Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
File: qsqNwMC5IbCJ8WAmGORVN5enR0I.mft (raw, json)
Hash identifier: PsGN7lkRu6ntfR1p5P7crma7/VwGf2Awn3EsadCZNtE=
Subject key identifier: 25:D1:13:2C:2C:8A:30:A8:55:77:52:3A:3B:0E:0A:54:50:EE:D2:FF
Authority key identifier: AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
Certificate issuer: /CN=aaca8dc0c0b921b089f1602618e4553797a74742
Certificate serial: 0196767A33FE767437F5C316A6D967EB3D15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
Manifest number: B2
Signing time: Sun 27 Apr 2025 09:00:42 +0000
Manifest this update: Sun 27 Apr 2025 09:00:42 +0000
Manifest next update: Mon 28 Apr 2025 09:00:42 +0000
Files and hashes: 1: 0TAMfzKO6y7wTDVfhrp7A0vqejU.roa (hash: 3Yzu9IXvscc/7fQLVXNg8nKXbm7Wf5jZKKVCSByaB5U=)
2: qsqNwMC5IbCJ8WAmGORVN5enR0I.crl (hash: zH+adEykAT8tPC3WZUaunn+O0g3bzhWS3cC9jfw6vX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 09:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:33:fe:76:74:37:f5:c3:16:a6:d9:67:eb:3d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaca8dc0c0b921b089f1602618e4553797a74742
Validity
Not Before: Apr 27 09:00:42 2025 GMT
Not After : Apr 28 09:00:42 2025 GMT
Subject: CN=25d1132c2c8a30a85577523a3b0e0a5450eed2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1b:0a:76:ec:fe:ad:62:62:48:b8:22:f2:c4:
d7:81:1f:cb:9c:15:9b:4e:08:33:5a:90:39:55:fb:
74:34:89:1b:ed:a9:17:70:96:e2:6d:96:e8:4c:34:
cd:f9:00:e3:74:71:18:c0:44:e2:20:ed:42:53:e5:
da:7e:af:49:07:26:d0:e2:b3:f0:36:cf:6b:f7:b7:
4f:d6:94:83:87:bc:a8:40:49:34:14:2f:de:50:43:
15:2f:1a:bd:cb:ae:5e:b1:25:d8:ee:87:60:18:81:
07:b0:6e:6a:02:1b:be:e7:67:2c:ce:96:23:86:c5:
af:ba:62:8d:bc:75:f9:eb:99:8e:f2:9a:a8:68:f9:
d2:e4:23:0d:e7:b2:10:7f:02:c4:3e:13:3b:25:f3:
3c:0d:67:27:a5:55:5d:8f:40:88:dd:d7:ea:26:d0:
8d:7b:a7:d0:4c:da:60:24:44:08:62:db:67:bd:21:
60:eb:2a:5a:f7:1e:a6:b3:ea:20:d9:bb:30:7b:e2:
42:ae:ef:b1:9b:fb:51:44:b8:61:9b:da:6c:6b:e1:
b3:ee:8e:e0:eb:e8:ff:08:0f:b8:a4:83:9e:9b:f3:
9c:33:ea:d8:07:a7:e9:b3:d0:dc:77:c8:5b:3d:64:
d6:be:5f:e6:c3:a3:85:6f:5f:93:59:b1:cd:d6:e0:
ac:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D1:13:2C:2C:8A:30:A8:55:77:52:3A:3B:0E:0A:54:50:EE:D2:FF
X509v3 Authority Key Identifier:
keyid:AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:74:4f:2f:ba:a2:98:fb:81:b5:4a:a4:04:aa:32:7b:51:8b:
ef:9c:c6:82:97:6e:ac:ce:f8:ba:fa:13:52:46:3c:10:4c:da:
4a:55:d1:5f:49:d4:fa:48:2b:64:a6:c1:30:a6:ff:76:73:92:
b3:48:12:6e:12:3b:22:95:07:cf:85:53:99:36:0d:4e:09:02:
06:7c:bf:9f:da:c7:99:05:ed:ae:ef:f3:3b:1b:0c:51:d4:0a:
08:47:a2:3c:e8:68:c6:77:49:4b:9a:89:71:ce:60:bb:95:4a:
a6:3a:4f:12:8a:45:ea:1c:d6:34:da:fa:d2:3d:91:60:a5:00:
c3:4b:dd:d5:9d:be:d6:32:2d:f7:9b:bb:28:47:ee:da:27:21:
1b:5d:ab:c3:40:33:2e:3e:6e:0b:bc:a5:3c:ff:bd:0e:cf:75:
69:07:f6:48:c6:21:c3:4e:7f:b4:84:e5:7e:2c:9c:c4:9b:e5:
ed:9b:f2:8e:18:cc:07:be:50:84:15:71:9c:79:7e:66:1e:71:
d5:fd:54:44:a0:1f:c7:09:e6:73:bd:91:d2:e1:f6:af:7c:a6:
1e:5d:e5:a1:1f:05:03:45:67:ad:d1:14:78:06:0e:07:b7:2c:
bc:14:30:d5:86:db:5a:06:e4:e3:cc:62:ed:59:32:5a:68:e1:
6e:07:98:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:23:51 2025 by rpki-client