Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
File: qiEQS093IiTRGFaiTt-UZqhE0mw.mft (raw, json)
Hash identifier: lM7ic3VX1g3uQljxUGX/TQj0H3oQkIcZPeluIcaxSDY=
Subject key identifier: B1:1A:4E:DE:3B:CA:64:C7:E3:CB:FE:DD:FB:C4:F6:26:EE:FC:9D:22
Authority key identifier: AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
Certificate issuer: /CN=aa21104b4f772224d11856a24edf9466a844d26c
Certificate serial: 01958CCE4E1981A9E7CA5340B6EB02D7DEC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
Manifest number: 0890
Signing time: Thu 13 Mar 2025 00:01:25 +0000
Manifest this update: Thu 13 Mar 2025 00:01:25 +0000
Manifest next update: Fri 14 Mar 2025 00:01:25 +0000
Files and hashes: 1: C9Uc2-MMZLc56ntn-MTlSYOC9E8.roa (hash: 7Vks3Vs+iWpgcZieiS4e05rACvsjBFcyY3uhYDWshE0=)
2: qiEQS093IiTRGFaiTt-UZqhE0mw.crl (hash: cZiq7v+ciNvE7aVOZde7MCx70jprtrZGXjvgWpX6odw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:4e:19:81:a9:e7:ca:53:40:b6:eb:02:d7:de:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa21104b4f772224d11856a24edf9466a844d26c
Validity
Not Before: Mar 13 00:01:25 2025 GMT
Not After : Mar 14 00:01:25 2025 GMT
Subject: CN=b11a4ede3bca64c7e3cbfeddfbc4f626eefc9d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:26:70:5a:fc:96:16:7a:9b:03:24:69:8c:0e:
9f:16:3b:66:54:6a:ba:04:7f:e1:1d:48:f4:c3:7f:
13:47:ba:87:26:ab:7a:a2:cf:69:d6:b1:31:b6:a3:
af:da:52:64:11:86:08:00:6d:14:43:d2:11:a3:c6:
3f:83:af:20:11:48:3c:37:2a:60:23:00:9b:31:f3:
c8:c7:22:4d:2d:ce:d7:f2:fa:37:2c:53:98:cc:e8:
3b:d3:c4:ea:c5:51:3c:82:a1:9a:87:13:44:8c:84:
ee:b6:a4:8c:b3:a6:0a:6e:c1:f8:ea:c4:d7:82:04:
99:9a:91:7a:41:8f:53:36:0d:df:a6:e4:68:c4:59:
93:93:91:5c:93:8f:0f:bd:9c:79:b8:fe:c9:dc:31:
1e:fe:7b:56:22:eb:ac:4d:f6:7d:3d:f5:3f:d9:c4:
96:dc:1e:5a:9c:6c:eb:25:f8:eb:ef:05:ed:17:3e:
2a:a8:16:37:b4:46:7d:99:4f:d8:4d:5a:02:91:18:
16:39:36:8a:b8:c1:7d:83:f0:d9:86:94:09:a8:2e:
3b:3f:b0:de:c7:4e:85:39:d8:ee:01:2c:bb:30:8d:
38:e4:a5:96:82:12:7c:d8:36:30:21:cc:46:9e:8e:
4b:c5:88:fb:72:a3:76:db:4e:51:b6:e0:78:0a:e9:
0d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1A:4E:DE:3B:CA:64:C7:E3:CB:FE:DD:FB:C4:F6:26:EE:FC:9D:22
X509v3 Authority Key Identifier:
keyid:AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:64:ae:e5:d1:5f:bb:a4:e6:23:8d:5d:64:99:7c:28:af:a5:
82:2a:19:7a:e1:61:78:6f:6b:99:ad:db:37:e8:59:24:47:b3:
03:8c:04:2c:40:34:46:7f:0b:2c:60:19:9d:09:ad:bc:60:08:
06:02:ed:f4:39:a8:a3:01:d8:7b:95:42:e2:3b:2c:06:38:fd:
34:27:6e:2c:3e:6f:bd:76:43:79:be:b9:db:6d:04:05:e2:98:
c3:98:be:e2:35:28:6d:e6:e7:cd:5c:01:0a:c9:a6:1a:59:48:
3c:71:b8:f3:ee:d9:4d:77:20:4f:be:1d:92:68:ab:9b:45:cf:
02:11:6a:20:07:17:0d:8a:41:6c:28:12:34:35:a8:e6:fb:40:
cf:2c:a5:12:8c:6c:57:88:36:2c:bc:9c:08:22:a1:2b:a5:be:
5a:e5:aa:b3:99:fb:f7:b3:69:39:ca:63:ad:d9:56:76:98:37:
aa:36:a6:03:70:ff:f5:50:0a:ad:37:39:91:f2:56:f3:d9:ad:
93:7e:a4:bb:a8:83:8d:d5:0e:9a:b1:0b:a8:72:4f:a1:96:f1:
ce:13:4f:f5:41:ea:b1:ec:f0:47:be:81:58:c3:38:3f:c2:90:
69:c3:61:b2:72:c4:bc:bb:59:83:f8:bf:4e:d8:5c:c2:ba:70:
4a:67:8d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:52 2025 by rpki-client