Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
File: qajkTlc8U8cZIxL8xyFQ0t43fW0.mft (raw, json)
Hash identifier: p+rFvwNRZgMSBehfquxOV+LEzanITnRyQXJP3T0eZiM=
Subject key identifier: 19:77:85:7C:7A:92:3D:D2:3C:40:92:7F:B7:DD:E6:6F:36:0B:50:09
Authority key identifier: A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
Certificate issuer: /CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Certificate serial: 019644E89A985890BEC4AF61B38D1266E7F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
Manifest number: 14FB
Signing time: Thu 17 Apr 2025 18:00:16 +0000
Manifest this update: Thu 17 Apr 2025 18:00:16 +0000
Manifest next update: Fri 18 Apr 2025 18:00:16 +0000
Files and hashes: 1: CTedhf-UDhDCo0gKWN1eFB95iME.roa (hash: Vr6y6sdI8B/BSyNE6gcBQftZW1dE4fIdtomKsz3LLNE=)
2: qajkTlc8U8cZIxL8xyFQ0t43fW0.crl (hash: FkCrJ4JsTFFbGqg/NyWmbD0CSt3lWty2D4l7x8HG3fU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e8:9a:98:58:90:be:c4:af:61:b3:8d:12:66:e7:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Validity
Not Before: Apr 17 18:00:16 2025 GMT
Not After : Apr 18 18:00:16 2025 GMT
Subject: CN=1977857c7a923dd23c40927fb7dde66f360b5009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1d:af:6b:63:69:2f:b5:f2:eb:f7:50:67:95:
61:eb:a2:ab:ab:f4:af:36:fb:4d:64:26:86:87:63:
8f:72:68:10:f9:fd:51:4d:e1:ed:78:d9:5d:c5:94:
a1:11:fa:b4:a7:ea:58:69:b8:4f:c6:32:ac:83:fe:
8b:83:97:50:36:66:be:b9:51:28:60:f2:17:3d:15:
89:62:24:4f:85:48:1e:80:fa:9d:88:36:5f:4c:94:
ab:cb:9f:68:5a:e4:c2:39:4f:a5:bb:ce:68:7c:4c:
8c:40:81:bb:03:50:8f:ea:7c:aa:f5:37:72:00:3f:
88:e3:08:8d:95:ee:75:41:d7:70:b9:42:ff:a4:06:
20:99:6e:0e:c6:ba:c3:92:51:3c:80:d7:8c:b2:9d:
33:0f:00:91:c8:64:af:84:56:91:44:f6:63:60:a2:
df:89:ce:e0:40:be:e0:07:49:aa:3b:aa:2c:3e:41:
1d:f9:42:76:5c:4f:d9:d1:36:f9:59:9d:db:3a:2a:
4a:08:2f:d1:ce:bd:9c:82:85:b2:ee:22:90:4b:eb:
6e:89:12:8a:7e:bd:cd:14:35:ee:03:3b:82:e5:65:
11:46:b2:28:ef:1d:cf:55:28:c0:0f:bf:d7:08:db:
93:57:58:4e:22:3e:77:aa:c6:34:e4:a4:6f:bb:a0:
f6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:77:85:7C:7A:92:3D:D2:3C:40:92:7F:B7:DD:E6:6F:36:0B:50:09
X509v3 Authority Key Identifier:
keyid:A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:f5:78:e3:6a:be:a4:ed:62:53:a5:fb:f0:fe:ba:1d:e5:2d:
34:7a:ba:af:dd:bf:a0:14:4e:29:c2:68:a3:e3:33:96:53:41:
22:99:04:55:83:68:fa:d1:6e:26:59:fc:26:69:35:fc:ed:6a:
b0:28:af:9c:a9:62:65:d8:e5:d6:17:22:62:4a:e1:c4:5c:fc:
67:3f:7a:c9:da:d7:38:e4:2e:8d:86:cd:d5:1a:13:c7:5c:c2:
c2:2a:3d:37:81:48:db:95:25:0d:43:cc:cd:98:d0:3d:bd:af:
11:16:4a:d6:1e:aa:93:9e:e7:b8:e8:9e:7a:b9:af:a0:c2:fc:
58:19:3c:34:b2:e4:65:b0:4d:b5:d1:81:25:c6:fa:86:35:c4:
bd:5d:a3:3b:27:96:38:65:04:1d:d6:a5:da:ad:09:9c:64:33:
5d:6b:be:b9:de:80:b4:37:70:28:7a:21:e3:a5:ad:f0:fa:cb:
0f:4d:53:5d:73:dc:e8:bc:07:84:f3:bc:07:04:27:24:62:f8:
6f:91:ce:1e:3c:3e:4a:ec:9e:65:14:0d:ef:e8:72:67:ee:53:
68:35:00:f7:9c:e6:49:59:34:4a:ab:c3:37:74:28:b9:11:83:
b4:2a:57:3d:ca:c4:65:e0:3a:d6:06:ed:03:c3:89:37:20:95:
4b:99:5d:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:10:33 2025 by rpki-client