Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
File: QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft (raw, json)
Hash identifier: U8n2AZjCOx7+n/Dr5mqRjYgg8eM8wyXpYWQDg8Ctuiw=
Subject key identifier: 4E:46:B5:E7:4A:B5:7B:7C:4F:44:D4:FC:D3:DB:53:4D:8D:E0:F8:27
Authority key identifier: 41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
Certificate issuer: /CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Certificate serial: 01962ABCAC310B9978496E10AF7F2947C4B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
Manifest number: 1478
Signing time: Sat 12 Apr 2025 16:02:09 +0000
Manifest this update: Sat 12 Apr 2025 16:02:09 +0000
Manifest next update: Sun 13 Apr 2025 16:02:09 +0000
Files and hashes: 1: QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl (hash: iqV4ssiw2s9QGZWP2laUeaPIWld5FVLuFxkldo9sm2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 16:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:bc:ac:31:0b:99:78:49:6e:10:af:7f:29:47:c4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Validity
Not Before: Apr 12 16:02:09 2025 GMT
Not After : Apr 13 16:02:09 2025 GMT
Subject: CN=4e46b5e74ab57b7c4f44d4fcd3db534d8de0f827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3a:6e:f4:c8:a6:03:98:d2:6f:73:d1:51:90:
cd:73:e3:99:42:d7:8b:fb:42:4a:a1:0f:30:42:6c:
d6:29:b2:0c:7c:77:e4:ad:c4:f6:fe:30:75:5e:4a:
98:1c:ce:95:57:17:7e:0f:27:23:ff:cf:b1:8d:25:
53:01:f2:2d:7b:91:a0:43:bd:86:dd:3f:ef:8d:a7:
6a:b8:a6:7e:2a:a9:40:a6:a1:ea:a2:62:61:90:92:
d3:3d:2c:fa:9c:36:98:36:6a:9a:a2:db:b9:c5:36:
66:5a:37:df:67:5f:42:05:43:1e:48:54:90:01:6a:
97:4c:46:12:79:7c:6e:a0:78:68:7e:03:22:5d:8e:
d7:19:62:b7:1c:08:b6:66:7f:b6:da:6a:06:d4:29:
53:45:94:ed:66:23:02:0e:9a:2c:2b:aa:bb:55:64:
1d:6b:24:9c:03:cf:09:de:18:dd:f1:36:1c:2d:09:
f9:13:b3:0e:2f:72:f2:b9:f6:20:95:56:49:60:9c:
53:e6:3b:04:de:69:3a:30:4a:0a:8b:b4:49:ba:18:
bf:e5:d7:fc:ef:0b:a8:91:10:bc:c4:96:3a:8a:9d:
44:c3:1a:0d:c2:72:61:09:a5:b3:b3:97:7a:8d:ce:
9a:42:6f:a8:d3:68:5c:b4:af:7f:b1:46:45:c2:65:
a2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:46:B5:E7:4A:B5:7B:7C:4F:44:D4:FC:D3:DB:53:4D:8D:E0:F8:27
X509v3 Authority Key Identifier:
keyid:41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:dd:8c:f4:49:e1:de:26:07:26:09:40:2f:ad:52:04:55:8d:
06:af:22:01:0b:12:f3:5e:5d:da:08:32:e8:c3:00:d6:42:e8:
6f:8a:d6:2b:c9:e8:28:01:43:d6:94:68:83:40:ef:a3:4f:2e:
e1:5c:17:60:49:5f:c5:91:f3:5a:ef:ed:ef:4b:cc:6d:02:34:
b5:ac:fe:f6:2e:4f:b6:75:f4:59:4f:00:70:60:9a:0d:6e:b7:
8f:67:0c:ab:23:74:9f:81:49:f8:7a:41:51:2e:9d:b0:9c:5d:
eb:58:82:d0:f5:7b:64:8e:78:d3:7f:25:a7:0f:81:28:aa:49:
b7:c7:d1:0c:92:41:8d:ab:2b:89:62:f7:3e:ca:f6:2b:d2:a7:
ca:3f:26:09:78:fb:86:1a:5e:7c:6f:bd:5d:54:7b:19:af:fa:
77:c3:18:6b:be:3d:f2:62:e1:31:18:ac:a1:b9:ec:82:3f:2c:
69:82:e1:f3:0e:13:8e:7b:42:3a:3b:59:8f:e1:6e:1f:80:b6:
1c:58:e7:89:27:1e:b8:56:4a:9b:fd:da:76:4c:60:d2:5b:8b:
1f:7b:fe:e3:2a:d0:4a:4b:88:93:ea:70:66:6c:64:2c:04:a9:
19:61:c8:6b:d2:da:b1:0e:81:82:57:96:0c:bd:38:9a:45:bf:
94:ff:e4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:00:16 2025 by rpki-client