Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: Lab8VX3lyarCyOsCcvZSoLxMe2URl8NnJu6lleLEfT0=
Subject key identifier: E4:FB:A9:A7:0A:C6:B0:11:73:A8:6A:6B:3E:5A:20:5A:B2:31:CA:27
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 019512473C6D620C7255C64B04D6D0D82F19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 07DB
Signing time: Mon 17 Feb 2025 05:00:13 +0000
Manifest this update: Mon 17 Feb 2025 05:00:13 +0000
Manifest next update: Tue 18 Feb 2025 05:00:13 +0000
Files and hashes: 1: PTvQgS1qnjLwo9s4LdFb_Ohs-14.roa (hash: ISrdGe09G63GrIhvFHUR6KGbQ/gtnJbbuoeTtm56a1E=)
2: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: rumWb224VSl9yXRNoRQ5dT7r6VTDQhksUyKu8CcgTZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:3c:6d:62:0c:72:55:c6:4b:04:d6:d0:d8:2f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: Feb 17 05:00:13 2025 GMT
Not After : Feb 18 05:00:13 2025 GMT
Subject: CN=e4fba9a70ac6b01173a86a6b3e5a205ab231ca27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e4:c4:6e:d8:7b:aa:ff:fc:b4:c3:b4:19:7b:
70:e3:3c:1a:97:cd:a7:20:e2:37:74:45:6d:e7:8e:
1e:05:91:0f:87:b5:6c:26:74:d8:05:53:f4:61:f1:
e0:81:99:6d:93:9d:72:2c:87:78:cc:67:92:b7:3b:
62:ec:25:1a:14:a9:4b:10:e2:d3:9d:ab:66:91:2d:
40:3e:0f:45:4d:9c:90:e3:e5:b9:b1:52:52:a5:45:
fa:d8:20:e2:17:df:c0:31:92:76:16:18:3a:cf:36:
9f:b7:c3:cd:66:6a:de:ae:96:45:8d:96:62:38:d1:
ee:65:64:9c:76:fa:0a:dd:22:d1:f3:a6:39:c5:ba:
e0:f0:a8:2c:b4:40:1e:10:be:ac:81:f9:18:dc:55:
5b:54:25:49:dd:42:db:e6:c9:b3:10:15:c7:da:82:
b7:74:98:09:22:20:53:a4:93:a3:00:e2:a8:0d:fb:
43:36:12:40:39:e7:49:e9:82:2f:2e:10:bb:06:e2:
47:53:43:52:98:96:db:12:45:15:3a:df:f5:dd:94:
35:d3:10:3a:44:2d:74:54:8a:59:a0:79:22:02:be:
5f:be:44:a0:ae:d6:5d:59:48:d4:42:3b:5d:f6:5a:
ea:e0:23:6f:9a:9d:4a:d7:bd:5d:a4:1f:34:cd:9f:
3e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FB:A9:A7:0A:C6:B0:11:73:A8:6A:6B:3E:5A:20:5A:B2:31:CA:27
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:c3:7f:86:a0:c9:76:a6:71:f5:c3:17:c5:ee:30:08:c9:ee:
32:d3:9c:4e:ed:ce:5b:ee:9c:a7:2b:83:bf:b7:de:02:3c:e2:
0d:4a:c0:40:d7:39:58:ad:61:15:f9:7e:42:06:6c:26:ac:6c:
ee:3d:f7:1d:36:1e:36:11:55:16:e6:77:c3:68:68:71:a0:cb:
e9:9b:ac:63:fa:a9:81:be:09:21:e1:71:41:30:a2:3f:31:12:
8e:99:51:ac:9b:43:75:b6:15:54:fb:bf:d8:94:42:46:ad:cb:
0c:92:18:65:bd:70:bc:c9:29:24:61:1c:9c:fa:48:ee:00:ec:
af:4d:1e:d3:58:be:dc:77:25:a0:20:41:c2:e0:b4:85:f3:04:
d9:96:44:d6:23:81:2e:3e:60:c1:cb:4f:15:42:2c:c6:c0:68:
61:de:1d:0d:cc:79:f5:c3:5e:6a:37:38:4c:fd:db:f6:69:36:
a1:eb:02:cc:16:35:38:24:6b:ff:32:e5:d0:09:74:ff:cc:62:
c9:a3:94:4a:a9:c1:9f:fe:b0:52:2e:e2:08:15:82:1a:0e:92:
fa:e7:69:ca:db:cc:d9:cd:a8:e6:4c:47:39:4d:fa:31:33:65:
bf:4b:95:61:15:f1:38:e4:eb:5b:b9:fd:09:a4:74:0c:6f:e9:
39:0a:f0:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:54 2025 by rpki-client