Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft
File: qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft (raw, json)
Hash identifier: YkzP+RjAd4SBhD/CTFxbNm1Cm8PYuVENLenJHRqYKLU=
Subject key identifier: 67:F1:B2:D9:3F:E2:30:1A:89:A3:CE:6C:72:38:6C:73:DE:7E:57:16
Authority key identifier: A8:22:07:FD:50:C4:5E:96:F2:82:5E:C7:72:CF:6B:8D:EA:3D:FC:B0
Certificate issuer: /CN=a82207fd50c45e96f2825ec772cf6b8dea3dfcb0
Certificate serial: 01965011B0F7EFB7E2DF45E245D9E716B6AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft
Manifest number: 0437
Signing time: Sat 19 Apr 2025 22:00:58 +0000
Manifest this update: Sat 19 Apr 2025 22:00:58 +0000
Manifest next update: Sun 20 Apr 2025 22:00:58 +0000
Files and hashes: 1: gHCDIdhOuUpwW3kY6kopG285_k0.roa (hash: 5xiT0kgNZs49N5lk+a3OABaCYPVOiGuQ90iKWrfQblE=)
2: qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl (hash: nNfKF6PIc/CanqVvhlKK0qgH0rNO5mF6QFbrjXL0Sos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:b0:f7:ef:b7:e2:df:45:e2:45:d9:e7:16:b6:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a82207fd50c45e96f2825ec772cf6b8dea3dfcb0
Validity
Not Before: Apr 19 22:00:58 2025 GMT
Not After : Apr 20 22:00:58 2025 GMT
Subject: CN=67f1b2d93fe2301a89a3ce6c72386c73de7e5716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:56:44:ec:e0:78:19:27:11:37:54:05:1c:64:
8c:3e:76:c1:54:f6:3d:2d:f0:03:94:9b:4f:ed:7c:
24:2c:85:65:c7:69:66:8b:ea:19:58:3d:b9:46:1d:
d4:82:d4:24:d2:ac:33:50:82:83:85:4e:10:d5:16:
69:66:b8:c6:16:3f:49:7e:4b:a5:21:70:14:96:60:
9b:27:d6:d0:d8:7d:83:37:ac:8e:9d:d1:56:05:30:
d7:26:e3:e4:c4:08:5a:fc:bc:29:13:87:89:fa:2d:
9e:3a:67:44:6d:27:96:2e:6a:19:a3:fc:40:58:89:
9d:c3:37:28:dd:4d:62:3e:b7:69:bd:58:55:a0:20:
6f:5e:bf:e4:e4:29:12:76:c8:41:a0:f1:51:a1:fb:
5b:45:63:71:e4:53:a9:fe:06:95:ab:d4:92:8e:6e:
96:28:9a:66:de:8e:19:87:c9:68:4f:f3:5c:cc:8c:
ae:c1:4f:94:ad:b4:46:8f:b6:99:eb:7a:3b:c7:33:
7c:41:0f:5b:f5:ed:51:e1:a2:ce:bc:2f:fb:ea:63:
22:12:7b:bc:d3:c7:2b:8e:c4:22:b5:30:11:61:e3:
2a:a5:bf:60:f4:b2:0c:09:0c:8d:95:d0:4d:4d:82:
12:77:66:e9:b4:78:54:f6:78:1a:08:79:02:6e:a0:
d2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F1:B2:D9:3F:E2:30:1A:89:A3:CE:6C:72:38:6C:73:DE:7E:57:16
X509v3 Authority Key Identifier:
keyid:A8:22:07:FD:50:C4:5E:96:F2:82:5E:C7:72:CF:6B:8D:EA:3D:FC:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:84:4d:08:f1:24:da:5f:14:a7:bb:bb:e9:f6:11:4f:6d:5f:
6b:4b:8d:b3:4f:4b:21:30:fd:f1:62:8a:a1:8f:40:01:97:1a:
65:e1:b0:9f:2a:a2:ef:f9:5f:ca:9a:51:41:99:e4:e3:ed:28:
1d:de:d0:89:03:db:f2:e4:ea:66:82:fc:76:a7:9e:8d:32:c9:
a3:5a:ff:d2:ed:3b:2f:cf:7c:40:67:a8:54:26:bb:0b:f5:f4:
70:69:26:75:3e:ed:ea:63:97:4a:9a:ab:dd:37:ec:ba:0e:f1:
e7:1a:86:69:e1:bb:34:4a:41:5f:a6:96:18:6e:8a:6c:6d:cf:
54:f9:98:61:a7:31:f9:da:01:b9:ba:20:fc:d9:ea:9e:99:c2:
8c:05:25:35:99:5a:4a:e9:d0:38:74:21:2d:bb:ba:28:b9:f8:
9b:3f:77:5d:93:b1:f3:a3:a0:66:f3:e5:cd:d1:3e:28:8f:63:
e4:36:63:f2:66:b9:31:4c:e6:23:e7:02:96:da:ce:28:95:7e:
58:df:cd:03:4c:b4:1b:87:81:3b:b6:dc:3e:32:69:32:57:bd:
5c:cb:fc:d4:f5:8f:9f:8b:fa:51:d0:35:dd:4b:86:af:b3:3a:
fa:3a:e3:c3:2d:b9:34:70:0f:0f:59:bb:d5:3e:df:fc:ac:57:
27:e6:d0:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:13:00 2025 by rpki-client