Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json)
Hash identifier: jw6hkZ/9Pg272o5b2NYFYSVdHXg9eagu4moJrlrDQ1k=
Subject key identifier: 48:CC:D6:96:0E:4E:D0:8B:12:D6:9E:EC:86:5E:83:DC:5B:FB:E1:25
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 019512478682608FC82F445E68C3B4378C7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 05:00:32 +0000
Manifest this update: Mon 17 Feb 2025 05:00:32 +0000
Manifest next update: Tue 18 Feb 2025 05:00:32 +0000
Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: F+JK/EeI5EEUBj0r2xlH8sWwT1/Xc1U2B6iYNaNTnvA=)
2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:86:82:60:8f:c8:2f:44:5e:68:c3:b4:37:8c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: Feb 17 05:00:32 2025 GMT
Not After : Feb 18 05:00:32 2025 GMT
Subject: CN=48ccd6960e4ed08b12d69eec865e83dc5bfbe125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9e:86:37:8f:7a:b1:ee:12:0b:0d:f9:b1:ed:
47:7a:6c:5d:71:99:56:2e:ee:52:a7:e9:df:5b:43:
c3:59:b4:4d:c2:bd:f3:84:27:f4:86:fd:36:d5:c4:
b2:f3:7b:52:44:a6:08:3a:27:1c:96:7b:01:6b:21:
9c:45:a7:b6:aa:84:ee:5d:3b:ce:b5:b2:3b:4b:33:
2f:7b:c9:40:2c:87:fd:59:71:98:62:ce:c1:d2:86:
33:75:af:7f:8a:db:0b:b0:9a:d4:19:77:c6:4a:e9:
26:18:be:70:49:a8:2f:4f:2e:40:53:64:ac:29:73:
9b:85:5b:4d:c3:ee:1b:ac:28:2c:94:40:ba:bb:f4:
1b:12:7b:53:85:8f:d3:30:23:85:38:1c:39:17:32:
9e:3f:98:08:b6:35:14:5b:16:37:c5:e9:09:c2:0b:
b0:53:4c:ce:9c:0d:30:ef:49:db:00:93:f4:4f:ba:
be:e1:77:57:81:7f:28:f7:7d:45:aa:bb:b0:c3:f7:
82:b8:82:b9:1b:69:e7:1a:1b:e4:89:51:72:6b:a7:
5a:0d:1d:70:80:e3:7d:55:ae:ec:a8:b0:74:94:2e:
77:2a:a5:68:7b:7a:69:e9:60:5a:7b:29:3d:1b:05:
75:2c:a9:dd:36:fe:63:19:f5:33:18:c5:f1:f0:d5:
79:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CC:D6:96:0E:4E:D0:8B:12:D6:9E:EC:86:5E:83:DC:5B:FB:E1:25
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:95:1d:3f:f9:c2:3e:ab:05:ce:9c:12:fe:f6:7f:a7:95:fd:
5f:0f:86:72:e9:1d:98:9e:94:eb:a9:3a:00:ee:08:69:ce:7c:
22:dc:42:fe:fb:42:6d:08:89:72:9b:ba:eb:d7:84:c3:5c:e5:
59:f2:08:28:0e:46:b3:86:29:df:41:44:d1:ca:00:0e:45:94:
9a:5b:8a:48:31:f2:ec:51:47:4b:dc:c9:a6:8f:c7:b1:8e:52:
4f:1c:20:cd:2c:ea:c2:70:04:2f:69:ee:58:5b:ed:92:d0:ac:
d2:0b:28:8f:f1:bd:71:3d:e8:8f:44:5b:5b:aa:be:8f:10:cf:
52:c7:77:4d:f8:a5:5c:07:a0:29:48:4a:28:3c:13:41:c5:b9:
c0:44:c2:61:fc:20:2b:30:4c:a4:7b:ef:89:6e:b1:e9:c4:06:
c9:65:0a:f2:48:f7:b2:fd:2c:32:47:ab:f1:24:5b:62:31:76:
77:c3:e7:79:77:69:19:68:dc:c9:05:eb:9b:2e:cd:2b:e8:28:
56:a0:39:93:1f:db:1a:66:b9:e7:df:65:f0:bc:0e:88:d1:d4:
3b:4e:98:c8:21:4a:0e:38:32:d7:4c:4d:ff:5d:3a:9c:f3:ba:
fa:c0:00:6c:1b:9c:0b:3d:23:fe:0a:bc:df:e9:3d:8f:b3:93:
55:2b:65:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:27 2025 by rpki-client