Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: MXLc3iLGN6GclWnoH9iwCkPiUfCOrPcxYclEuvEvgSk=
Subject key identifier: E3:E8:F4:45:AF:30:31:45:8A:78:4B:6B:E5:4C:CA:0A:AF:F8:C5:82
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 0196884918FCF1E6C6F2E9D572BFC33AC415
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 14A8
Signing time: Wed 30 Apr 2025 20:00:13 +0000
Manifest this update: Wed 30 Apr 2025 20:00:13 +0000
Manifest next update: Thu 01 May 2025 20:00:13 +0000
Files and hashes: 1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: hkrnZEc/0RCo665iTIL3+/zVl6xN51jfylIBJzhK8Fw=)
2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:49:18:fc:f1:e6:c6:f2:e9:d5:72:bf:c3:3a:c4:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Apr 30 20:00:13 2025 GMT
Not After : May 1 20:00:13 2025 GMT
Subject: CN=e3e8f445af3031458a784b6be54cca0aaff8c582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:42:6f:f7:48:99:d7:af:07:bc:6c:e5:73:69:
09:64:8f:b2:6f:06:87:3d:8f:a3:5a:fd:b6:dc:77:
6c:88:7b:12:9d:11:97:29:15:a6:40:3b:bd:0d:67:
d6:d9:81:37:eb:70:6b:93:97:e4:0a:9e:1a:62:14:
c2:6a:70:4c:b5:3d:92:8d:7a:55:3e:d2:ec:24:19:
d8:d8:0c:9c:b1:bb:3d:d5:35:a3:c6:cd:65:58:0a:
46:65:b8:21:a4:75:5c:aa:19:98:d3:d7:5c:ef:57:
f7:89:87:ab:8b:b6:4a:a8:82:43:82:89:dd:f7:4e:
d9:f2:15:0f:72:8e:76:35:70:cc:02:b8:50:4c:4a:
66:6a:4e:5c:fd:67:9d:48:cb:11:4e:21:5a:30:60:
92:ca:9a:e1:e1:53:04:c8:96:e1:12:a3:1e:73:b9:
cc:85:3c:83:a0:52:35:9c:8a:81:af:f9:70:5e:10:
6a:ae:00:1b:03:48:e1:76:84:0d:2b:8a:80:34:e5:
d2:0b:b1:02:88:2a:41:30:c3:9f:2d:7c:38:46:59:
d2:44:22:08:92:05:19:6b:14:52:e0:a1:76:3a:28:
ac:40:de:11:14:74:c7:e2:f7:45:33:0c:fa:11:4c:
35:c7:f3:b1:99:fc:69:76:e9:91:e0:d0:cd:f3:47:
e0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E8:F4:45:AF:30:31:45:8A:78:4B:6B:E5:4C:CA:0A:AF:F8:C5:82
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:9b:3c:d0:3a:8f:7b:1c:f7:b7:b7:b3:a3:8c:62:6e:f6:89:
de:94:b5:d4:81:56:18:65:d1:3c:d0:1a:0d:24:b3:71:5d:af:
30:cb:4e:94:1b:72:ef:96:f2:ec:87:84:02:43:07:04:39:53:
b5:67:c9:bb:98:ad:73:4e:a1:81:23:f4:00:2d:8a:b1:5b:c3:
57:e7:92:88:96:15:6b:c8:91:db:93:c5:87:9b:09:a7:76:fd:
fd:48:40:30:f7:00:7b:94:aa:a4:9a:d7:f7:da:c7:cd:e9:96:
66:33:2a:eb:58:60:7c:28:5d:5e:8c:94:b4:ed:50:82:ea:f9:
73:8c:31:a8:ba:12:26:fa:98:af:5a:ba:fc:77:18:6f:9c:19:
e4:a3:c7:1e:e6:b7:ca:62:d7:b3:1a:54:05:9f:c7:20:bb:f9:
f0:8e:e7:31:41:b7:40:c8:09:2c:34:c8:3d:f8:94:de:82:28:
a5:fe:fa:e6:aa:b9:8f:e7:4d:30:d0:b3:61:2b:8b:5f:02:77:
96:29:69:e7:1f:6f:32:22:21:cc:c0:44:5f:9c:a8:b0:92:f9:
84:cb:66:f2:36:e4:b4:20:28:7a:7a:56:20:10:c6:c0:83:84:
2b:ff:e3:a7:45:a5:15:a6:be:2d:5b:a1:0a:54:d3:2e:0d:f5:
63:15:0d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 23:16:51 2025 by rpki-client