Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: XDXswedBl72FaZW2Mqn2w5Xwa11h4D9fJLLDVVnmbj8=
Subject key identifier: 30:F7:FE:4B:58:15:9F:8E:CD:C8:B4:AE:31:77:FA:2D:D1:E9:FB:65
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 01965B39CA5868BB6CF1918E7A3B30D63180
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 1503
Signing time: Tue 22 Apr 2025 02:00:36 +0000
Manifest this update: Tue 22 Apr 2025 02:00:36 +0000
Manifest next update: Wed 23 Apr 2025 02:00:36 +0000
Files and hashes: 1: Diq6O5ga68_B8MEC7x3IDqn6lbc.roa (hash: r+Ep1MU6KZ691K575NCgrIa7fSiICzMjhV/0OlU71vU=)
2: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: chO3zA2yz7QJxgzHG0XuvO9fuztYPFY5k7OZZTTzUlM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:39:ca:58:68:bb:6c:f1:91:8e:7a:3b:30:d6:31:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Apr 22 02:00:36 2025 GMT
Not After : Apr 23 02:00:36 2025 GMT
Subject: CN=30f7fe4b58159f8ecdc8b4ae3177fa2dd1e9fb65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:90:0f:bd:81:7c:5e:f6:ce:63:9c:63:aa:b8:
66:86:94:02:10:3a:8b:41:42:e1:52:b3:28:ba:cb:
a6:e2:47:22:df:73:20:a0:71:57:38:1f:6a:b1:9a:
8d:99:24:45:98:ff:6d:f9:49:93:6e:b4:3f:ff:d7:
26:5c:90:6c:bc:20:27:4a:19:ad:14:97:e8:07:bb:
eb:94:e7:f4:53:f2:30:b5:df:37:ba:85:9f:3c:41:
d0:ee:34:80:6a:7d:28:66:ec:9f:0a:56:e5:c2:58:
ad:79:bf:dc:5b:15:e8:ce:71:ac:fd:3e:47:d5:86:
88:59:5e:1d:65:7d:13:38:24:4e:6e:13:eb:18:90:
f8:91:5a:d8:58:9d:b3:fc:80:ad:02:02:bb:a8:28:
9d:5e:58:f4:e3:9c:d9:1a:91:88:ac:77:41:ed:47:
a8:ed:bf:bc:bf:41:36:b8:06:54:82:8b:7c:85:4a:
b0:c8:24:ee:c3:5d:4d:6d:d4:32:1e:2e:4c:d8:3a:
eb:ae:b6:b9:0c:29:72:19:f7:41:3c:2a:ab:78:67:
ae:ce:ac:81:f2:88:2d:b2:30:52:01:b6:65:10:00:
ec:2a:9b:c8:33:a8:33:bb:75:40:9e:0c:00:6c:f5:
4d:3f:f7:5b:74:50:32:23:5c:f9:f1:33:ec:4f:75:
06:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F7:FE:4B:58:15:9F:8E:CD:C8:B4:AE:31:77:FA:2D:D1:E9:FB:65
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:ae:f0:bf:5d:bc:8c:85:2c:e0:34:ab:3a:4d:7f:18:75:d3:
0c:f6:e4:bc:99:33:87:b0:a9:8a:77:4b:6e:24:d3:58:05:b7:
43:d7:91:91:07:89:8d:fa:40:e5:c2:d7:0b:5b:0e:48:2a:a3:
21:a0:a3:a3:a1:0b:65:d1:e4:5d:2c:e6:d7:b8:d4:d2:2b:74:
53:45:46:d5:db:ab:3c:d4:72:ae:f2:ce:6e:dc:b5:c2:c6:93:
fd:d3:3a:e4:dd:a3:a1:dc:80:3f:ae:03:57:00:5a:ad:b0:ac:
21:da:1e:50:ba:4e:f6:5f:bc:45:97:23:1f:02:eb:4c:96:53:
d8:e2:92:85:b9:a0:30:11:46:2e:1d:bc:f4:2a:4a:43:7c:03:
51:ea:61:b6:1b:fd:9a:9c:97:b1:ca:a1:53:db:55:ae:fe:6c:
d5:03:6d:61:b2:8c:7c:8c:15:57:9e:46:10:46:08:9e:19:ed:
39:d3:90:13:84:72:e8:fb:4f:76:8d:12:41:48:ac:90:09:c0:
5e:2c:7c:79:7f:a3:db:86:33:c8:fc:e7:8f:4b:ab:69:e4:2a:
a1:4b:8a:b1:0f:70:c7:1f:f2:93:33:49:b2:f7:ab:bf:ac:46:
a0:d1:17:16:1f:5b:87:7a:c9:6d:3e:bc:45:f0:e2:b6:76:e6:
ee:04:12:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:07:47 2025 by rpki-client