Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: PR0Ubv2RkP3XXcO6Cf7VekyehYm94UHLEJmWvWSWj4o=
Subject key identifier: 24:BF:90:1A:F3:AC:5B:F1:43:FD:52:1E:37:27:B0:87:30:4C:75:FE
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 019511D9BAEC5C6B5FC7800002FCD633E284
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1457
Signing time: Mon 17 Feb 2025 03:00:36 +0000
Manifest this update: Mon 17 Feb 2025 03:00:36 +0000
Manifest next update: Tue 18 Feb 2025 03:00:36 +0000
Files and hashes: 1: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: sk11Zm1aEFE25nVkWO0kH/p7emBQHbIbFP8fXQzkmok=)
2: xEzkfssYjKevzeoOO5X4YoPlUEM.roa (hash: XVhmZzjA2lTx9NfBnhkKpr5elG5hNpASyKi7U0uFnvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:ba:ec:5c:6b:5f:c7:80:00:02:fc:d6:33:e2:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Feb 17 03:00:36 2025 GMT
Not After : Feb 18 03:00:36 2025 GMT
Subject: CN=24bf901af3ac5bf143fd521e3727b087304c75fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8f:f8:50:5e:14:3c:06:63:c0:90:5f:d0:80:
b8:fc:6d:f2:93:9b:6d:99:0b:fa:b8:0a:64:34:11:
2d:56:73:4b:1e:1a:37:3c:83:22:90:20:4d:c5:7f:
3c:a1:79:52:6d:a0:bf:66:eb:f6:af:ce:3e:eb:36:
39:9e:8a:30:92:18:48:d3:3c:5f:84:1d:cc:34:da:
1c:8f:c5:a7:5b:a6:d6:e2:73:aa:86:d0:a2:1e:f9:
56:38:1a:82:80:c2:1f:48:8a:89:71:36:e7:2d:ef:
07:d5:88:a4:1e:dc:2a:51:c5:2c:32:7b:ea:03:50:
38:87:ac:61:bd:c6:aa:b5:2f:5a:44:e4:45:ef:01:
3f:21:63:74:25:0a:6d:1e:d5:d6:f1:0e:00:26:f9:
03:8b:5c:bc:6e:00:13:e6:21:5e:e9:48:26:83:36:
2c:d0:56:de:26:32:f9:a2:7c:08:87:f1:09:0d:70:
4a:02:75:15:49:a0:eb:0b:66:31:b0:31:d1:6c:a7:
7b:d1:97:02:e7:91:db:0f:e3:2a:8d:56:85:f6:a7:
20:1b:c6:e4:99:48:20:de:9f:e1:13:0b:ab:84:60:
51:9e:da:95:c9:44:8e:73:fc:5a:69:cf:b6:90:f0:
a4:90:63:bd:d5:41:e1:fa:77:fb:ca:22:7f:8c:62:
12:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BF:90:1A:F3:AC:5B:F1:43:FD:52:1E:37:27:B0:87:30:4C:75:FE
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:6f:f4:f4:57:b5:b4:37:0f:2d:9a:7d:cb:12:cd:d3:9b:e2:
f1:be:a9:8e:2b:c0:a1:cc:25:1b:b3:d3:68:07:5e:de:69:75:
7c:81:67:4f:14:f3:40:2f:cd:c3:c4:eb:ee:54:6a:7b:c5:8e:
12:54:32:e9:c2:66:6b:db:73:9f:e9:d6:dc:7b:51:72:eb:58:
cf:e9:4e:28:c5:3a:ce:2a:c6:8c:23:29:ab:20:59:e7:ad:00:
c7:2f:59:7e:4c:fe:df:26:90:f3:9f:6a:87:05:3a:e0:a3:0d:
86:b6:a7:9f:27:b6:e1:9d:6a:6f:66:00:49:2b:34:30:9f:a0:
b1:55:ff:10:b8:3c:20:85:68:fe:b4:18:6c:2a:2c:11:23:ab:
bb:93:0a:1c:e9:70:32:e1:db:8e:18:27:85:37:c2:e4:86:a0:
e5:f0:2b:bb:68:5f:6d:e1:38:3d:94:11:0d:2a:82:a8:5a:e2:
5d:d8:7d:d2:d3:e4:2e:0c:fc:13:3d:09:39:a0:40:0f:f8:0d:
36:01:b1:76:cc:3a:42:0d:80:35:e5:d3:df:61:1c:c6:85:f0:
99:88:05:1e:8c:3d:69:b3:b8:73:1f:dc:45:27:3b:a0:0d:52:
db:6c:bf:98:0f:eb:47:b7:d1:bc:a2:b0:dc:0f:1c:b3:46:3d:
89:73:11:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:18 2025 by rpki-client