Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
File: QdD5FclU2DtKG_GEz7wTjEftpR4.mft (raw, json)
Hash identifier: LyjZxHfPT/SAnPvyL8ZfZ6kTKKdse4IcrZzBZxMGEs8=
Subject key identifier: 4E:66:CF:31:9E:5E:C8:78:73:06:42:2B:4E:AD:37:F8:D4:14:62:99
Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Certificate serial: 01967D8EFD623CADB5A8C4511C3463F3AC0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
Manifest number: 11A5
Signing time: Mon 28 Apr 2025 18:00:44 +0000
Manifest this update: Mon 28 Apr 2025 18:00:44 +0000
Manifest next update: Tue 29 Apr 2025 18:00:44 +0000
Files and hashes: 1: QdD5FclU2DtKG_GEz7wTjEftpR4.crl (hash: qYM4rSQ4dMMJNPTrFQj1tm7gucmo4yEAVyP3CFPG7E8=)
2: f6uKeUIzMA-uVptKc1ueYhFBFxM.roa (hash: yRxjbOfn/yIPjsEZSwuKIczmA3RcTEjtjojH+74JQXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:8e:fd:62:3c:ad:b5:a8:c4:51:1c:34:63:f3:ac:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Validity
Not Before: Apr 28 18:00:44 2025 GMT
Not After : Apr 29 18:00:44 2025 GMT
Subject: CN=4e66cf319e5ec8787306422b4ead37f8d4146299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:df:96:8c:28:ee:c1:41:f1:5d:18:14:a8:bb:
78:7b:58:4b:91:81:79:98:4e:79:c4:bf:1c:f7:11:
d8:be:3c:21:75:f6:c2:92:73:d0:df:ed:b3:5d:6f:
90:39:f6:d1:fd:f3:13:86:ef:d0:83:31:99:87:2e:
34:96:5a:b2:8c:ba:c4:ca:c6:a5:09:3a:1e:5c:58:
7a:9b:9e:cf:3c:15:eb:83:1a:fe:a2:85:7d:e9:92:
9d:8f:c4:9b:2f:46:5b:02:a4:16:7b:ef:26:72:06:
46:19:c1:fa:53:ed:a3:7d:ef:e5:c4:82:ba:d3:b7:
db:d9:0c:fe:59:cf:e4:e4:db:c0:18:65:af:ad:92:
3a:3b:8d:d6:a0:2a:d0:83:21:d5:5e:49:a0:6a:5c:
dd:25:cd:73:17:bf:07:76:46:6d:a1:bc:71:ef:18:
93:e9:60:63:44:bd:e9:df:0d:88:32:34:f2:d1:ae:
a6:50:9f:d1:8f:7b:1b:b4:c5:8a:85:75:d9:c5:25:
bf:15:b2:da:7d:70:d8:1f:42:13:22:f9:23:38:c0:
10:91:e9:52:9a:d8:1e:b2:f4:a9:23:b2:2f:da:d0:
f6:9c:54:e7:f5:c1:a5:d4:b9:8e:82:6b:33:00:8e:
ab:7d:6d:8a:44:8c:22:a0:fb:43:cb:07:b7:35:11:
85:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:66:CF:31:9E:5E:C8:78:73:06:42:2B:4E:AD:37:F8:D4:14:62:99
X509v3 Authority Key Identifier:
keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:d0:14:9e:53:a8:20:60:9e:81:17:f0:04:9c:af:94:39:54:
1b:8d:3c:b9:4a:50:42:76:a3:d0:d5:10:7b:31:55:0b:83:d8:
9c:7e:37:88:ef:71:2b:0f:8a:fb:c9:c6:40:21:95:59:98:6b:
9f:db:95:9a:3a:87:fe:82:16:51:d6:0a:75:48:43:ca:28:56:
c4:1b:22:69:5a:ae:bb:3e:dd:8c:d6:f3:bb:af:7b:20:44:5d:
b6:d4:29:34:27:22:b6:3a:de:9e:0e:d9:9a:65:65:77:dd:e1:
e0:f2:5a:c0:ba:7b:cb:ad:c8:c7:4b:16:8d:8c:a1:44:2a:d5:
8a:30:6e:d0:d5:d1:7b:da:30:6c:05:04:71:35:2c:3d:b1:20:
68:75:d1:b3:5c:f5:1e:41:d3:f6:69:50:cb:6e:f7:bc:0e:46:
cd:59:3a:5c:42:64:ec:2e:1b:b4:75:65:a2:32:ea:3d:87:2a:
eb:ab:2c:4c:29:20:65:b2:7b:4d:61:f5:cf:b7:dc:2d:2a:31:
3d:7d:4e:93:e2:c2:e9:ea:72:c2:c8:d9:11:68:91:99:55:3f:
82:e7:24:c9:7a:c5:fd:e1:a3:5b:a4:ff:0e:4c:d2:15:73:d7:
37:fa:6f:77:80:9e:a4:73:10:71:2f:19:27:15:bf:ea:e2:e9:
29:50:b5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 20:33:57 2025 by rpki-client