Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
File: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft (raw, json)
Hash identifier: 0A97vCTBcIZOxQHH4Qoc2ZA4/XLrK/UvXjDQVqgx1qA=
Subject key identifier: AD:F0:09:48:EE:8E:F9:F8:A3:EB:76:83:8A:C6:9B:30:20:48:CD:6C
Authority key identifier: 42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2
Certificate issuer: /CN=42432a319f54b058372fd32528eae51fc90c15b2
Certificate serial: 01964F356E8AF584EC58AE3588F7C118CB11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
Manifest number: 01A9
Signing time: Sat 19 Apr 2025 18:00:23 +0000
Manifest this update: Sat 19 Apr 2025 18:00:23 +0000
Manifest next update: Sun 20 Apr 2025 18:00:23 +0000
Files and hashes: 1: Fg4gfGthOyzcFXfxEYyjwrss7as.roa (hash: mWUv12QovIjIHXpuDNAMlgedx6+BQ3vMWaiHrsA7+3A=)
2: Q5e6g1WUMRG4cL4aNZtJqqD_-yo.roa (hash: T3aZ91YVxRUkDJ96e4vMqo7oCynEMTZ2Xb8h0pZbGMo=)
3: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl (hash: gw0lkc/u+oESB7/gmUnk5rW4d3/255iWdKytZ2HlTOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 18:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:6e:8a:f5:84:ec:58:ae:35:88:f7:c1:18:cb:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42432a319f54b058372fd32528eae51fc90c15b2
Validity
Not Before: Apr 19 18:00:23 2025 GMT
Not After : Apr 20 18:00:23 2025 GMT
Subject: CN=adf00948ee8ef9f8a3eb76838ac69b302048cd6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ac:e8:2a:48:f0:eb:be:87:b1:76:6f:44:14:
29:e7:e6:47:c1:ca:cc:7f:d0:ca:36:8e:5e:b6:4f:
c5:a8:b6:ac:a0:cd:6d:c2:fa:43:d4:79:cb:c7:1b:
2f:87:0f:21:5e:1e:ae:10:15:e6:2a:ea:55:05:6e:
d1:b7:01:7b:19:78:34:2d:d3:6a:f0:4f:23:0d:e9:
a8:18:14:f4:9c:2c:f8:40:cb:ae:25:30:1a:e2:75:
b4:38:b5:ab:d0:e1:05:c3:61:97:6b:ef:e8:94:31:
05:50:04:23:62:d1:ae:52:0f:89:42:6f:ef:4f:4b:
db:5b:81:f5:c4:3f:85:e6:10:50:f0:5d:1b:5b:6a:
c3:7f:0e:42:47:8a:ce:7d:c7:76:6f:40:49:2d:9c:
5a:55:36:21:0d:d9:09:61:6f:42:29:b5:d8:7d:98:
4f:54:bf:d1:89:07:cd:b5:98:ae:4f:28:7a:d3:e1:
3c:12:86:78:ac:bd:bf:62:bc:b1:5e:72:f3:42:96:
c3:1d:02:98:aa:af:53:9c:d4:11:cb:df:f5:c4:b6:
ea:82:1c:4c:70:84:35:f3:e6:1d:ac:6a:d0:74:5f:
73:6c:4e:36:0a:49:c4:cf:30:36:4f:75:5f:df:08:
01:30:3f:c0:30:3e:05:42:e8:76:dc:e1:57:83:70:
a2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F0:09:48:EE:8E:F9:F8:A3:EB:76:83:8A:C6:9B:30:20:48:CD:6C
X509v3 Authority Key Identifier:
keyid:42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:4b:d8:74:29:6f:32:5e:72:0e:5c:98:b4:4f:95:a4:6d:bd:
b3:14:ff:56:b6:d0:41:a4:be:2e:34:06:b0:5f:30:59:49:86:
63:1f:69:51:64:dc:29:2a:60:4a:d0:e8:05:c4:8a:c9:ae:d2:
0c:31:55:0c:65:56:78:03:06:02:2b:46:34:fe:c9:07:6d:08:
87:f5:85:f1:a7:e4:6d:54:a3:d8:0a:6b:d4:ab:31:8e:0e:26:
39:4d:e3:51:1a:40:9b:26:d5:6b:8f:0e:c0:46:6e:ee:5c:6e:
03:d8:4d:cd:43:f4:8d:59:5c:bc:62:a0:01:f0:aa:38:6d:4f:
a9:7c:db:fd:9d:f9:88:ea:1f:fe:88:17:70:41:b8:13:85:96:
cb:d8:e9:aa:a9:6e:a2:d7:47:7f:41:0b:fb:66:e5:25:2e:4b:
c5:0a:46:73:a9:ee:f2:31:67:e9:e0:56:79:e1:d2:33:54:95:
31:6e:11:c0:f7:da:7a:c4:4f:b1:40:5f:9b:e2:b0:f3:86:12:
9e:16:5d:64:2b:22:f3:ee:e5:dc:41:25:c7:40:5f:ff:b4:15:
62:ce:c1:69:de:f4:fe:68:e3:85:a0:99:87:d1:a6:e2:4d:09:
7a:3e:f3:c6:e4:d6:11:36:e6:0b:47:68:39:08:05:20:59:d1:
be:6d:e5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:29:56 2025 by rpki-client