Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: uU7sr4/36kmD+WxYQtuvRzMQtoNfxnH9Ph+jRehjax4=
Subject key identifier: 4B:77:8B:F6:24:42:11:FC:A4:EB:66:E4:A8:1D:D9:84:99:A1:C6:5A
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 019653126793089517492E4BF3DBB5230ACD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 12:00:37 +0000
Manifest this update: Sun 20 Apr 2025 12:00:37 +0000
Manifest next update: Mon 21 Apr 2025 12:00:37 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: l788FDUT/5GYkDKLFlxJPARvzQpz+hwusr5ixuk/VXk=)
2: nqDbjTD7-4bF8APAmv3q39AmNtk.roa (hash: zWbRV6cXuufmhpJUA1tayT8JP8s9Ez0NcmTuvgMXFF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 12:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:67:93:08:95:17:49:2e:4b:f3:db:b5:23:0a:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Apr 20 12:00:37 2025 GMT
Not After : Apr 21 12:00:37 2025 GMT
Subject: CN=4b778bf6244211fca4eb66e4a81dd98499a1c65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0d:32:e6:03:ba:ba:35:4f:44:f9:05:b6:48:
a0:e9:3f:b7:6d:72:00:55:87:3a:5e:85:70:07:6a:
21:84:38:aa:a8:7c:0e:c8:50:73:63:3a:72:7e:21:
4d:c6:cd:44:9c:f6:28:57:be:4e:15:0b:49:c3:8b:
28:f1:1c:50:ec:b3:c6:81:a5:f0:4e:fc:fc:8d:92:
b3:b9:a9:7f:00:c2:56:05:e3:ef:f3:2d:00:76:0c:
26:d2:e8:f7:3a:16:2a:67:36:ed:83:14:65:cf:46:
c8:33:8c:98:ef:c1:d5:2f:a5:42:50:c6:98:24:fb:
30:cc:fa:c7:c6:2c:80:d7:f7:5c:88:24:d7:1e:50:
02:52:28:f5:19:62:30:8e:2d:97:6d:26:9f:99:7e:
eb:57:29:57:89:e0:5c:3c:21:d1:fe:58:2d:7d:cd:
1f:fc:19:9f:52:71:08:ef:e6:da:be:8a:9e:d5:19:
f6:14:58:55:47:6e:22:7e:02:11:cc:81:dc:4a:30:
68:88:17:b7:1a:2c:00:22:e9:42:62:12:4f:39:fd:
6f:4f:dd:95:65:68:c9:aa:66:5e:02:44:ec:23:eb:
7d:d7:04:1b:3a:b5:aa:88:b6:86:2a:0e:5b:df:81:
43:9b:ff:01:6b:ea:dd:b3:0f:28:43:4f:ed:54:23:
d5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:77:8B:F6:24:42:11:FC:A4:EB:66:E4:A8:1D:D9:84:99:A1:C6:5A
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:b8:2d:76:12:b1:a7:2a:e4:fd:97:ce:20:c4:45:20:7f:5b:
74:49:fd:d8:f5:57:07:f8:9d:f3:9a:8a:45:6b:41:4d:d1:b1:
ee:42:81:ba:3c:4d:d6:21:01:6e:bf:41:17:ce:62:f7:c9:9e:
bb:c7:4e:65:52:a2:95:62:11:9b:a9:cc:2c:9c:47:b1:0e:b9:
d1:cc:6c:5d:15:0d:79:8f:05:73:b5:f2:8b:67:5c:ac:ee:e0:
81:43:bb:06:f5:d9:83:bc:ac:7b:4a:68:6c:da:96:1b:57:4e:
0a:f4:89:ad:7c:10:1e:6d:e6:bb:8b:71:fb:72:38:7e:d6:ec:
47:2a:7c:d9:5f:33:36:d1:ad:45:b4:c3:a8:e9:69:5e:bd:49:
30:33:20:96:31:b7:79:f5:1a:ea:a7:13:51:af:54:35:de:c2:
85:d3:2a:7e:6c:74:16:d3:f0:76:53:ec:f8:fa:2a:0f:5f:39:
e8:e6:1e:b7:7a:93:93:2b:86:da:1e:d6:99:41:83:74:37:a4:
2c:2d:b7:83:89:46:fa:be:a0:76:b5:86:a6:9f:e6:2d:37:09:
8b:1a:ad:af:67:9a:d5:37:41:47:88:87:91:f3:79:93:dc:f2:
61:52:6a:18:60:32:5f:97:09:d7:ac:1b:73:b1:98:ab:e0:1a:
d3:94:38:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:57:59 2025 by rpki-client