Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
File: Q8d7RzY2gTePrORmFB1UzIg5nPU.mft (raw, json)
Hash identifier: zet4zDzmqtSNB44a2DeEZVbYtM1rhq3QauLF5yfop4A=
Subject key identifier: 4C:2C:95:17:90:39:15:24:F3:BD:0C:0E:1C:9A:AF:04:E0:C7:3C:B3
Authority key identifier: 43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
Certificate issuer: /CN=43c77b47363681378face466141d54cc88399cf5
Certificate serial: 019638401EB7495915E84BC55B2A3394457A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
Manifest number: 1480
Signing time: Tue 15 Apr 2025 07:00:48 +0000
Manifest this update: Tue 15 Apr 2025 07:00:48 +0000
Manifest next update: Wed 16 Apr 2025 07:00:48 +0000
Files and hashes: 1: LhVPheiP2Wbqe7xFjCy9IQ_CSc0.roa (hash: Jd5k/N8+tstl7PIZFFMbIYM8R6nDjGK5pnVrR8G85AA=)
2: Q8d7RzY2gTePrORmFB1UzIg5nPU.crl (hash: clH8R9Io9Cq92tXJuNfdctyy/qs/0T4rNXmfEdx+aVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:38:40:1e:b7:49:59:15:e8:4b:c5:5b:2a:33:94:45:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c77b47363681378face466141d54cc88399cf5
Validity
Not Before: Apr 15 07:00:48 2025 GMT
Not After : Apr 16 07:00:48 2025 GMT
Subject: CN=4c2c951790391524f3bd0c0e1c9aaf04e0c73cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7e:6c:6f:67:56:2e:f6:de:1f:53:ed:33:d4:
11:2c:dc:30:4e:62:46:36:ec:cd:6d:85:ea:ad:e0:
68:ee:88:36:27:59:fb:eb:ab:fc:26:30:af:0a:70:
02:30:4d:e1:1d:32:f8:1b:5e:7c:22:c6:e0:7d:8e:
50:59:0e:f3:72:df:5d:5d:70:51:77:27:7d:a0:5c:
3e:6e:dd:09:e0:a1:9a:81:ad:48:c0:37:9a:59:6d:
02:94:ee:37:d5:24:30:97:ca:b3:f7:0d:d6:ce:84:
95:40:b4:4f:ac:91:d1:e7:9a:22:7c:f7:1c:e2:7b:
b9:63:46:92:15:bd:f6:47:45:19:8b:8e:06:5c:5f:
36:6d:40:94:cb:46:50:45:e4:87:df:e3:9c:ac:38:
fe:a7:57:6f:2a:61:22:8d:e8:15:74:fd:b9:88:cf:
f5:20:af:12:9a:76:43:c4:81:b7:e9:43:29:08:9b:
32:5b:e3:bc:c5:58:60:1b:72:43:c3:d6:42:a8:96:
57:f2:37:8f:12:4c:64:15:69:52:c3:9c:af:22:b5:
6f:af:92:f1:22:3f:10:b8:65:1e:76:0a:75:d4:3d:
99:3a:a9:d8:6b:a9:7d:10:80:bd:80:69:b2:84:02:
65:45:40:2c:49:85:91:ae:7b:76:90:04:f9:9c:4c:
9e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:2C:95:17:90:39:15:24:F3:BD:0C:0E:1C:9A:AF:04:E0:C7:3C:B3
X509v3 Authority Key Identifier:
keyid:43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:ee:3e:51:df:08:0b:75:22:9b:48:8e:a4:30:ad:6c:05:86:
14:be:33:42:f3:73:24:18:a3:e1:ab:50:ea:67:85:90:5d:f2:
c6:c3:35:0e:3e:36:f1:e2:8b:74:9f:2d:75:52:3a:14:25:47:
3e:fb:49:be:8d:cf:87:af:60:5d:ba:d7:3a:de:d4:4a:9a:25:
e6:ca:0e:90:00:a0:25:5c:fd:94:e1:3c:d7:b2:63:41:79:04:
bc:14:4a:c9:42:c0:88:ce:06:d7:db:63:86:a5:ad:24:43:ca:
95:41:eb:2d:c1:f3:ab:d1:9c:5f:8a:55:0a:9b:6a:5f:21:3c:
3d:88:99:18:f1:8f:a6:a7:e7:fe:42:83:23:d3:cb:a2:5c:68:
47:1c:28:d2:0f:8a:80:b8:98:75:c8:22:92:cc:bf:ef:86:e6:
3a:a6:b3:96:35:7f:b2:ef:13:fa:b7:ca:bd:aa:d9:1f:d2:05:
41:8e:f9:ed:26:94:df:fe:0c:1f:4a:19:c2:35:78:47:e1:f8:
6e:75:b9:95:2c:2d:60:f4:4c:6e:eb:ea:96:08:09:10:fd:37:
0d:ae:f9:01:37:3e:05:7e:de:8d:2b:55:7f:91:7a:ed:ad:da:
c4:2b:34:1f:fe:5c:f2:3f:ea:81:f0:ed:44:5d:aa:ad:ea:e0:
52:43:49:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 13:45:34 2025 by rpki-client