Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
File: qWpTYQ2O9mShJ1txquq7KFEEwk8.mft (raw, json)
Hash identifier: v36iYTO55ab40jjS+sKc0C5lWgWzbV4tPxq75oxFhXs=
Subject key identifier: 97:9C:E1:F2:62:C4:64:5A:7E:AB:1A:86:ED:AC:FA:08:20:D4:E2:5B
Authority key identifier: A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
Certificate issuer: /CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Certificate serial: 0194C38862AECB9006314BB2DEFA5D207DE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
Manifest number: 142A
Signing time: Sat 01 Feb 2025 22:01:22 +0000
Manifest this update: Sat 01 Feb 2025 22:01:22 +0000
Manifest next update: Sun 02 Feb 2025 22:01:22 +0000
Files and hashes: 1: qWpTYQ2O9mShJ1txquq7KFEEwk8.crl (hash: q8+7I9AXQepq+yZmv6+QA8kZFfHELsJbJXiKDhM4bkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:62:ae:cb:90:06:31:4b:b2:de:fa:5d:20:7d:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Validity
Not Before: Feb 1 22:01:22 2025 GMT
Not After : Feb 2 22:01:22 2025 GMT
Subject: CN=979ce1f262c4645a7eab1a86edacfa0820d4e25b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cb:6a:29:66:20:65:9d:20:f1:99:8e:95:b6:
4b:4b:8d:be:46:66:b3:ba:05:93:b8:8e:d5:0a:cf:
c0:09:61:be:b9:9e:6e:c4:40:05:7e:96:4f:b5:6c:
49:e8:74:1c:b1:bd:54:f2:17:6c:51:a7:f3:a8:5b:
7b:97:f0:50:d4:ce:fc:48:78:9a:67:e5:b8:56:24:
dd:39:eb:3c:a2:32:17:84:c1:56:e7:ac:ae:a0:46:
b2:30:13:85:a9:5e:6b:50:8e:bf:cd:fe:c9:0b:36:
98:85:61:fb:55:cc:3e:56:49:fc:d9:9f:26:b3:41:
08:4c:96:1f:02:c7:f2:2b:4e:7d:00:88:20:12:ac:
67:61:a1:d0:51:be:8b:b5:4c:28:23:4d:7d:7d:74:
bd:db:59:fa:f9:a6:44:48:25:e5:c7:d5:39:52:6a:
cf:e9:89:f8:29:2f:4b:1f:93:41:3c:27:e3:3d:63:
38:e7:d0:b3:d9:ec:e8:fa:56:16:fa:d3:19:a7:35:
b5:61:ee:e8:ad:1d:70:32:85:e4:d2:ce:bc:8f:7f:
57:a2:61:bd:d8:e4:20:a0:3f:49:bf:d4:3b:51:3e:
30:66:5e:98:42:4d:40:11:19:42:d8:3b:ab:0c:ee:
f7:e1:53:6e:3e:cf:5a:f5:d0:ca:7e:fc:10:bb:e0:
7a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9C:E1:F2:62:C4:64:5A:7E:AB:1A:86:ED:AC:FA:08:20:D4:E2:5B
X509v3 Authority Key Identifier:
keyid:A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:c0:d8:db:50:d6:a4:54:8d:77:3d:38:52:e5:69:53:f5:23:
33:8b:de:60:15:15:90:14:10:0e:36:6a:01:0b:c1:b1:cb:72:
5f:85:3d:16:2b:f4:c1:08:d2:2c:e7:ac:c2:be:09:d3:0c:06:
c9:f4:d5:f1:e9:07:97:5a:49:ed:6d:10:94:20:ae:21:07:f0:
3b:11:34:ac:aa:e1:48:f2:3b:84:12:69:6d:e9:4c:42:cd:42:
85:ed:ba:c8:9c:93:66:cf:66:12:e1:1c:a7:2f:27:ff:2f:27:
a3:59:13:a9:cd:61:52:5b:22:3e:03:3b:d1:66:b9:bf:15:cc:
11:37:f0:99:f3:ad:7e:5d:8c:ad:be:c8:3b:c8:e0:5d:dd:2d:
72:54:5b:c5:f7:2c:e9:79:1c:8c:e0:c6:d8:17:c1:7c:11:85:
5d:b2:27:88:ce:be:1d:ff:d6:be:f3:f2:03:51:ef:5a:f7:80:
21:86:22:fa:ba:83:b6:b1:35:56:ff:7f:40:c9:3f:33:47:61:
2c:81:e0:a3:e7:7b:81:82:f0:2e:fb:82:1f:d1:37:38:b2:ba:
75:0e:04:10:ea:6d:07:fc:2d:fb:88:38:7e:31:5b:8a:3e:0e:
81:08:c3:73:3b:5a:39:9c:85:7e:d3:b4:70:5b:7e:2b:c1:b2:
33:36:3c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:22 2025 by rpki-client