Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
File: qoXGfyIwng2EwwtUJSlyUyhgUVE.mft (raw, json)
Hash identifier: dGiqrp/ZQI6fkD7l0snWF7oXinjnM6pmLrVRA62n7nU=
Subject key identifier: 13:D5:66:AE:7F:22:D3:37:CA:51:15:3A:DD:F7:F4:7B:4B:38:73:88
Authority key identifier: AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
Certificate issuer: /CN=aa85c67f22309e0d84c30b542529725328605151
Certificate serial: 01967FB5307E7E05ABCC1A7FE3957805ABC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
Manifest number: 0B95
Signing time: Tue 29 Apr 2025 04:01:42 +0000
Manifest this update: Tue 29 Apr 2025 04:01:42 +0000
Manifest next update: Wed 30 Apr 2025 04:01:42 +0000
Files and hashes: 1: U6h0E3CpWcLE4IcpdPD5N0_flWE.roa (hash: /MeOIU5IzJfeECJ9wAs+zMCbOflzuiKPgRuM31+tyrU=)
2: qoXGfyIwng2EwwtUJSlyUyhgUVE.crl (hash: BuwRbK+XVTsp4G/KrYeOO/wD+tnOs8PJkH8LBtnyy0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b5:30:7e:7e:05:ab:cc:1a:7f:e3:95:78:05:ab:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa85c67f22309e0d84c30b542529725328605151
Validity
Not Before: Apr 29 04:01:42 2025 GMT
Not After : Apr 30 04:01:42 2025 GMT
Subject: CN=13d566ae7f22d337ca51153addf7f47b4b387388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:0e:0b:68:e9:f3:53:8c:a6:8e:f5:55:ee:
2d:08:d9:07:af:3d:11:bb:52:7b:b9:f5:2b:95:3d:
8b:42:19:a2:e6:e2:c5:c9:2c:ba:82:1c:9c:69:15:
1b:9c:c1:37:44:9d:84:38:d6:b6:f6:3a:e7:4f:b5:
c9:bc:f9:c3:66:f4:00:1b:05:f2:48:50:54:47:7f:
03:a2:5e:a2:a3:d0:d9:89:09:c3:a8:6b:2d:7c:1e:
fe:ed:b0:7e:f6:67:34:c2:40:8d:a8:70:fb:55:ca:
99:ed:0d:88:35:af:10:55:b1:28:04:8b:37:92:f5:
6f:99:47:70:74:c4:4c:b0:fb:ae:d9:d6:14:4e:79:
a9:7e:f2:5b:c1:02:bf:32:09:9f:db:f0:a7:c5:94:
44:1d:a1:c4:99:bc:be:8d:fb:e2:4c:9d:cb:cc:08:
13:83:29:c9:e4:31:ca:42:06:55:9d:95:e2:cc:b1:
ad:50:08:92:bd:4f:99:7b:8e:4f:c5:10:f4:00:4e:
c7:4d:3d:e9:f5:7c:fc:a4:17:b6:e7:fe:54:b2:15:
4c:84:dc:6b:5a:1c:04:82:85:31:83:2f:59:14:9b:
ff:6e:40:2b:59:4e:b0:c8:de:8f:e1:70:17:33:f8:
7a:c7:85:1a:ac:14:bc:e1:6d:7a:5c:a6:b7:d7:dd:
e6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D5:66:AE:7F:22:D3:37:CA:51:15:3A:DD:F7:F4:7B:4B:38:73:88
X509v3 Authority Key Identifier:
keyid:AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:5d:0a:ef:5b:50:2f:87:8b:bc:b0:7c:ce:c0:61:4d:46:c6:
37:ca:b8:59:c0:e3:47:7f:0d:38:1f:18:6e:b8:b3:aa:27:1d:
5d:4e:1d:7c:c5:38:3c:c8:55:fa:83:86:55:65:66:57:76:46:
a1:9a:14:2f:70:c8:b1:33:3b:ff:9a:62:52:be:ab:b8:9e:94:
0d:ee:10:35:8e:67:29:25:bc:0c:f8:9b:0c:31:46:b4:3d:04:
c6:19:a0:3b:33:4e:3d:b4:1d:2d:10:3a:40:0c:62:b9:5c:d5:
e5:4b:e5:09:d2:05:77:65:80:31:ba:74:c7:14:df:f8:db:de:
49:58:a8:ca:5e:33:d2:01:25:26:15:1c:26:c6:e1:2a:dc:50:
d8:06:80:fc:ef:01:b1:47:48:64:dd:08:1c:95:c4:4f:63:46:
45:9f:41:16:ca:3e:88:fd:a2:ec:ee:16:17:25:ab:05:6e:e0:
bc:5a:3a:0d:f3:83:d8:7a:ad:e9:f3:4b:a9:e3:75:b1:57:02:
8c:f1:1f:88:6c:d4:3d:84:49:30:af:a1:07:72:49:99:ae:db:
cd:88:57:3f:88:58:db:8b:7e:6b:22:5e:52:3d:88:a2:93:6b:
44:56:96:21:a7:5b:ef:46:c2:0a:81:46:cb:91:80:cf:f5:9c:
42:c4:b0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 06:29:43 2025 by rpki-client