Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
File: Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft (raw, json)
Hash identifier: A14FK2qrTazLvdLzoqlGTGG4mp4Xp2PHLwZCHizOaoo=
Subject key identifier: EF:1F:B0:6E:3F:DC:39:8D:E8:73:AA:2B:4E:65:89:C5:C6:22:39:3B
Authority key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
Certificate issuer: /CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Certificate serial: 0194C387E3801C2B077662FEDCB51B7DFF8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
Manifest number: 0485
Signing time: Sat 01 Feb 2025 22:00:50 +0000
Manifest this update: Sat 01 Feb 2025 22:00:50 +0000
Manifest next update: Sun 02 Feb 2025 22:00:50 +0000
Files and hashes: 1: BR-wwst0Mwoj4cW4aMMLkST0T08.roa (hash: KhuoTa1EwW+NDwJopflLn+SOxpsU8qTU0jm6Bsplu/Y=)
2: Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl (hash: +MIUQ/6EXPApqLnEfRgvUAfA53AeXpJWzxAN9ruQpFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:e3:80:1c:2b:07:76:62:fe:dc:b5:1b:7d:ff:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Validity
Not Before: Feb 1 22:00:50 2025 GMT
Not After : Feb 2 22:00:50 2025 GMT
Subject: CN=ef1fb06e3fdc398de873aa2b4e6589c5c622393b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:37:71:06:54:c9:f4:74:1e:cc:f4:6b:9b:
97:8b:54:82:3f:47:42:15:53:15:14:e3:67:31:41:
0d:c6:e9:98:68:99:7e:80:28:0f:75:e3:63:7d:ee:
1d:4c:5d:0f:d2:e5:ae:b2:e7:84:4e:17:78:61:ff:
1f:23:6f:c8:05:cd:05:8e:5e:58:a4:de:06:0e:44:
b8:78:29:9a:73:31:f9:ee:10:ac:61:9d:33:ca:4a:
40:5a:1a:3e:a6:be:a3:12:5e:bd:b5:e2:21:d6:13:
35:7e:e7:7d:d1:0b:ca:fa:97:15:b7:de:19:65:52:
6d:bb:15:57:90:c1:e0:c9:1c:71:d7:88:c2:9c:11:
ba:26:24:15:dd:84:d0:9c:23:77:a0:18:ea:17:94:
8c:83:57:6d:93:21:e7:e4:28:7d:ba:b7:ec:c6:cc:
11:04:e1:dd:27:d8:f6:9f:66:62:c0:75:7d:34:53:
a0:91:37:d4:80:ab:04:1e:ed:6e:1a:15:82:47:89:
73:86:5b:14:38:eb:13:23:a2:70:dc:77:a3:23:42:
11:6d:5f:88:71:61:27:fc:ab:69:ae:56:5f:e4:06:
61:d0:98:44:b5:a2:13:d6:9e:0b:40:fd:d1:c7:f2:
3e:7f:45:b6:8b:9b:48:90:c1:b3:f0:81:f1:d4:32:
0b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1F:B0:6E:3F:DC:39:8D:E8:73:AA:2B:4E:65:89:C5:C6:22:39:3B
X509v3 Authority Key Identifier:
keyid:42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:65:8a:d3:1f:b3:47:e0:36:ff:d8:07:e7:32:8f:1f:77:46:
6d:e3:85:cf:d7:4d:d1:d0:35:46:76:79:15:99:a1:59:09:0c:
0d:6f:d1:48:40:f0:97:09:c3:3a:e7:e0:e3:86:36:f6:06:0c:
57:ff:f7:e5:d8:40:f8:3c:0c:81:a0:05:79:a3:df:1d:41:73:
c4:28:0a:6f:68:81:f8:20:39:f4:fd:97:16:93:ee:47:6b:b5:
dd:c2:bc:9b:a6:22:2c:56:89:7a:6c:4a:b4:57:26:59:ba:36:
e4:12:05:cc:6d:e9:ef:79:64:12:dd:e9:0e:19:3a:57:45:d1:
39:0a:ef:a5:49:d4:da:6a:1e:dc:a0:bc:61:52:89:5d:61:82:
07:c5:79:79:ae:fd:9e:e3:fe:c0:a3:8d:88:8f:25:99:a4:cc:
54:2f:a3:7e:b6:23:8b:da:9d:30:6e:65:5e:4b:53:9a:16:e1:
fd:a8:5b:dd:9e:35:ef:53:4c:93:16:68:45:9c:b6:88:c2:2f:
6b:44:2f:df:87:52:73:d9:c5:23:d1:ef:e3:6b:61:77:2c:bb:
34:15:0d:a7:0b:32:a7:c5:02:f0:4f:72:0e:1f:6e:b1:12:78:
55:b5:c6:fb:d6:5d:87:d4:2e:1a:bc:db:94:01:b3:72:fc:74:
f9:3a:17:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:59:26 2025 by rpki-client