Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json)
Hash identifier: eumfAkFFOJV4xyFJoCXBu4TJOuuQscyc9uDjIOTi6Q8=
Subject key identifier: 96:9D:27:60:FE:5A:C5:D5:8C:47:E3:D9:58:39:C4:5B:C9:99:B3:53
Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Certificate serial: 01968022B5BB05CE2F5FA09202262D14C530
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
Manifest number: 1511
Signing time: Tue 29 Apr 2025 06:01:20 +0000
Manifest this update: Tue 29 Apr 2025 06:01:20 +0000
Manifest next update: Wed 30 Apr 2025 06:01:20 +0000
Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: BGZ+krYnze+m0VEwTEkSFSYszM5EusfzXzE766L/qss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:22:b5:bb:05:ce:2f:5f:a0:92:02:26:2d:14:c5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Validity
Not Before: Apr 29 06:01:20 2025 GMT
Not After : Apr 30 06:01:20 2025 GMT
Subject: CN=969d2760fe5ac5d58c47e3d95839c45bc999b353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f7:9e:22:27:98:93:db:96:12:7d:7f:bd:3c:
22:96:dc:09:3f:3f:a0:b1:21:73:4c:10:14:2a:9e:
40:44:ea:e8:7f:f2:5a:e6:d2:b8:c7:fa:67:79:dd:
19:38:43:8a:71:4f:f2:fd:87:69:b1:e6:5c:4d:93:
d6:a9:c3:98:f0:17:22:41:7c:09:60:06:ac:f1:65:
2a:59:5c:5b:66:15:9d:53:28:74:9a:8c:2b:79:f3:
7d:07:ba:0d:3e:e7:c3:7d:b5:12:2c:68:a6:cf:ed:
c7:80:ce:37:66:96:1e:35:69:7a:d2:d4:2b:57:56:
57:b9:a6:18:db:6d:c1:1a:86:8d:f2:e0:56:1e:83:
76:d3:69:0d:ba:77:06:0a:f6:77:33:c4:dd:48:24:
a2:83:91:a5:c1:1c:32:97:74:81:9c:cd:6d:0e:89:
d6:4a:06:db:07:d7:f6:f5:04:dd:06:4b:90:fd:b7:
90:79:64:78:69:cf:cd:06:dc:b0:58:7b:a5:5f:a3:
af:bf:fe:66:72:80:d8:51:3d:84:da:90:a7:96:47:
ce:88:8c:8f:6a:b4:62:a0:37:40:cc:89:35:a0:00:
5c:e1:21:36:eb:bf:52:da:80:01:11:37:c3:89:7f:
40:4c:9a:00:a7:99:2f:b6:69:fa:c4:e6:04:18:4f:
b0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:9D:27:60:FE:5A:C5:D5:8C:47:E3:D9:58:39:C4:5B:C9:99:B3:53
X509v3 Authority Key Identifier:
keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:62:b5:54:95:9c:ca:b3:0c:1c:05:26:34:00:03:8c:75:c6:
41:a6:f5:69:ec:16:70:0d:d0:6c:0e:79:6d:91:c5:35:02:fb:
83:cf:d8:14:c8:52:c3:9a:48:fa:5b:66:45:ff:db:7b:84:03:
0f:98:47:b5:b5:89:70:fc:51:aa:ae:db:f3:eb:27:a3:0d:85:
fd:15:6e:2b:de:e5:f7:80:48:3d:76:f1:27:d4:a4:d7:d8:50:
7c:cf:3e:a4:96:02:12:de:8e:5d:6a:ea:43:d2:e1:6d:d3:f5:
00:0c:47:b8:41:65:1d:89:0f:37:6c:6c:bd:ba:99:21:7f:e6:
b5:e2:79:06:98:7e:f0:97:ea:e2:2e:c4:a9:64:75:5f:d1:74:
f7:4c:d6:cb:51:bc:7b:08:d0:8e:83:d9:ca:ec:89:5a:3f:44:
b8:dd:f2:49:1d:f7:c5:cc:e9:c5:2e:b7:ff:67:27:64:8f:1b:
12:a3:1c:77:56:a4:34:63:e6:be:9c:0d:d0:d6:7f:fa:73:30:
a9:4b:e6:7f:ff:1b:5e:9a:c0:6b:19:93:8d:c8:f0:d8:df:8a:
49:f0:1d:35:a5:1f:58:0d:f7:e3:11:7d:2a:c9:3e:d0:b1:38:
82:8b:9c:52:f9:52:c5:dd:91:ce:c5:02:cd:f5:54:92:44:98:
7e:9a:8f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 08:52:13 2025 by rpki-client