Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: v0A7P0Can2e9ZIGBeOQPOQbq2I0ctViPW5q1ZNBv7lQ=
Subject key identifier: 39:6F:90:BD:4F:2E:4D:C7:80:2E:8A:56:EE:BF:4F:9E:11:9C:8B:D4
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 0196553827989A3723870AAE6D1199EA0026
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 22:01:05 +0000
Manifest this update: Sun 20 Apr 2025 22:01:05 +0000
Manifest next update: Mon 21 Apr 2025 22:01:05 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: 6demNqIJM3xBT4jQ4NupxSwtjByOdAgQP31dXft9WB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:27:98:9a:37:23:87:0a:ae:6d:11:99:ea:00:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Apr 20 22:01:05 2025 GMT
Not After : Apr 21 22:01:05 2025 GMT
Subject: CN=396f90bd4f2e4dc7802e8a56eebf4f9e119c8bd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:36:6c:a4:4c:e4:fd:0e:26:68:31:d5:06:dd:
4e:51:62:0b:4b:b1:4c:bc:48:e8:94:b1:b9:09:95:
46:39:b8:d1:be:33:30:e1:42:ee:ca:f3:16:b5:da:
e4:58:61:19:03:25:f3:1b:b6:2b:50:4b:dd:cd:78:
d0:ae:32:99:64:79:27:79:2b:66:72:7a:be:29:df:
2a:cc:f3:0f:be:a3:85:d9:fe:b0:8f:3e:55:04:7d:
d7:66:58:14:93:41:19:78:f5:d2:9b:2a:d3:a6:98:
d9:ad:e2:c9:0c:72:00:da:c6:54:38:c2:39:25:96:
9e:bc:b3:3b:6f:45:75:81:96:2a:cc:62:a3:be:37:
fa:a7:d8:3a:2f:96:e6:66:5d:46:b8:6c:24:ff:c2:
93:64:e9:95:bd:d9:d8:89:13:18:32:05:b3:04:9c:
7e:72:80:41:36:2f:70:84:4c:4d:7c:b1:1b:55:c0:
dd:50:f0:be:d8:27:a9:e6:0a:bd:d1:b8:d5:69:64:
08:3f:a2:70:b7:a3:7e:85:60:3d:e8:c6:e3:f7:cd:
b4:e0:1d:73:18:f1:e9:15:c5:7a:90:9b:58:18:7c:
76:23:4c:d7:bc:a6:01:2c:9d:01:59:f8:5d:aa:9e:
d5:e8:71:73:6e:ca:9a:c5:37:c2:84:00:bc:a3:0c:
6d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6F:90:BD:4F:2E:4D:C7:80:2E:8A:56:EE:BF:4F:9E:11:9C:8B:D4
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:cf:16:73:0d:29:08:3e:a4:7a:42:46:24:03:22:30:04:2e:
af:27:21:a2:2e:10:a1:aa:32:02:bd:f0:1e:bd:4a:0e:81:6b:
bd:4f:f1:68:1e:ae:99:46:26:56:4e:63:ff:5b:d0:14:fc:34:
8d:f5:8c:9e:ab:3b:d1:b7:53:eb:e4:f7:91:90:70:4d:5b:17:
74:de:d5:da:6d:1d:96:fc:65:a8:fa:8d:51:e6:df:50:44:90:
33:5a:33:d0:15:a3:ca:48:47:94:e7:e5:95:14:7a:dc:b5:2a:
7c:42:7e:5d:dd:7e:be:52:52:b1:2b:d9:79:f2:ac:5f:c6:c8:
be:11:4c:be:f2:fb:ac:ac:b1:4f:a0:a0:24:eb:5e:7b:2f:4d:
60:5a:e3:6f:14:48:79:5b:12:19:bb:d8:85:18:e0:e3:ff:9c:
89:21:99:a6:11:0e:05:d3:70:65:e9:da:00:0d:68:7f:0c:e1:
3c:b4:b9:d9:34:91:06:6d:e3:58:e5:ad:13:f3:43:78:7a:48:
c5:57:a5:03:6d:60:ae:bc:70:cc:1f:54:a2:d8:e1:9e:7c:1b:
d3:a0:19:a0:b2:a4:42:8f:69:bd:88:f9:e2:b2:8b:65:e5:2c:
70:82:6b:b7:47:ba:d8:fb:5c:7b:e6:9c:42:1c:59:5e:33:66:
b6:2c:29:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:23:46 2025 by rpki-client