Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: gCux1twY4hQxOc5l/7dqPawn8+gMnLkmqvwmYBFOBno=
Subject key identifier: 40:EF:4B:B8:B7:BB:F6:FE:9E:B7:66:9A:0B:BF:28:5D:78:9A:19:CA
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 01967FB44FAB2AFE8B0CC928DDA4B6946CE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0C35
Signing time: Tue 29 Apr 2025 04:00:45 +0000
Manifest this update: Tue 29 Apr 2025 04:00:45 +0000
Manifest next update: Wed 30 Apr 2025 04:00:45 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: nmQKEyL1MgHTRz0z+yQOBiO3ATc/63nQvs9+AufAj0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b4:4f:ab:2a:fe:8b:0c:c9:28:dd:a4:b6:94:6c:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Apr 29 04:00:45 2025 GMT
Not After : Apr 30 04:00:45 2025 GMT
Subject: CN=40ef4bb8b7bbf6fe9eb7669a0bbf285d789a19ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a0:fe:69:3b:93:85:0e:c9:63:b4:7a:d2:0f:
2f:a4:bb:9e:df:7c:0a:d8:bd:d0:e3:71:77:65:e6:
43:37:48:e5:2a:49:44:df:71:d4:dd:21:07:58:e1:
5f:f1:18:7a:8c:8f:72:aa:78:5f:c3:8f:c4:f7:b8:
db:73:d9:20:53:aa:9d:81:d7:2a:40:64:21:67:55:
b6:bf:19:07:d6:9d:6f:18:78:0a:e9:ca:30:ee:b2:
00:2e:17:da:14:78:fe:08:88:2b:77:70:96:d8:fe:
e3:91:5b:0d:1b:2c:26:6c:49:76:9b:12:36:01:03:
f5:d3:40:3c:64:b3:44:bf:ec:a1:47:d6:e3:4d:ee:
86:3c:a1:2a:dc:c2:8b:c6:59:f7:ec:4b:66:2b:6d:
5e:79:ca:d5:aa:fa:2b:0f:9c:7d:e4:0f:1d:23:be:
bf:b2:1d:99:35:34:73:a9:1b:db:86:01:0c:35:5c:
12:01:2a:2b:75:2c:4f:d6:64:9f:5e:a5:3f:79:c4:
95:2f:7f:d9:ae:33:ee:cf:7d:78:93:b1:18:52:a3:
cb:01:9e:b6:e9:f1:ca:ba:e2:05:4f:97:69:ad:0b:
5b:d8:4f:e0:42:74:f0:8c:d0:fa:34:f9:36:4f:43:
63:4b:19:ba:93:77:de:7a:be:12:d5:ea:db:de:37:
e9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EF:4B:B8:B7:BB:F6:FE:9E:B7:66:9A:0B:BF:28:5D:78:9A:19:CA
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:db:8a:ef:e7:cd:85:82:d2:e3:1a:d5:ff:bf:c5:b1:15:a6:
a4:35:d4:b7:7e:2d:cf:70:88:cb:4f:1d:9a:c4:a4:e6:85:4f:
91:56:15:c1:66:c6:5a:c7:2f:69:81:67:50:31:1e:17:30:64:
aa:90:5a:20:9a:2d:0f:e3:c4:fe:f3:88:14:6c:fd:ab:47:00:
f9:97:b0:8f:95:22:cf:6e:4a:1b:0d:28:58:9d:05:c6:22:95:
3e:c4:5a:a2:4b:73:38:3f:e3:0c:75:6d:3c:63:9f:ed:10:8b:
b1:63:a2:2f:01:77:9c:b8:7a:ea:e6:a0:ef:7d:b5:80:13:c0:
d3:08:9f:20:f1:a2:19:de:82:0f:bc:9c:fd:4b:5f:44:36:fb:
d8:7f:3d:6b:9e:dd:ba:fe:c0:72:3a:93:e3:90:ee:b0:08:4a:
b1:06:88:7d:e7:2f:6c:59:bf:b4:78:c4:4d:43:54:7f:5f:0d:
d4:9e:fd:2f:6a:01:e5:3a:7f:dc:a2:37:6a:10:eb:b7:7f:1f:
ea:fd:ba:0a:2e:2f:40:0c:21:cc:82:fe:64:5b:06:bc:97:6f:
39:02:81:6b:09:2f:bf:dd:af:44:37:79:8b:e9:9b:2f:ed:3c:
55:70:c3:bf:bc:a2:43:50:17:ac:fa:d0:00:22:47:8d:c7:e6:
1f:be:ab:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 13:43:06 2025 by rpki-client