Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
File: Q5OKPegDvWyR8UrZZ71BQbigKK8.mft (raw, json)
Hash identifier: z9PGNOuFirVEbrY6+25GiBpw7FuKIvqGtfLUwniX1N8=
Subject key identifier: 43:95:E8:C8:8F:14:17:38:C3:90:C3:7C:61:D6:47:28:BE:67:D4:6D
Authority key identifier: 43:93:8A:3D:E8:03:BD:6C:91:F1:4A:D9:67:BD:41:41:B8:A0:28:AF
Certificate issuer: /CN=43938a3de803bd6c91f14ad967bd4141b8a028af
Certificate serial: 019674F9D6CE314D1F76B45B967E38A75944
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
Manifest number: 122F
Signing time: Sun 27 Apr 2025 02:00:52 +0000
Manifest this update: Sun 27 Apr 2025 02:00:52 +0000
Manifest next update: Mon 28 Apr 2025 02:00:52 +0000
Files and hashes: 1: Q5OKPegDvWyR8UrZZ71BQbigKK8.crl (hash: P83Ws2mobJaTar/sv70XB0ncVeXr/l2j6e07Gxb5Y7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:d6:ce:31:4d:1f:76:b4:5b:96:7e:38:a7:59:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43938a3de803bd6c91f14ad967bd4141b8a028af
Validity
Not Before: Apr 27 02:00:52 2025 GMT
Not After : Apr 28 02:00:52 2025 GMT
Subject: CN=4395e8c88f141738c390c37c61d64728be67d46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:68:15:2a:ca:42:67:6c:ce:22:07:a9:60:37:
c7:bc:96:24:9f:68:27:4e:ae:5b:3b:7f:e3:3c:c1:
d4:75:46:e5:03:72:5d:ee:2a:8d:14:c4:a5:6b:ca:
33:70:8b:f6:16:4f:7d:23:16:0b:f7:58:0d:01:ec:
ed:25:b7:27:0b:cf:65:e8:f9:56:f1:a6:05:e4:7d:
90:f4:ed:6e:dd:42:d3:50:0f:25:c6:3e:af:d2:c9:
15:83:56:7a:46:2b:4e:aa:71:bb:4e:07:70:c7:ff:
2a:ed:c4:fa:85:57:80:cf:13:98:f5:58:72:b7:4d:
47:27:73:5d:cb:18:4b:cf:be:18:3f:b6:21:bc:15:
50:2e:cf:a1:c7:c0:35:50:77:0b:2f:90:e3:69:98:
65:67:fb:ff:77:58:8e:09:df:69:88:a2:d6:9c:28:
dd:3e:4d:f9:1a:d1:71:2b:00:9b:67:c0:5c:b6:2f:
44:a9:38:fe:b0:1f:10:30:d9:23:92:e4:77:ba:db:
5f:e5:89:e2:8f:96:dd:e8:cc:7d:59:73:af:d1:a6:
f4:7d:42:00:62:43:91:e0:23:1c:9d:39:5b:94:86:
91:6b:f8:4a:0d:9e:80:9b:e0:0a:a8:1d:4e:c6:42:
3d:0d:31:2b:9a:72:8d:68:41:f5:8c:9d:69:66:b1:
9a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:95:E8:C8:8F:14:17:38:C3:90:C3:7C:61:D6:47:28:BE:67:D4:6D
X509v3 Authority Key Identifier:
keyid:43:93:8A:3D:E8:03:BD:6C:91:F1:4A:D9:67:BD:41:41:B8:A0:28:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:b1:5a:f4:1c:39:d2:29:fa:9a:04:e9:ed:97:d4:93:55:cf:
83:11:dd:79:85:f9:e6:e8:d2:f3:95:39:f0:18:04:da:a8:34:
ff:27:b4:da:2b:83:ff:11:05:13:9e:f3:af:69:ee:43:4f:4a:
45:38:2c:7e:87:e4:1e:d5:a7:c7:15:16:6f:7d:22:28:82:31:
9b:aa:a8:5a:48:5e:39:3c:ed:61:da:28:77:55:fe:55:78:8b:
70:55:03:14:dc:8f:09:1d:a5:5b:fe:3b:8b:41:a6:34:10:91:
f1:e7:a6:2b:11:b5:9b:23:f5:b9:3f:3d:77:91:f2:ad:04:aa:
ce:7f:27:aa:9e:d7:41:4c:7c:30:73:f5:0c:88:25:bd:c0:42:
49:96:a0:ef:5b:f2:ba:4f:38:4b:ff:3f:86:88:4a:c6:6e:73:
40:ae:6e:03:bf:4f:de:b0:7f:5f:c2:c4:8a:b1:88:92:e8:3f:
10:c8:3e:63:57:8d:30:4b:f4:4e:fa:f0:9b:2b:cd:d6:04:fb:
9a:0b:89:a7:a1:fc:b1:39:64:24:81:13:99:47:c9:52:75:fb:
33:e3:e0:da:30:5d:0c:85:21:2f:8d:66:69:1c:c0:a7:04:0d:
53:a7:82:48:6f:1e:13:48:a2:e3:14:72:e2:ce:54:73:79:ad:
06:31:17:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:42:51 2025 by rpki-client