Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json)
Hash identifier: GccHd3OneUhI1VKj5OMCdBWonTS335OjZq+86vU9+No=
Subject key identifier: 24:71:9A:AB:79:35:66:7A:0F:3C:19:BE:18:E0:06:5A:8B:95:DD:34
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 019652DB149016B983CF17AE9243BE6D1812
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 11:00:11 +0000
Manifest this update: Sun 20 Apr 2025 11:00:11 +0000
Manifest next update: Mon 21 Apr 2025 11:00:11 +0000
Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: PWeCzhSBdBh1eFgnwPlNhLy8GuEEtkegfKGXL/Fl5aE=)
2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 11:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:14:90:16:b9:83:cf:17:ae:92:43:be:6d:18:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: Apr 20 11:00:11 2025 GMT
Not After : Apr 21 11:00:11 2025 GMT
Subject: CN=24719aab7935667a0f3c19be18e0065a8b95dd34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cd:96:e0:93:36:78:5c:a7:44:2e:b1:75:29:
dc:09:15:1a:d5:9c:92:20:d8:f9:c8:e9:91:8b:5a:
5e:cb:e9:65:35:f5:d9:a0:1e:77:60:03:53:56:d9:
e4:d5:b3:40:3f:60:37:aa:d7:d5:46:80:bb:34:0e:
7f:50:88:ba:4d:6f:5f:2a:80:6e:d6:8b:b8:52:86:
bf:78:ff:69:1d:74:80:79:72:15:67:08:3f:1b:34:
ac:db:bc:8f:b7:f4:8e:c2:0e:84:09:c9:42:19:09:
ef:35:05:bc:cf:2e:ce:da:75:ea:41:da:50:b2:ca:
ef:c2:8c:55:58:1c:79:7a:75:c4:c6:6d:11:ca:1e:
cc:8e:c1:c5:04:73:26:89:78:6a:2b:48:ae:4a:92:
be:6c:35:fe:71:41:a6:73:9d:38:0c:bd:fe:77:62:
b6:06:f0:ba:36:e7:53:fa:7c:be:03:1a:67:8b:4d:
dc:ad:f8:02:ff:19:18:df:f3:4d:45:cf:5f:b1:41:
7c:26:b2:b8:ee:97:6c:7e:1e:ea:8e:57:0a:e5:c7:
b9:58:d0:ee:54:e4:53:ab:d4:62:18:5d:de:21:bc:
c9:d1:22:58:e0:f4:90:d7:11:30:00:b0:08:b5:36:
cc:a7:30:c9:94:af:8c:62:f9:9b:11:38:38:06:18:
6b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:71:9A:AB:79:35:66:7A:0F:3C:19:BE:18:E0:06:5A:8B:95:DD:34
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:f8:8b:b7:41:5a:fc:8f:03:17:34:a1:4a:78:5f:ef:f0:c7:
39:b6:b1:b0:4d:ec:53:77:0d:b7:0c:04:c0:3f:93:2e:64:6b:
77:3a:98:d0:9e:a3:32:90:fc:99:e9:91:8c:66:5a:e8:9b:8f:
a5:56:42:fa:98:8c:87:e6:7d:bf:89:56:16:94:52:95:1a:dc:
fa:88:34:e8:22:f2:19:79:f6:62:75:7e:a8:19:ee:9d:b5:8c:
33:ff:40:e9:41:70:89:f0:32:56:9c:10:d6:00:88:5b:eb:87:
ff:08:65:13:85:ef:dd:62:21:8e:47:8e:58:3a:74:07:24:67:
a8:4d:44:cb:80:e3:73:24:bf:31:fa:73:dc:06:90:26:3e:28:
2f:90:46:6b:f4:53:51:10:cd:2a:9c:dc:cc:52:3b:3c:80:34:
64:d1:0e:d6:28:fa:ae:a0:8c:ea:27:54:65:42:9d:4c:ac:1a:
e6:63:1e:0e:53:9a:16:4f:72:58:a2:e4:51:ec:20:2e:01:d7:
d1:94:6b:68:99:32:a6:19:b5:8d:d8:0d:69:8d:9d:f9:98:3b:
a4:6d:3c:04:88:37:a4:fb:8a:c2:99:d0:40:c1:37:5d:63:31:
bf:4c:77:58:06:c0:43:31:b8:63:18:5b:21:d1:88:81:29:91:
2e:1c:2c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 17:57:55 2025 by rpki-client