Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json)
Hash identifier: Kbo9Hvs+4jtUpXBvl4teGu+fu7zWFelquchGgE9BJmU=
Subject key identifier: 7D:43:06:92:A3:58:92:E3:B1:89:F3:C4:28:88:25:DE:EE:C9:22:E0
Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa
Certificate serial: 01958EF36F0E18F8AC06582C5528D2E7ACD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
Manifest number: 1498
Signing time: Thu 13 Mar 2025 10:01:13 +0000
Manifest this update: Thu 13 Mar 2025 10:01:13 +0000
Manifest next update: Fri 14 Mar 2025 10:01:13 +0000
Files and hashes: 1: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: y3g1igIQKccA8GhjZnrYrLXmMV8sOIdrnabyJ2H6sEc=)
2: Y6QTaw-FjofB_OhkxIXlcm9P4-I.roa (hash: 4Yb+dRFpkkMPfeWzASwoM5NrRtcERhjg7Yl8jCZxXRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:6f:0e:18:f8:ac:06:58:2c:55:28:d2:e7:ac:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa
Validity
Not Before: Mar 13 10:01:13 2025 GMT
Not After : Mar 14 10:01:13 2025 GMT
Subject: CN=7d430692a35892e3b189f3c4288825deeec922e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a0:8c:69:4e:74:eb:65:37:7f:65:e1:b8:4b:
4c:a9:a6:10:ea:f0:67:41:34:a5:fc:12:5d:19:72:
84:29:8a:f3:7b:f6:54:c0:eb:87:4e:1c:bb:c9:eb:
81:16:f8:b9:f6:ed:70:95:9e:a7:a4:cb:22:ae:12:
74:f5:dc:0e:bf:61:b8:55:5d:04:36:46:e9:7b:ca:
a2:fd:41:e5:48:ac:56:dc:90:ac:d2:bb:5c:e1:00:
a1:8c:c3:f6:91:d9:ef:56:a8:d7:82:3c:66:be:15:
55:f8:b4:60:2b:16:36:69:8a:93:04:9f:78:08:54:
f2:0e:e6:42:a1:89:a5:e7:b2:71:6a:d5:95:69:15:
d8:01:d2:b1:bc:3a:2a:8b:3c:0d:38:6d:a7:1a:04:
5b:99:5e:a8:58:38:ca:2c:e2:93:bd:50:99:81:40:
34:2d:25:05:5f:c5:e2:be:c0:47:d6:fd:42:25:33:
99:39:0b:3f:6c:f1:7c:e2:a5:9e:8f:7e:3e:4f:33:
56:11:58:8f:de:30:8e:b1:10:0a:76:f2:08:e7:27:
d9:15:4c:a9:f2:c1:ca:ba:5e:17:07:a6:cc:15:ed:
b7:f9:e8:c5:64:a4:93:34:2a:42:bf:67:69:4a:f7:
31:2b:48:52:1b:b6:a8:89:61:c0:c6:e1:ec:fb:f0:
2f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:43:06:92:A3:58:92:E3:B1:89:F3:C4:28:88:25:DE:EE:C9:22:E0
X509v3 Authority Key Identifier:
keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:1f:be:ce:23:71:93:31:70:f5:09:42:11:b3:31:a7:8f:80:
7e:ee:a5:9e:b3:c0:c6:95:4b:ba:8b:72:b8:68:4e:bd:28:4c:
f1:84:01:d3:88:fd:98:dd:17:1b:4b:9b:65:44:42:08:ed:e1:
41:5b:b6:23:a1:64:71:59:33:ab:81:6a:23:59:66:15:e9:fb:
45:c8:f6:82:28:8c:42:01:f3:f0:a9:95:cc:18:0d:3c:b2:f5:
f7:51:55:21:96:07:0d:4e:fb:9c:54:78:9a:64:0d:fe:ea:e4:
79:cd:e5:39:f7:09:24:59:5c:be:00:15:87:4f:38:5b:19:1e:
9b:0f:10:39:00:5d:fc:a5:86:7d:1a:05:23:1a:9c:c8:fd:54:
57:21:48:65:5a:13:36:31:bb:b9:23:97:b2:37:19:85:45:68:
3f:ea:ac:3f:5c:79:42:f3:10:74:c8:da:06:30:04:6d:c7:b3:
bc:a6:02:61:39:20:15:ee:a6:77:9d:6b:e0:5f:d1:fe:c0:52:
68:9c:05:4e:dc:be:58:19:a8:a5:c0:47:44:ba:27:93:ad:13:
15:73:2d:cf:e6:3d:26:fc:db:a2:3f:e2:53:4e:50:d0:0c:ca:
bb:72:e5:69:37:5a:ab:05:a5:6e:ec:6c:f5:88:54:c1:fe:aa:
46:06:b1:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:37:50 2025 by rpki-client