Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
File: qoCTNU5WWsSDilH0fSdpdpxmlE4.mft (raw, json)
Hash identifier: +o0bJyjhbkTQ8uBcT72SG4eAuLyd0/sJ9T2zOL1HqNY=
Subject key identifier: D8:68:BC:A8:7D:1E:E3:73:A5:42:30:86:A4:50:F0:26:5B:18:D6:28
Authority key identifier: AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
Certificate issuer: /CN=aa8093354e565ac4838a51f47d2769769c66944e
Certificate serial: 019672D4A47A7204B8EBCFC9152D2929F7CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
Manifest number: 0C36
Signing time: Sat 26 Apr 2025 16:01:00 +0000
Manifest this update: Sat 26 Apr 2025 16:01:00 +0000
Manifest next update: Sun 27 Apr 2025 16:01:00 +0000
Files and hashes: 1: ZLWyuBUCt9zFxazwwbh7yb1QxX8.roa (hash: 3SdpbSxYjCjCYkTQyy2TBjnfRY/eKE3ltVUJz5yw6+M=)
2: qoCTNU5WWsSDilH0fSdpdpxmlE4.crl (hash: KMGcKQzESbtcJ3U4EaQ2Dhdesh0Cayj1ttByxVIx1Yg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:72:d4:a4:7a:72:04:b8:eb:cf:c9:15:2d:29:29:f7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8093354e565ac4838a51f47d2769769c66944e
Validity
Not Before: Apr 26 16:01:00 2025 GMT
Not After : Apr 27 16:01:00 2025 GMT
Subject: CN=d868bca87d1ee373a5423086a450f0265b18d628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:80:e1:d3:21:4c:7c:f9:d0:fd:04:0b:2d:2a:
f7:d1:43:68:4f:e0:6a:fc:85:08:9f:0c:7e:cc:b0:
a4:2d:5a:76:82:10:2a:fd:ed:de:5b:5f:e6:ce:79:
3c:be:9f:cd:a2:38:35:47:44:5c:fa:f1:a7:0c:cf:
3c:5e:bb:cb:93:ed:54:39:fb:44:86:42:9c:ec:43:
95:42:14:bf:77:9a:58:ac:06:1b:2e:64:98:45:f7:
ec:da:0e:bc:3d:00:0a:85:1a:94:b5:6a:67:89:ad:
31:5a:0d:07:dd:cf:7d:a6:a4:2d:1f:dd:57:14:af:
a8:73:1d:3b:51:50:2a:f7:13:89:b3:a7:bd:a1:65:
c2:b2:31:ad:49:ff:a8:94:7d:67:f0:cc:df:b6:8c:
ef:cc:d9:b0:b3:54:f0:25:a9:7b:2d:9d:da:fc:8e:
3d:11:9f:7a:f2:86:d9:af:06:da:32:0c:e5:5f:9c:
a3:45:39:fa:f4:3d:a9:df:79:db:73:17:e3:06:e6:
88:b4:09:cb:50:ec:1a:c5:33:58:90:cf:f3:a1:c0:
58:9c:43:4a:ac:9c:42:5e:85:6d:c3:6f:aa:b9:ec:
7c:60:dc:b4:ca:eb:8c:ca:9b:25:24:f5:fa:89:70:
53:c0:86:88:0e:0f:72:b8:03:50:3b:46:b3:bb:e5:
01:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:68:BC:A8:7D:1E:E3:73:A5:42:30:86:A4:50:F0:26:5B:18:D6:28
X509v3 Authority Key Identifier:
keyid:AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ef:6d:52:68:41:14:c5:6e:74:46:21:ff:a2:ab:37:14:ec:
3e:79:64:97:b2:8c:6a:0a:7c:54:cc:a9:2e:04:7e:95:47:0c:
b8:56:a4:cd:6c:5e:ad:fe:2b:2b:c7:34:0e:67:40:1c:03:52:
6b:15:44:f0:f2:08:9c:9b:89:77:60:ed:17:ec:bd:d3:d4:b7:
c6:6f:91:a5:cc:74:63:50:9c:7a:e4:02:46:e8:00:4a:14:63:
9d:bd:86:ba:52:f6:aa:5e:2a:ff:43:55:29:70:06:f7:30:20:
18:b8:9b:a7:eb:ca:76:cc:c6:68:07:53:33:1d:09:54:82:54:
be:17:c7:ef:ef:e4:2e:c7:eb:29:b5:20:7b:c9:da:33:9c:25:
f1:b2:49:68:24:14:ef:68:c1:03:c7:00:bd:28:83:fd:b4:ce:
99:50:46:69:7e:4e:f2:1c:ad:3a:26:9d:4b:29:ec:a3:a6:f0:
e4:d5:14:ac:17:c6:7a:cd:0a:1c:27:ff:11:5b:1e:7e:c5:e7:
a4:f1:e6:72:d7:ef:2e:ba:c4:4f:c8:c9:db:2d:25:09:01:d1:
66:8a:a6:ae:44:1c:1d:e7:2e:96:e7:8f:7b:5b:36:97:3a:9e:
a6:d3:b6:68:ae:e6:45:c5:79:c6:7b:e7:13:19:a3:9b:58:9c:
31:e9:9e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:49:00 2025 by rpki-client