v3 Authority Key Identifier:
keyid:43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:00:50:9f:7a:54:75:59:35:99:25:9f:c2:10:38:7e:81:7e:
3c:5d:e9:f3:80:38:2c:1b:6f:02:97:12:09:97:32:8f:7a:52:
1e:fb:17:25:9f:7d:83:86:d9:89:a4:db:1a:f9:e3:68:30:06:
16:37:0d:61:2c:f6:02:e2:36:18:6c:ff:90:2c:e2:32:db:a8:
59:99:44:9f:17:1c:fb:6b:22:c3:ad:de:d7:cf:48:6e:cb:24:
71:bb:2c:f7:a4:04:e7:07:52:9a:27:c4:4a:4b:c7:03:bb:76:
b2:5b:a2:19:8e:c3:71:5f:05:e6:cb:57:fe:57:88:bc:25:77:
d7:2c:f8:8a:69:f0:bd:32:d5:d7:23:82:c6:5b:21:d0:2d:c1:
be:93:20:99:0a:4b:5b:22:e6:69:70:02:be:8a:88:19:27:a4:
77:41:8f:3c:83:6d:71:f0:11:1e:73:39:b0:e3:91:05:dc:6b:
9a:8a:04:69:6f:af:f4:13:b4:26:d1:58:23:b2:39:e5:25:82:
d3:b4:11:38:1c:23:52:1e:df:57:e2:1a:dc:9e:84:bc:8a:c0:
c4:19:6e:16:22:11:42:c6:ed:00:78:d2:9f:22:fd:b5:1f:8b:
f8:8e:6c:4c:26:61:10:d6:ec:e4:23:0a:d5:5b:d3:e9:f9:b7:
02:72:5f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 13:44:40 2025 by rpki-client