Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: VNhcvpMO0E4YtkAo1JP5JOnZNXg7hgMHtoGjlDBwh0E=
Subject key identifier: E4:A1:03:C0:AD:63:5A:A3:6B:24:80:52:19:F0:0C:2D:46:FC:AE:82
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 01964AEAEC9307B796E511384035D88E1EDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0B15
Signing time: Fri 18 Apr 2025 22:00:32 +0000
Manifest this update: Fri 18 Apr 2025 22:00:32 +0000
Manifest next update: Sat 19 Apr 2025 22:00:32 +0000
Files and hashes: 1: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: a6NK6JG+z/mRD2ftqjxvkXZ1yfAIMSOj1lvZYUU+lEM=)
2: u25_l7rqpA4jc9Mn9X_nn6jE1D8.roa (hash: XxkiW8kKfa52GpQHHiGBtUNZJLczRvJy5PTfiodYsrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:ea:ec:93:07:b7:96:e5:11:38:40:35:d8:8e:1e:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Apr 18 22:00:32 2025 GMT
Not After : Apr 19 22:00:32 2025 GMT
Subject: CN=e4a103c0ad635aa36b24805219f00c2d46fcae82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bc:06:95:2b:93:04:65:6c:3c:16:e7:e6:68:
05:f5:fe:62:30:0b:db:64:da:06:d1:62:9e:7c:d4:
8f:20:24:bc:db:dc:8c:3f:85:75:f7:61:6b:b6:58:
39:0a:11:9b:2f:4c:8a:3a:8a:d4:e6:af:8f:ba:13:
15:2c:f1:bd:6b:85:49:32:3c:ff:73:df:2c:e9:22:
2a:1f:0a:58:1e:0e:d8:2c:e5:fc:e5:ef:a3:ad:4e:
42:9a:16:3c:42:bc:2b:f9:ea:00:f1:9c:40:c4:05:
9d:7d:66:99:4d:16:74:db:4a:1d:2c:4f:8a:5b:f4:
d2:17:7c:d1:78:5e:92:17:48:86:80:cd:b5:9f:cc:
fe:3c:55:f0:9f:6e:51:3d:41:3a:f8:7e:dd:ab:b7:
6e:1f:d2:63:3f:ba:95:1b:86:e9:53:12:8c:7f:2c:
5a:e0:46:5c:73:59:cd:35:f2:a2:55:9a:8c:8d:f2:
ac:e7:cc:1f:e1:34:c2:2e:ed:f2:c7:89:6f:b4:f7:
ff:dd:ec:f7:49:b9:3b:6d:11:af:1e:4e:c7:20:41:
cf:81:c4:a9:51:4d:ad:58:62:cf:b7:5b:9d:d6:d5:
29:0f:fc:91:d7:c8:5c:74:42:9c:e1:91:43:10:1b:
7c:c1:95:e4:12:0c:b6:10:5b:7f:63:1a:27:c4:a6:
bf:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A1:03:C0:AD:63:5A:A3:6B:24:80:52:19:F0:0C:2D:46:FC:AE:82
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:4c:ac:0b:eb:02:93:7e:4d:02:6d:6b:5a:82:b0:de:f6:05:
db:22:12:19:95:65:01:a3:72:85:1d:2f:39:59:c4:86:b2:56:
7d:19:a8:75:62:e2:db:2a:bf:27:39:c1:8b:88:13:53:74:b7:
32:f6:0b:ea:f5:24:b8:37:12:4a:7c:b1:7a:ce:b9:7b:70:27:
c1:6a:d2:a9:44:53:c7:7f:b1:d4:b2:da:56:02:08:83:d7:8d:
57:ac:09:ce:c8:c1:e4:7a:fd:1a:60:5b:51:e6:99:4e:f5:c0:
e4:12:80:dc:a8:88:dd:08:94:52:19:7e:74:2c:ea:36:22:91:
af:d5:4e:96:b4:6e:4d:ec:9d:c3:11:85:82:97:fd:44:c5:c2:
19:3d:f5:fe:53:b6:49:7d:30:21:c0:50:e8:76:36:fa:53:e2:
c4:b0:8f:57:6a:bc:d7:97:9c:e8:90:8e:25:93:43:34:7c:da:
3a:16:17:ea:b4:a2:93:71:56:dc:a0:f2:19:89:44:ba:95:94:
c3:cb:71:df:c4:15:54:aa:c6:ae:ba:a9:69:8d:e7:b9:ff:0c:
06:ef:8b:6f:69:ca:aa:81:70:33:52:7d:f2:f4:e1:5c:76:ed:
f1:d5:cd:41:bf:6f:74:fd:08:c6:a0:b2:3f:ad:4b:0b:20:07:
de:e4:74:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:15:41 2025 by rpki-client