Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
File: q33wfyEEN2kvd-7DRpuaSCuW0ao.mft (raw, json)
Hash identifier: RVso+dMOjFPX6AtA/jCUWUZBP4MWtk6EwNoml6+yNzI=
Subject key identifier: 93:93:5F:28:63:D3:65:BA:B9:5D:C3:5D:5A:85:06:85:77:EF:29:A3
Authority key identifier: AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
Certificate issuer: /CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Certificate serial: 0196545C557D988924EF949A479CF7C30D83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
Manifest number: 0492
Signing time: Sun 20 Apr 2025 18:00:59 +0000
Manifest this update: Sun 20 Apr 2025 18:00:59 +0000
Manifest next update: Mon 21 Apr 2025 18:00:59 +0000
Files and hashes: 1: q33wfyEEN2kvd-7DRpuaSCuW0ao.crl (hash: mQitgJLnK402u3F02kSXax8RF0JbUzfCdG9C4JxDRRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:55:7d:98:89:24:ef:94:9a:47:9c:f7:c3:0d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Validity
Not Before: Apr 20 18:00:59 2025 GMT
Not After : Apr 21 18:00:59 2025 GMT
Subject: CN=93935f2863d365bab95dc35d5a85068577ef29a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:40:f8:e2:eb:2a:67:46:6d:cd:c8:f0:33:c7:
c2:e4:b9:44:38:06:5d:d2:96:a8:14:d2:a8:93:1f:
d6:8e:0f:f0:40:99:68:74:79:38:e3:f2:f0:5a:e5:
3e:e5:85:5d:5f:c3:eb:e0:5b:1b:9f:3f:d1:94:ec:
4e:b0:30:37:3b:c4:1c:1a:c7:1b:a7:25:65:51:d2:
21:36:b3:80:cc:37:f7:4c:32:39:62:08:0e:f2:b2:
9d:38:da:9c:71:3f:20:a1:a3:b6:f0:4e:94:cc:53:
d5:30:4b:d7:5a:41:fe:54:bb:fb:32:d9:29:a2:50:
05:5b:36:e5:58:64:53:e4:68:d8:16:0a:37:53:4d:
db:5a:47:74:6b:fb:8d:be:66:4c:7c:73:11:33:dc:
ce:f1:3c:e4:b4:1e:24:fd:ed:98:61:65:8e:87:84:
36:34:f2:ff:3d:59:b1:db:70:e1:fc:33:13:c5:9f:
71:18:9c:1b:f2:fd:1e:6b:86:7b:3d:89:fb:d3:58:
e3:f2:b2:da:9f:c3:86:1e:85:22:44:78:65:64:85:
7f:73:35:d2:51:90:50:d9:04:f1:0a:a4:29:ae:e1:
17:9a:04:09:9d:f1:81:81:c0:f3:87:2b:70:29:5d:
5e:1c:57:71:35:2f:15:44:f5:4d:70:e9:5a:9a:57:
04:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:93:5F:28:63:D3:65:BA:B9:5D:C3:5D:5A:85:06:85:77:EF:29:A3
X509v3 Authority Key Identifier:
keyid:AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:59:9c:99:1c:3d:34:a7:30:4f:40:38:47:8c:17:22:8d:68:
c0:63:09:ce:1a:e5:f9:6a:a2:86:3f:dc:03:e5:ef:54:fe:14:
1c:49:f1:9f:22:c9:99:aa:41:86:36:a6:8e:af:e0:a7:f6:6b:
38:47:90:a8:26:00:81:2b:ad:d3:f1:65:fb:f9:b3:54:5a:75:
73:3d:6a:9e:3b:f6:84:0e:b9:dd:b8:09:09:22:f9:22:24:41:
15:23:93:0c:d1:45:86:b0:1f:41:12:39:b2:20:17:24:a1:6f:
15:4a:44:8a:94:fb:e5:01:fd:68:94:43:da:43:73:0b:42:3b:
a3:3b:e3:11:6c:d3:5e:1f:37:0d:75:46:6c:2d:1b:e5:4b:40:
d3:be:22:3a:42:9f:da:3e:a1:d6:21:4a:f4:2e:42:1a:14:ce:
fe:4f:77:8c:c7:83:3a:27:ed:ec:f2:16:84:37:60:79:e1:f6:
61:1f:c1:43:8d:c6:db:b1:77:e3:a9:88:75:ad:80:42:7f:e1:
40:20:c7:3a:29:79:43:98:87:69:8a:4b:7f:1e:0d:2f:29:dc:
47:6a:dd:4d:c6:2c:9f:43:6f:e4:b6:e5:ab:1d:04:6d:c3:43:
47:73:34:2b:d1:af:45:a2:9e:9a:7d:7c:6e:f3:8e:e8:b7:39:
4b:63:b7:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:54:02 2025 by rpki-client