Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: sg9j1U9/17kQRkxZOr7Qb23gkvh0OVuO5yP86FSyH3w=
Subject key identifier: 29:B5:E4:AF:DD:52:6E:9D:BB:F8:B8:A5:98:9D:B3:15:BA:B2:1E:52
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 01964F6C3219EBF9D640550E68BC4BEFA11C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0818
Signing time: Sat 19 Apr 2025 19:00:12 +0000
Manifest this update: Sat 19 Apr 2025 19:00:12 +0000
Manifest next update: Sun 20 Apr 2025 19:00:12 +0000
Files and hashes: 1: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: jvVkti2UQSfUhJbMlP+mKdds6VyVHjzvCqyWYvYcXEE=)
2: EOgnkpCGO25TfSV28ABNiElbHMI.roa (hash: xamMOb/MG2jklBJl6shRJRNZ2UW4izFBKtZBvXEcSVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:32:19:eb:f9:d6:40:55:0e:68:bc:4b:ef:a1:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Apr 19 19:00:12 2025 GMT
Not After : Apr 20 19:00:12 2025 GMT
Subject: CN=29b5e4afdd526e9dbbf8b8a5989db315bab21e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:b4:60:cf:0a:4f:46:35:b5:b9:67:98:77:
b9:93:aa:2b:31:f4:4a:6f:55:e2:67:02:19:d8:bb:
25:0e:46:f2:00:8e:82:39:be:63:7f:2a:c0:c5:3e:
90:1e:9f:4a:e2:36:19:cc:8b:0f:1e:9c:46:83:7d:
bf:cc:9e:e5:fa:12:02:df:ea:ea:82:51:c7:0c:68:
e4:2e:2f:31:63:62:b0:3c:f8:83:e3:02:39:9d:83:
9a:bb:a2:20:a4:9d:9d:35:da:18:72:9d:86:d6:48:
de:fb:49:49:11:e5:5b:f6:93:3e:17:7a:3e:79:7b:
24:46:e9:5a:bf:30:4d:26:10:42:ee:ef:34:a8:e3:
78:d6:ab:5f:82:21:23:f6:31:98:86:b1:91:a1:99:
90:ad:2e:0c:1a:bd:5e:3d:f2:c2:ef:5d:21:f6:e6:
f3:22:17:2e:a8:03:d4:bc:23:bb:6f:06:fb:44:33:
06:3f:a2:8d:d5:52:17:3c:22:7b:a5:77:6f:62:af:
ef:ed:7e:93:02:b9:00:66:84:7d:39:b2:1a:36:58:
4a:af:8b:7e:96:19:90:59:92:b5:c3:d3:00:1a:17:
3c:e6:e3:9b:a2:40:29:40:19:f7:c1:cb:89:6c:12:
80:b8:39:70:bc:e5:07:b1:d9:2d:62:ac:01:82:6a:
94:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B5:E4:AF:DD:52:6E:9D:BB:F8:B8:A5:98:9D:B3:15:BA:B2:1E:52
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:c7:bf:ef:af:51:08:40:07:f9:f2:7a:45:47:94:b2:7a:e3:
b3:3b:b0:d8:d4:d6:ff:76:6b:9c:bc:cc:ff:bb:a8:9b:ca:b7:
99:20:39:04:91:23:b3:f4:be:9c:ab:5a:9c:2c:ae:d3:89:4e:
2c:9d:9c:32:f1:2f:1c:8a:7b:25:c2:ab:f8:53:fe:b3:56:c3:
87:a3:b1:a0:6e:18:41:b3:85:95:ec:6f:1f:09:0b:ec:aa:4a:
82:4f:1b:79:a5:fa:0f:46:8f:fe:0f:fe:3a:72:f1:75:46:34:
43:3a:64:e6:d6:cb:fb:95:cc:58:75:1d:10:e4:20:14:1a:49:
89:3e:ca:d9:38:54:76:cd:70:45:49:75:1a:21:a5:e8:67:33:
bb:b2:b8:8f:8c:03:9d:6e:06:2f:f3:f7:63:00:d3:26:e9:13:
b1:d2:ac:30:ac:b6:2d:fb:7e:1a:c5:97:f9:44:80:5b:b4:08:
2d:68:60:18:fd:02:de:c8:53:25:ac:4f:9d:cb:c1:4c:3f:25:
44:1f:8f:ec:50:54:c0:c9:b0:e3:07:44:d1:68:f3:e0:9d:68:
be:06:24:3d:06:08:4b:66:14:15:10:19:9a:5f:30:c6:2b:aa:
04:35:79:d9:8b:73:ec:07:dc:fc:0a:2c:ba:9f:c6:34:26:e3:
a0:ca:22:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:57:30 2025 by rpki-client