Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
File: Q_2TYug7hS8_0zEbCQlvYommoPg.mft (raw, json)
Hash identifier: IXsMASttofiMJkG7Yda5zCD3YmVHNVpIaiNAK/jJOIQ=
Subject key identifier: 32:EC:8A:2B:95:BD:23:E6:B2:CA:5A:01:F9:96:B8:3C:A2:39:1B:4C
Authority key identifier: 43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8
Certificate issuer: /CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8
Certificate serial: 0196545C7EF6DB54CDA140A7514BD8097367
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
Manifest number: 0DD2
Signing time: Sun 20 Apr 2025 18:01:09 +0000
Manifest this update: Sun 20 Apr 2025 18:01:09 +0000
Manifest next update: Mon 21 Apr 2025 18:01:09 +0000
Files and hashes: 1: Fy-RDVpoQYqhk9YIhC0_OXJ7Ngw.roa (hash: MSpbkpTae0BKWb0wW1Z5MLxX2eex/b1uULBuB1GrJoU=)
2: Q_2TYug7hS8_0zEbCQlvYommoPg.crl (hash: SjlmcF9R/pe69guYjZwGyukgQM1shTqZwCdlE30Uf6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:7e:f6:db:54:cd:a1:40:a7:51:4b:d8:09:73:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8
Validity
Not Before: Apr 20 18:01:09 2025 GMT
Not After : Apr 21 18:01:09 2025 GMT
Subject: CN=32ec8a2b95bd23e6b2ca5a01f996b83ca2391b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:12:65:80:1a:fc:80:9a:49:43:33:0b:26:f0:
d0:8b:47:13:18:62:fe:dc:9a:dc:76:24:7c:5d:74:
27:c2:ec:8b:07:13:87:35:95:5c:94:8a:29:96:5b:
36:0e:95:19:ff:61:2c:30:67:52:86:a8:5b:20:44:
23:7c:97:b3:05:55:3a:7d:4a:f3:cc:8b:2c:49:b4:
69:d8:60:2a:98:d4:69:45:8e:2b:9e:95:93:ec:85:
22:52:ba:5f:31:cf:ac:b0:f1:76:90:c9:e3:8d:d7:
49:eb:6d:06:4c:1a:b6:bf:49:49:d3:21:e8:93:3f:
a9:86:13:4b:23:f9:54:0c:25:e8:93:a6:96:db:75:
83:ce:a8:49:d9:8c:12:f5:28:93:56:ee:08:73:31:
c8:fa:a1:c0:43:d2:16:c7:06:f7:75:68:8e:7f:d4:
e9:fa:3d:9e:ed:b7:4d:58:a1:1e:f1:08:ba:4c:d8:
50:6a:cc:0a:90:17:49:1b:55:9b:11:01:7e:c2:56:
d8:90:39:8f:c2:11:c5:b4:26:7a:e9:8a:d9:31:83:
84:bb:6f:fb:69:2a:5e:e1:b1:17:45:d8:bd:a1:fb:
15:a6:85:26:99:16:b2:bd:f3:05:b4:42:d8:3a:80:
cc:14:5d:3a:f0:fa:26:de:d9:32:09:c6:82:fd:fb:
06:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:EC:8A:2B:95:BD:23:E6:B2:CA:5A:01:F9:96:B8:3C:A2:39:1B:4C
X509v3 Authority Key Identifier:
keyid:43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d6:8b:3c:a3:53:f7:98:90:f8:cc:09:01:36:b5:d7:68:c6:
15:e8:ca:e2:2b:c5:0e:62:ff:ac:92:84:75:c1:cd:cc:fd:d2:
b7:de:b1:f8:7c:4f:a3:98:ae:aa:ad:97:f4:4a:39:36:dc:2d:
d4:28:4d:d7:45:c8:d3:cb:3c:0d:9c:3d:8a:2a:1b:5b:d5:fe:
85:9f:cc:89:61:0f:5a:72:88:b5:2e:1b:5c:94:f1:46:5a:ae:
8a:25:ec:4a:f3:f5:40:2c:d7:e4:f4:a6:38:37:a4:da:2b:a4:
b6:36:3c:ff:6d:0c:b1:f6:71:06:1b:87:1b:9e:7d:e9:f1:ae:
81:ec:ac:89:0a:f3:ab:e4:53:f0:52:05:09:bd:2f:ea:08:0b:
8c:3c:54:c8:d0:3a:60:c6:a4:6b:4a:34:9b:e6:13:f4:d9:3f:
bf:65:c3:8a:7c:3f:98:62:1c:c8:5b:8a:2d:17:81:f8:dd:a7:
7c:f3:36:02:ad:52:c8:8e:ae:86:fa:cc:0a:f3:97:a0:5c:fa:
b9:40:d0:b0:22:4a:a5:54:20:e4:00:0f:52:40:dd:13:cf:f9:
a7:05:9e:08:59:be:da:f3:25:4b:44:ff:6b:ef:e9:bb:13:45:
6b:4f:9c:64:47:f3:50:bf:64:be:d7:9f:9a:31:a8:f6:2f:af:
6e:ba:a3:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:56:55 2025 by rpki-client