Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json)
Hash identifier: 6F1CJlYeHfgEqRW9ZbO3/lw9nDTbtbW0bb/hv8YVwgg=
Subject key identifier: 92:71:BA:6F:59:87:FF:72:02:81:34:78:88:0B:F7:5B:1A:8A:07:81
Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Certificate serial: 01965493223F245CE4F986C39EDED7263BB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
Manifest number: 53
Signing time: Sun 20 Apr 2025 19:00:50 +0000
Manifest this update: Sun 20 Apr 2025 19:00:50 +0000
Manifest next update: Mon 21 Apr 2025 19:00:50 +0000
Files and hashes: 1: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: OWkeLKpH+ATYCKxC0MXGCpQtoxjVBGZEtnsENx9h+LU=)
2: etqHJp94mEXyM-mZRNVFRO7Kziw.roa (hash: Y6iOU/XBP66s91SGzXjQj2BEKS4QjWa/buoOF4uhFqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:93:22:3f:24:5c:e4:f9:86:c3:9e:de:d7:26:3b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Validity
Not Before: Apr 20 19:00:50 2025 GMT
Not After : Apr 21 19:00:50 2025 GMT
Subject: CN=9271ba6f5987ff7202813478880bf75b1a8a0781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:96:6d:e6:d0:97:f1:57:7e:bf:39:65:54:f4:
27:a4:c3:a2:45:8c:ff:5d:b8:e9:a5:a5:9f:5b:11:
cc:00:5b:36:34:9a:c2:93:8d:27:f9:17:da:7a:c8:
d5:1d:9f:e3:1f:4b:f7:38:1f:d6:d0:4e:f1:ff:6e:
a0:14:6d:6b:3c:97:01:24:ac:91:51:a6:4c:f6:b9:
88:80:5b:2b:7f:41:b9:1c:6a:11:80:1a:72:7a:a8:
97:b0:df:59:06:4d:2c:06:bf:30:b9:88:eb:06:31:
b1:68:6e:06:68:2d:0c:a6:54:02:10:71:9d:53:0b:
32:95:a7:05:6c:49:4f:60:5a:30:b8:82:22:cd:08:
61:97:56:de:af:5c:e4:88:3a:2e:f7:06:36:3f:11:
e5:6b:e4:62:a8:6b:1e:8e:6b:4b:36:3f:2a:1b:73:
c4:f2:3c:52:1c:3c:3b:3e:2b:98:0c:06:bf:c3:d1:
cc:a6:19:56:a3:4d:be:c3:b8:45:17:8d:c8:6d:a7:
22:76:24:4c:ac:0a:12:d7:b2:f4:3d:50:ee:67:a2:
d9:ee:f0:c5:a6:65:53:49:fb:cb:c8:1b:b1:fb:aa:
12:4d:a5:9f:03:1c:8d:98:1f:69:53:b6:4b:79:89:
39:50:46:3e:1d:51:89:ba:ec:84:98:e0:97:6d:e1:
1a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:71:BA:6F:59:87:FF:72:02:81:34:78:88:0B:F7:5B:1A:8A:07:81
X509v3 Authority Key Identifier:
keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:c3:b9:27:62:88:40:5a:c6:97:59:3b:b2:1d:18:45:69:a2:
61:0e:67:2d:00:4f:e4:60:50:53:61:a5:4d:65:d2:b5:8d:88:
a2:26:54:96:f8:7a:b9:35:1f:04:da:5a:8b:bc:c5:41:8e:62:
47:96:8f:66:47:58:e9:a0:43:68:e1:9f:df:63:12:41:1f:89:
73:94:9d:e9:4b:b6:38:8f:56:4c:50:a8:1c:57:17:f9:f0:ea:
21:a4:f1:9d:72:16:70:39:76:01:49:78:cf:0b:df:b8:b9:b3:
21:34:89:21:df:7c:28:12:fc:f0:b0:78:85:e3:1b:ba:02:65:
43:8a:d2:18:ba:fd:4b:e0:b2:5f:ac:11:0c:49:7f:17:9a:58:
17:7b:8e:44:fe:75:c5:c7:fb:09:50:58:d4:ec:d8:8e:9b:4c:
a3:8a:83:ec:4f:3c:5e:23:d3:c3:79:d1:11:89:d3:54:33:fb:
13:c8:62:bb:f3:6b:07:2d:0c:b1:47:41:82:37:e5:23:65:22:
b3:84:ab:83:29:48:14:1e:d9:e0:64:a7:c6:23:ae:cd:93:17:
60:1f:5f:6b:11:24:96:31:5a:22:7e:0b:7e:0a:b6:7d:32:3c:
b6:cb:e5:30:a7:a8:49:c2:87:70:5f:7d:2a:5e:49:f0:35:d8:
34:72:d4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:44:11 2025 by rpki-client