Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: HccpmL+2VifPnUtHCh140Rbht0GGxKfnm8Dn8Lfktjo=
Subject key identifier: 33:9B:22:48:12:70:BE:24:93:9B:4C:BB:F5:2C:A1:24:58:4E:20:39
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 01964BFDE4B101CB8EA8BE4958693E7CFD3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 03:00:52 +0000
Manifest this update: Sat 19 Apr 2025 03:00:52 +0000
Manifest next update: Sun 20 Apr 2025 03:00:52 +0000
Files and hashes: 1: QLHEJas53oiAGzs_YSaCGuwaZeU.roa (hash: OfpByeH9dDyJ45cIcWM9guSmvu9MoGjj7YKQgKOyd/0=)
2: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: c6M0BVd8ijfXkmuHFKLEgRfuKUj0gZtXgnJqgbJdgtw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:e4:b1:01:cb:8e:a8:be:49:58:69:3e:7c:fd:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Apr 19 03:00:52 2025 GMT
Not After : Apr 20 03:00:52 2025 GMT
Subject: CN=339b22481270be24939b4cbbf52ca124584e2039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b3:79:ec:4e:f1:3c:8d:e9:2a:24:6c:4a:9e:
3d:d8:91:9f:49:9b:77:f8:23:98:06:82:c5:16:2c:
89:9e:e1:02:a5:93:9f:24:55:a1:2c:71:7c:6d:8b:
d7:bd:c1:3f:c0:ee:31:e4:89:19:43:ab:cc:9d:90:
1b:d6:d2:a9:52:2e:3e:91:7b:33:35:65:e2:77:1b:
30:b9:89:60:70:00:46:78:ab:20:a6:4a:da:b7:9f:
21:6c:d4:56:f6:c9:aa:8f:81:93:4c:ba:92:87:09:
84:1e:41:3b:69:5a:de:c7:0d:c1:85:88:67:8d:c5:
d2:2f:f7:79:72:9c:89:70:d4:e5:4a:06:ce:41:87:
c5:32:85:b9:ce:a2:0f:ea:c6:df:f3:af:8d:8e:83:
a9:38:ed:74:0b:5f:19:c6:c2:5f:f0:c7:5f:d3:af:
45:09:f8:47:ee:c3:9e:cb:fa:98:4d:95:fd:73:5d:
af:f2:7f:96:43:03:08:46:33:59:4e:50:68:c4:2a:
a2:59:31:e5:67:f5:b5:f8:47:eb:4a:e6:2b:a1:3f:
0d:16:76:6c:00:8c:cc:43:c5:9d:c7:c2:1b:29:63:
a8:cc:35:fe:5f:0b:87:df:a3:ce:a1:e9:11:68:b3:
f4:64:d0:7a:df:b4:30:17:b6:92:5b:6e:47:4e:d7:
73:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9B:22:48:12:70:BE:24:93:9B:4C:BB:F5:2C:A1:24:58:4E:20:39
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:df:0a:22:0a:21:c7:1e:9b:bb:8b:37:f9:71:00:d7:6e:e8:
95:07:83:aa:42:ce:5c:fe:c8:7a:65:f2:f4:12:ea:32:c7:ad:
d1:39:16:3d:1c:69:0d:5f:87:72:fb:01:dd:87:07:a2:0a:6d:
59:2d:75:84:c5:bd:93:29:9b:6a:03:c0:21:7a:ef:42:96:c1:
32:d0:70:9e:a5:6f:cb:b0:14:59:ee:03:54:d3:c0:e5:c3:7d:
78:49:8b:11:f8:f6:6c:7a:ef:dd:c8:3c:e2:b5:02:da:61:ca:
1c:d9:d1:0e:fd:31:04:1b:71:ad:27:2e:e0:1a:b7:7e:fa:02:
66:03:29:1c:96:73:c7:e9:36:d9:82:5c:88:e6:48:e8:cd:63:
11:a6:8f:39:40:a1:24:71:ec:cc:01:b1:7d:81:a3:3f:7a:bf:
51:6a:db:66:d5:66:6a:1b:48:36:e4:c4:4e:16:85:66:fb:a2:
dc:db:dd:86:b1:84:2d:79:07:77:8a:71:82:10:66:f7:c6:8a:
a6:7e:a4:de:86:ca:84:c4:d5:e7:4f:87:93:9c:71:fd:37:42:
ad:04:df:3b:26:54:9c:2c:ea:2e:51:3d:91:2a:e7:2d:e0:e3:
4c:f9:82:fb:ff:b7:a2:9d:09:ee:66:c5:56:60:70:19:0b:ce:
b9:f3:d7:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:36:35 2025 by rpki-client