Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
File: QsMDcZht9dVk7mcHRxe2agL_VxI.mft (raw, json)
Hash identifier: IjNrnmiIW13PSR1hmPYJzFcbFB/sDAExMSuhC1Tsahw=
Subject key identifier: 17:42:2D:94:6C:0D:B4:E7:4B:F7:63:22:31:A1:7C:B1:BD:CE:49:0B
Authority key identifier: 42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
Certificate issuer: /CN=42c30371986df5d564ee67074717b66a02ff5712
Certificate serial: 019676B1192875FDCBE49C03466C17B52473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
Manifest number: 1400
Signing time: Sun 27 Apr 2025 10:00:39 +0000
Manifest this update: Sun 27 Apr 2025 10:00:39 +0000
Manifest next update: Mon 28 Apr 2025 10:00:39 +0000
Files and hashes: 1: QsMDcZht9dVk7mcHRxe2agL_VxI.crl (hash: P3BIJfA9oziy2JSrxlivV3a+LmczIDGQMBpCRMDM9Ss=)
2: hyIZ79qkrdHzxjA2nqjpWKRJazw.roa (hash: uN3TIUn6uJGV9mne7uVtH2Vshh9cYXISPUulyaHzlUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 10:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b1:19:28:75:fd:cb:e4:9c:03:46:6c:17:b5:24:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c30371986df5d564ee67074717b66a02ff5712
Validity
Not Before: Apr 27 10:00:39 2025 GMT
Not After : Apr 28 10:00:39 2025 GMT
Subject: CN=17422d946c0db4e74bf7632231a17cb1bdce490b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:93:b1:8c:f5:42:21:fc:3d:7c:b6:7d:0e:af:
29:c8:cb:6a:cb:4a:86:d6:6b:c7:b1:c8:5d:b9:1d:
75:34:12:96:8a:c4:e0:2c:ee:e9:c7:a9:fe:41:00:
69:c9:f6:a0:c4:5d:33:d2:b4:64:d0:0a:21:77:39:
be:da:ed:58:c9:78:ec:5a:a7:ba:c5:ec:a8:2b:10:
75:1c:7b:6a:6d:24:ba:3e:10:ff:07:7e:fb:2f:cf:
13:1e:9f:50:70:15:21:20:1c:88:35:81:16:06:a0:
20:2d:9c:f7:17:0c:69:13:f5:11:9e:03:0f:30:f9:
2b:0d:43:ac:ff:a6:7f:90:26:15:ff:59:b8:cb:21:
ab:16:30:e4:55:7d:12:b3:ce:b5:13:f4:03:59:53:
61:1e:b2:02:b1:dd:b4:5d:a3:1b:cc:35:c6:0f:e5:
b0:b6:19:b1:79:e2:24:19:d7:7c:2f:f7:4a:5f:cf:
12:95:dc:38:8f:c5:98:30:00:6c:5a:7f:fe:57:4b:
bd:b0:4a:25:c4:a3:74:93:31:d7:67:26:43:dd:81:
a3:9e:ab:f4:b6:70:55:9e:97:8a:00:c8:78:d6:00:
21:e1:3c:84:22:a4:9d:d3:2a:2b:f1:7c:49:a3:84:
ad:a0:a9:9f:fc:eb:25:8e:db:12:03:2f:d5:89:e8:
40:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:42:2D:94:6C:0D:B4:E7:4B:F7:63:22:31:A1:7C:B1:BD:CE:49:0B
X509v3 Authority Key Identifier:
keyid:42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:6f:8e:41:06:48:b0:09:a6:be:8d:74:cc:75:bb:6a:54:2e:
d2:73:2a:11:66:2c:09:c0:cb:25:3c:05:2f:16:12:20:a0:58:
93:8b:4b:ff:4e:9d:03:bc:8e:e9:6f:14:ce:f3:d8:2e:a9:07:
f4:3a:22:7f:1f:eb:45:60:8d:e1:15:0d:3b:c7:0f:d9:7d:a8:
56:54:5f:b0:fd:a5:fa:84:5e:81:6d:b0:68:83:b0:c6:47:ac:
d3:0d:6d:d9:6d:9e:75:da:fa:ec:61:5f:e2:c5:6d:8f:f5:a8:
b3:7c:9b:bf:ea:6f:b7:db:c5:08:dd:ed:95:f6:31:d6:9f:74:
89:e8:36:52:f2:9b:2b:17:e9:68:a8:e1:c7:1d:68:a5:2d:e4:
c0:07:43:9f:5e:aa:4a:8b:c5:d6:50:d4:d2:b3:72:a1:5a:0c:
bd:6e:7d:90:44:11:43:c2:08:dc:a7:57:5f:03:19:54:6d:1f:
a6:45:e8:cb:5f:de:7b:16:90:88:5a:cc:6d:93:b9:35:d4:59:
dc:f7:33:10:90:26:f7:9e:9c:13:c7:20:3d:25:df:9d:9a:f9:
ab:45:b6:f1:07:3f:0e:87:c7:c2:8f:a4:01:21:c2:03:96:85:
ef:16:24:e8:87:85:84:d1:37:dd:d1:2f:97:a0:03:1e:c0:0b:
f9:c1:a2:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:12:07 2025 by rpki-client