Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
File: QWkOI5DpC72N5AIYrSIeCTvM7L8.mft (raw, json)
Hash identifier: psjGvuZC8LvGWq3lffPeypCOnhhny6sytGWY8YbV2P4=
Subject key identifier: 74:04:6C:6B:09:4F:10:04:96:39:44:00:77:28:C3:12:AB:17:19:CB
Authority key identifier: 41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF
Certificate issuer: /CN=41690e2390e90bbd8de40218ad221e093bccecbf
Certificate serial: 01967C0E7997648AAB34E6EFE1E5225467D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
Manifest number: 1511
Signing time: Mon 28 Apr 2025 11:00:45 +0000
Manifest this update: Mon 28 Apr 2025 11:00:45 +0000
Manifest next update: Tue 29 Apr 2025 11:00:45 +0000
Files and hashes: 1: QWkOI5DpC72N5AIYrSIeCTvM7L8.crl (hash: 2BxelJEz3XPbQXgcKsZyY2xiUd/mhF44nbET4W4GCnk=)
2: nsNEVxRNRAqK4M0HqDeGc01kd4k.roa (hash: u9cSwFwr5XiNLEjBeMMlXHN1pLGlDX3Y3bL8f/eEp3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 11:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:0e:79:97:64:8a:ab:34:e6:ef:e1:e5:22:54:67:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41690e2390e90bbd8de40218ad221e093bccecbf
Validity
Not Before: Apr 28 11:00:45 2025 GMT
Not After : Apr 29 11:00:45 2025 GMT
Subject: CN=74046c6b094f1004963944007728c312ab1719cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:bb:46:05:41:21:57:cd:ff:0f:ae:f1:41:f0:
42:f7:3c:10:a1:f5:1c:20:55:55:e1:d7:13:26:4f:
e6:a2:b5:86:94:f0:bf:e9:2a:bd:65:18:58:ae:3e:
c8:02:c6:4b:74:25:a2:33:ba:83:5f:f1:81:ff:f6:
3a:72:4a:f1:04:27:a8:cb:48:07:c5:33:7e:7d:5d:
99:71:11:dc:3d:0b:f2:c5:62:f4:03:5c:61:60:69:
62:a4:21:35:ea:af:cf:9c:aa:46:b6:35:07:28:4a:
23:bf:61:dc:e2:43:44:7d:57:a3:48:51:aa:97:b9:
d4:52:77:59:25:0d:d2:9d:f9:60:f6:20:9a:5a:79:
3f:36:bd:30:e2:8f:ab:42:83:72:05:4d:59:6b:ef:
26:ae:8d:a0:1e:3c:d4:54:2c:94:4b:75:5a:24:68:
4a:fc:40:fd:fb:9a:3a:91:ee:2e:76:84:db:7b:04:
89:09:7e:8f:b8:60:b4:cc:07:7c:96:f6:7e:ef:bb:
2b:7c:51:b8:fc:24:b3:1d:08:76:95:84:b0:a4:14:
6f:ce:99:ec:17:3a:e9:46:bd:f7:2a:b6:10:ab:3f:
14:be:00:e5:77:c1:e6:f2:c1:cc:63:3e:fd:96:b2:
a8:05:72:e6:76:eb:bb:60:99:aa:db:6f:02:08:49:
ed:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:04:6C:6B:09:4F:10:04:96:39:44:00:77:28:C3:12:AB:17:19:CB
X509v3 Authority Key Identifier:
keyid:41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:a5:48:3f:d6:48:1c:8b:6e:12:8a:79:f2:de:1f:e6:94:62:
c3:91:5b:b0:3c:ac:02:1a:ec:16:33:78:05:74:9f:19:40:40:
64:15:94:2b:8a:03:a8:93:75:3f:eb:0b:f9:b3:6c:e0:4b:60:
cd:43:e2:72:72:2b:e1:7d:17:75:5b:09:6e:fc:07:28:ae:3c:
c5:3b:bf:5b:d7:4c:04:3d:ff:91:5f:3f:06:15:91:7b:a3:1d:
91:7d:0f:c6:38:11:0e:c8:a5:2e:74:68:e7:de:ba:2b:8d:ae:
59:c9:cf:7a:db:db:2b:f7:e0:09:ee:ff:b5:bc:30:31:d8:67:
e9:d8:a9:fd:e5:44:65:cb:87:e6:c6:b3:0c:4c:69:17:e0:93:
18:b4:1b:0c:a7:6c:91:5c:00:43:c1:dd:0d:75:36:d0:ce:3e:
52:40:21:c8:6c:5f:29:ef:00:cc:a0:6d:aa:d3:c1:e0:c4:83:
24:a4:b9:66:cc:5d:3b:18:f4:6b:30:a8:6c:0a:99:94:45:c7:
ec:b5:9b:25:da:9e:fb:ca:5c:28:01:5c:57:28:b3:cf:52:96:
50:1e:50:ca:f3:ce:14:71:23:cd:f8:89:ca:84:a6:da:d5:43:
12:64:87:d9:f0:54:6b:74:66:e7:49:e4:c7:5a:f0:07:a5:22:
f2:6c:33:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 19:19:21 2025 by rpki-client