Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: 1MIubW/s5BHu6CsN16wij1rbT3Ju5VNCUILa5J+NuhQ=
Subject key identifier: CC:FD:88:B0:0E:90:1C:9C:64:5F:65:22:7D:DE:AB:AC:D4:6F:8A:0B
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 01964FDAC58F1A9B0993B955A7E595C7611A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 0229
Signing time: Sat 19 Apr 2025 21:00:59 +0000
Manifest this update: Sat 19 Apr 2025 21:00:59 +0000
Manifest next update: Sun 20 Apr 2025 21:00:59 +0000
Files and hashes: 1: 21zXl1VT2wOLl9fEbNkRa053DOE.roa (hash: 5emuQVjcm3y58xrRXNGECOspFNylmBXZoEALIIh48B4=)
2: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: JIaSTm557EZkbqh6uB+aoyEdy54mUSnqUMGHrHSs3hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:c5:8f:1a:9b:09:93:b9:55:a7:e5:95:c7:61:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Apr 19 21:00:59 2025 GMT
Not After : Apr 20 21:00:59 2025 GMT
Subject: CN=ccfd88b00e901c9c645f65227ddeabacd46f8a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:97:0e:04:15:29:db:71:32:14:9e:3c:5b:a3:
29:74:f9:aa:c4:3c:42:0d:5d:ac:35:36:8d:65:7c:
bc:56:2c:0e:8b:26:41:69:18:01:1d:85:47:fa:e5:
24:26:df:c2:22:e6:1d:ce:c2:c1:50:89:e5:db:a2:
6d:fc:ef:2b:dc:ee:29:a2:0e:54:4f:97:f9:08:82:
91:9b:21:30:c5:57:b2:a7:f0:c8:28:28:26:6d:f6:
9f:d4:ab:0e:2f:c0:07:21:e4:d0:11:47:ad:7e:53:
f7:c6:ca:a9:68:54:81:d1:f1:eb:9a:26:fc:02:85:
b6:5d:df:44:69:5a:5c:17:ea:e1:bd:c3:44:cf:bf:
a9:3e:5d:38:42:0d:f4:e2:72:30:fd:06:3b:6f:0b:
aa:76:ad:af:61:63:a9:bb:08:c9:6c:5d:af:12:e3:
16:d8:9d:26:6d:c3:f1:92:1a:c2:56:87:a4:a1:63:
75:4b:05:e9:aa:19:8b:6e:b0:53:13:5f:80:e7:6c:
9c:e1:3b:02:3c:6f:41:60:ff:61:14:ce:13:bd:d4:
81:c5:36:1f:6c:01:06:49:0f:0c:16:13:b6:f3:34:
08:05:d0:90:2c:79:d3:23:cc:e3:26:8e:80:b4:86:
9d:02:4b:6b:42:b1:e2:49:9e:4f:f7:4b:44:59:61:
a9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FD:88:B0:0E:90:1C:9C:64:5F:65:22:7D:DE:AB:AC:D4:6F:8A:0B
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:70:7b:21:ac:ed:ba:d7:a0:4b:54:9a:f0:11:e3:77:6f:ad:
1a:f6:1f:80:18:3e:2d:c7:68:d5:e4:42:15:16:96:1a:60:5d:
a8:5f:2b:64:7f:10:b7:e0:09:4b:8e:b6:e3:e2:ac:bf:28:88:
4d:40:b3:ca:06:25:b9:b6:6a:41:21:d3:22:86:45:41:26:a9:
93:40:99:07:a9:99:59:72:53:ed:5d:38:6a:8c:b4:43:5b:ca:
50:5e:04:52:dc:47:33:3a:76:14:60:f4:99:11:7c:c1:bf:ef:
c0:88:3f:e5:81:41:89:7b:26:4b:3e:8d:0e:21:6a:7b:62:ce:
d5:3d:0d:dc:6b:d3:42:b3:1c:58:1e:f9:5c:54:cd:aa:26:81:
d0:e1:d3:34:da:23:4b:55:f2:a6:7e:48:1b:4f:77:54:92:e0:
84:09:35:b7:a9:23:b5:f0:95:54:18:ea:56:c9:7d:99:7f:72:
6c:29:b7:c7:00:bd:b8:e9:14:8c:90:5c:e8:80:a0:cf:fb:e2:
f8:6d:86:f2:fc:02:67:99:a7:96:92:be:93:70:43:8e:2f:b9:
c9:b7:ae:3f:0e:07:f8:0c:c8:0b:58:3c:7c:2d:e1:05:fe:5d:
b6:69:82:77:49:69:01:f0:91:34:b2:f9:fd:57:81:07:cf:0d:
d8:34:4b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:00:57 2025 by rpki-client