Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
File: QM_TpJvHHnSg0L9-NGyomylZehI.mft (raw, json)
Hash identifier: r1NlA+dKFkuvqjOubPnJlm6qcKEssns3J+4Ohar3knM=
Subject key identifier: 06:94:C9:D9:7F:77:9B:C2:CF:1F:C1:CD:75:B3:59:6B:CE:9A:43:2B
Authority key identifier: 40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
Certificate issuer: /CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Certificate serial: 01964D7DCFCE8C7A1D98064B9956357A0741
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 10:00:12 +0000
Manifest this update: Sat 19 Apr 2025 10:00:12 +0000
Manifest next update: Sun 20 Apr 2025 10:00:12 +0000
Files and hashes: 1: QM_TpJvHHnSg0L9-NGyomylZehI.crl (hash: D7HtOD3i+vuRA12FdP8wy5FmPgroQy7ktfLdTKskg/8=)
2: cOU0f1SCKSAnKUQtSDidcXUui3Y.roa (hash: SxetuqQIAbe3h1o0xhzW+JEeQWRKvCIOYuGwJHKjEXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7d:cf:ce:8c:7a:1d:98:06:4b:99:56:35:7a:07:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Validity
Not Before: Apr 19 10:00:12 2025 GMT
Not After : Apr 20 10:00:12 2025 GMT
Subject: CN=0694c9d97f779bc2cf1fc1cd75b3596bce9a432b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:61:a6:27:66:b8:02:85:e8:03:19:6c:31:7a:
c4:07:73:40:97:67:cc:be:60:f0:92:82:c6:9d:e5:
04:a5:ac:08:e5:2d:51:60:8e:67:2d:ed:e2:7b:cc:
eb:5a:6e:ab:ac:9a:50:10:dc:ab:95:d9:e4:c1:7e:
56:a8:d6:88:45:6f:2d:82:29:0f:0e:e1:f0:05:36:
39:bd:38:ad:2b:59:72:31:d8:e0:fe:0c:18:e3:16:
fd:25:1d:90:d2:4d:b2:99:79:cf:5a:38:02:2e:e6:
94:38:e3:08:72:df:c3:a0:90:e1:bf:59:8b:9f:40:
ff:ef:59:62:d7:a8:ae:e4:55:65:13:f7:9a:b5:9c:
56:5a:5e:ef:78:b1:9d:81:16:06:7a:5f:f0:d8:a2:
2c:ac:0e:93:e6:5e:87:63:4a:0b:14:fb:25:b3:04:
7f:ce:43:0c:ab:ff:d3:c7:e4:82:6d:a5:62:43:b8:
e4:97:57:41:29:fb:09:67:19:95:66:ed:d5:90:fd:
c8:19:d0:f7:36:d4:d7:41:f3:25:cf:6c:19:f3:a7:
bc:30:b0:21:69:ea:e1:11:e2:61:83:45:c1:19:23:
1b:72:fb:a5:ba:57:46:d2:ef:43:5f:38:8f:b0:3b:
6d:17:26:bf:55:05:95:b0:36:72:7c:a6:13:78:65:
3f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:94:C9:D9:7F:77:9B:C2:CF:1F:C1:CD:75:B3:59:6B:CE:9A:43:2B
X509v3 Authority Key Identifier:
keyid:40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:17:f8:76:a0:ff:d9:f0:73:82:2f:d1:0d:45:78:36:db:8c:
c9:9c:99:4f:cf:fb:b4:23:12:5d:0b:08:bc:de:1a:c8:a2:e1:
5e:36:dc:41:c8:a5:ea:be:cf:6d:99:a7:98:2f:72:28:ac:19:
0c:08:40:b9:6a:36:5e:b8:82:54:06:77:74:39:ef:01:d0:16:
c3:82:d6:07:16:c4:ae:bd:60:04:98:5e:4a:24:63:2f:66:2e:
04:3b:ad:8f:18:63:f5:fc:b0:b3:1c:c7:de:ac:0d:e1:3c:e6:
4c:79:e8:eb:66:e9:35:5b:9a:b5:5a:50:f8:97:23:76:fe:92:
4a:ce:e3:e8:c8:03:dc:98:eb:e4:36:ea:68:41:6f:df:dc:5d:
63:43:88:bb:d1:29:e4:2c:f9:c4:43:74:31:bb:40:dc:45:36:
ee:45:d5:63:0c:74:16:2f:fa:b0:78:41:c5:9a:85:7c:30:6f:
c5:8c:54:d4:70:e5:96:b5:f4:08:1f:e6:f0:a2:f6:05:34:7a:
e1:c3:19:5d:98:dc:18:30:df:ab:aa:6c:96:33:a9:42:61:91:
35:c0:83:c7:9f:f5:90:e1:d9:24:1a:08:28:6a:51:b6:db:ac:
0b:2d:01:7a:59:8d:bf:a1:10:92:24:20:5d:ca:fb:24:1d:db:
d0:31:b5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:06:37 2025 by rpki-client