Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: vyVzSOX0Ddsm5bCbuu9/M7z7/hezatLI2QefYtLmzwQ=
Subject key identifier: 4B:AD:6F:72:38:81:73:19:AE:D8:9A:82:14:5F:F3:01:73:F6:52:A4
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 0196082F7D219ED638F215D95AEF9998E136
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 0CC5
Signing time: Sat 05 Apr 2025 23:00:52 +0000
Manifest this update: Sat 05 Apr 2025 23:00:52 +0000
Manifest next update: Sun 06 Apr 2025 23:00:52 +0000
Files and hashes: 1: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: 2J6nz1bKFEOi975vjZnWs8V+kCV2PVXGP+G79EY4rt4=)
2: Tt9cDnLqp2SOeeoElhH21A1JSmo.roa (hash: g7FEq0smlg0TkkjLfygzTEzTD8KkWT+7GvQHUxPqdJo=)
3: pSYXiKXGXABhmANIG0Y2vhGLRUA.roa (hash: kjXcWabBcy+Nz9B+eKiIbdHIvrnXu/XwD/9ZftdegXw=)
4: uJ1wgWjtfF_PUvxzUj8noSaLQx0.roa (hash: 5K3mYspcTrH8J1dlAJJG2SBHWuIALi8AQG16SYzuq8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:08:2f:7d:21:9e:d6:38:f2:15:d9:5a:ef:99:98:e1:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Apr 5 23:00:52 2025 GMT
Not After : Apr 6 23:00:52 2025 GMT
Subject: CN=4bad6f7238817319aed89a82145ff30173f652a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:50:00:ef:3d:a8:36:be:3b:68:60:1c:5d:84:
d8:47:36:e6:7a:76:fa:f7:00:a2:79:41:65:e4:f5:
b4:5a:ac:8d:77:90:e3:18:bf:8e:5c:34:f7:d0:6f:
64:5b:21:bf:08:b6:f0:16:3c:e3:0a:2e:c2:32:62:
3d:7b:fb:7f:e1:c9:12:24:b8:cb:e6:87:ba:16:9a:
5b:a9:ea:b4:6b:34:72:40:69:15:23:db:00:eb:45:
b0:64:8e:66:17:95:e7:7c:98:3e:25:f8:9b:c6:d2:
69:cd:f0:74:2a:c8:5e:f7:7c:4d:1e:cd:c4:b5:19:
54:d9:66:fb:93:de:2e:88:0a:e6:c7:68:f8:11:d4:
ab:91:3e:1e:ac:87:24:da:6f:61:19:3e:bb:94:94:
56:95:e2:61:a9:f9:12:75:34:ec:8d:43:59:9f:3b:
10:83:1c:ac:df:67:e5:e5:5f:42:55:ad:a6:e2:55:
6b:42:d5:af:c0:0a:63:70:04:eb:72:60:e3:a2:5a:
67:aa:c8:ce:81:21:a8:6b:d7:5e:2f:da:5b:a1:3e:
ed:dd:40:ab:90:77:3a:34:3f:d4:c2:dc:dc:99:8f:
54:16:21:5e:df:2b:fb:a9:02:70:c1:2b:17:16:ef:
9f:5d:10:e1:c8:ea:79:d0:e6:32:a0:ec:88:2f:af:
d7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AD:6F:72:38:81:73:19:AE:D8:9A:82:14:5F:F3:01:73:F6:52:A4
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:46:84:6a:13:15:7b:68:30:92:97:49:5b:b0:61:88:7a:0f:
cc:fd:86:62:a5:30:08:46:a2:58:8f:03:30:9a:7f:a7:bc:d8:
b8:a6:5c:42:8b:99:1f:eb:96:15:b7:49:20:60:3f:b1:95:df:
d0:f0:82:d2:a1:39:09:2b:15:31:5e:29:15:a6:e1:0d:ec:46:
f9:7e:8d:d7:90:78:1b:d9:14:9b:6a:f1:d8:fa:18:c8:06:a9:
85:ca:a6:82:5f:43:69:2f:68:91:aa:ea:54:fe:e2:37:26:01:
f6:67:21:33:89:69:ea:16:6d:bd:7e:74:06:ca:bd:5f:9a:db:
e5:37:5d:2b:ce:30:88:f7:e1:c5:15:0c:a5:7f:1d:40:d7:4c:
7d:f0:12:55:35:a4:3c:93:e2:47:7e:9b:02:7a:2e:29:a2:b8:
53:99:59:d0:ce:df:87:4b:fc:c0:f6:33:55:d9:0b:7d:02:0f:
2b:c3:4c:b9:25:60:e8:b9:d1:8c:51:15:9d:ba:f8:8f:44:31:
6b:c8:36:b2:a8:b8:10:13:7c:1b:e0:b7:21:da:d0:8a:8d:b6:
d4:32:e8:72:cc:22:d8:bd:a2:76:ec:57:06:e1:02:af:01:32:
d8:65:a8:a3:c0:7f:cb:a7:ef:45:80:8e:bd:f7:25:8c:b4:35:
6d:30:50:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:35:05 2025 by rpki-client