Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
File: q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft (raw, json)
Hash identifier: jGtTLRVGp0lJaiN6mePWEi2UXYSpXTmO0epd9ppJ3/I=
Subject key identifier: 02:79:9A:9C:65:95:72:8F:F6:B4:CC:A0:95:84:C5:28:09:0A:C6:76
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 0196550085B0570EF7BAAAB019A71F155FF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
Manifest number: 153C
Signing time: Sun 20 Apr 2025 21:00:19 +0000
Manifest this update: Sun 20 Apr 2025 21:00:19 +0000
Manifest next update: Mon 21 Apr 2025 21:00:19 +0000
Files and hashes: 1: iiUeXLLt-1_q1sqXQylSJn8YIz0.roa (hash: QigdA9bNMVfoJev0ZZ7xl7Qye3Fuam811gOFHSrVr2A=)
2: q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl (hash: k0RzsidBbI9eQ+RFFQwx/HAXFnbhvXqJst2c2bMt2Y0=)
3: uoQypbe_WXl9fUjjkza2xu-8nhM.roa (hash: YX+cx3IEUEYmyF+dpQ2e75vD+fBMEYY3zSfURoavVBs=)
4: ut3Ia6-mOfUCkcqND1t7uvinIqc.roa (hash: aJkTC/NqOQ2/INKdyvEr1miuxsKpaWRMdWzEAJzyDDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:85:b0:57:0e:f7:ba:aa:b0:19:a7:1f:15:5f:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Apr 20 21:00:19 2025 GMT
Not After : Apr 21 21:00:19 2025 GMT
Subject: CN=02799a9c6595728ff6b4cca09584c528090ac676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b9:b6:c3:e7:97:48:f5:80:da:f2:b1:03:cb:
4f:29:a6:3a:e1:30:ba:84:33:e9:18:24:20:2e:da:
e8:2c:c8:fb:5c:37:2b:7d:a8:0c:76:d0:d1:2c:ad:
fc:90:4a:08:91:46:23:03:6f:a8:62:e3:01:8b:03:
36:1a:1c:6a:7d:70:9e:0b:ec:3a:82:fb:ee:77:e6:
47:a3:e0:84:ee:3b:cd:d1:84:ef:13:97:b3:34:a2:
c5:bf:49:cd:92:94:67:76:05:c0:ee:a7:3f:66:7a:
d3:e9:62:eb:b1:2f:e9:2b:96:b5:20:a1:1c:0d:ed:
0a:cf:cc:43:08:db:b8:34:ab:6a:9a:4a:be:64:6a:
51:75:e3:07:02:95:28:93:14:b4:21:1a:e4:92:5f:
62:a4:6c:6b:1c:53:ee:77:72:86:9e:fd:45:42:6c:
6b:88:9e:5b:4f:1d:54:b7:c8:0f:fc:31:e2:43:3f:
d6:57:b1:c4:8e:8a:a8:6a:d1:ab:cb:71:fd:f5:b5:
40:d3:e8:36:5b:77:26:c0:58:7d:c2:fe:38:be:e0:
04:f8:33:16:59:35:d4:b0:48:6e:4f:b2:f2:aa:9f:
9a:92:90:a8:ba:a7:03:5d:1e:f3:cb:dc:e7:2d:a5:
6d:39:a4:89:f7:4f:1e:6d:b5:db:5f:4a:dc:b8:ff:
94:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:79:9A:9C:65:95:72:8F:F6:B4:CC:A0:95:84:C5:28:09:0A:C6:76
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:fa:78:10:b3:72:9e:5c:e7:99:3c:d2:e9:53:6b:d0:4b:65:
d1:10:b0:32:4a:2c:fb:07:a7:f9:20:1f:8d:e5:1d:2a:81:11:
7a:0b:eb:1c:c4:29:10:24:5b:8d:fe:95:e4:87:60:9c:57:cd:
9c:78:a7:24:57:87:b4:c4:bd:85:99:31:b9:90:4b:29:bb:96:
50:38:91:00:04:30:19:fd:d8:a9:8a:f0:28:66:05:61:f5:72:
04:85:5f:68:af:a3:89:63:be:d6:1e:47:78:b5:b8:8a:f6:9b:
8a:83:3a:80:85:9a:49:2f:e4:b6:88:65:dd:0f:4f:ba:d9:ca:
cf:15:f8:90:53:30:2a:7b:1f:2b:70:95:4d:ac:d0:6a:8a:dc:
b8:6e:d0:80:6a:13:d7:f5:c9:2b:b3:ff:b6:a8:d4:30:91:fb:
36:03:a4:91:3e:30:d2:b2:8d:06:90:b5:d7:63:b7:c6:ec:14:
e8:36:9a:fa:8c:77:4c:58:39:bf:17:89:c9:b6:24:2b:56:ea:
5f:ba:c1:3e:14:7c:e3:81:42:7e:43:b0:76:af:c7:40:dd:87:
d2:70:3b:e5:79:ea:d7:3b:de:65:94:0a:f6:a2:74:d0:db:ac:
94:ca:d0:6e:08:cb:67:a5:1d:81:59:63:3d:cc:56:ff:42:85:
7a:2f:e4:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:06:56 2025 by rpki-client