Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
File: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft (raw, json)
Hash identifier: LCxRZxMi2DzW43K1F7Ssq8PBZPakvW7r7l1MIQlsMJs=
Subject key identifier: 53:24:FB:53:ED:58:99:12:F7:73:DE:D3:54:B0:AA:06:AC:6F:3E:92
Authority key identifier: 43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
Certificate issuer: /CN=430e0949df5930f6b79efcbd9cba174ca213f569
Certificate serial: 0196778CDDF0FC30BF9A56A6397E80DC8F33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
Manifest number: 14A3
Signing time: Sun 27 Apr 2025 14:00:42 +0000
Manifest this update: Sun 27 Apr 2025 14:00:42 +0000
Manifest next update: Mon 28 Apr 2025 14:00:42 +0000
Files and hashes: 1: B2zXHYwEq1mSDhRzWM21ZLKQRZ0.roa (hash: P+0tfOZ2RaLt/nUPuFjZ/CAtJcAtybwXEXHcIsSIUm4=)
2: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl (hash: d/ieJgxfzGbrcuOF9y91BNt7i6j4eDUYTUsfWgMypZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:dd:f0:fc:30:bf:9a:56:a6:39:7e:80:dc:8f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430e0949df5930f6b79efcbd9cba174ca213f569
Validity
Not Before: Apr 27 14:00:42 2025 GMT
Not After : Apr 28 14:00:42 2025 GMT
Subject: CN=5324fb53ed589912f773ded354b0aa06ac6f3e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:cd:c8:d8:e8:56:c7:e8:bb:4e:8c:95:2e:
0e:11:df:10:78:5b:0e:e6:97:d2:0c:46:94:0e:aa:
15:d8:62:48:20:c5:09:a5:01:63:48:46:19:4c:9d:
42:f1:b2:df:9a:76:00:dc:90:4e:51:17:53:be:16:
0e:62:2e:8d:ff:55:ca:4d:48:c2:07:61:48:c3:cc:
c4:d2:5b:dc:9a:b0:7c:5e:25:62:ca:8d:22:da:df:
f4:ad:7e:bb:4b:30:89:4c:e6:5a:95:15:53:db:d0:
cc:02:e6:07:06:43:f4:d7:fc:d9:33:a8:45:78:e3:
36:12:00:2f:07:7a:7f:80:f3:5b:26:29:98:62:48:
fc:6c:c2:0d:a1:f1:ef:ee:44:bf:62:2e:1b:f9:b5:
8e:db:1e:92:17:88:7d:64:22:eb:02:bb:69:42:96:
01:2f:f9:6b:23:ab:06:80:30:12:02:ed:62:c9:68:
bb:5f:2c:b6:04:8e:12:7b:2b:1d:a7:43:41:b7:dc:
00:4d:29:57:5d:62:ad:7d:f4:34:f5:e5:b0:ec:9e:
1c:4e:8a:67:37:ba:ab:38:29:2e:e7:bb:64:26:b6:
4c:19:bc:28:da:c2:3c:c5:f1:03:86:db:18:47:2d:
7e:db:d9:76:dc:12:5c:e4:de:12:de:27:eb:3d:8c:
0b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:24:FB:53:ED:58:99:12:F7:73:DE:D3:54:B0:AA:06:AC:6F:3E:92
X509v3 Authority Key Identifier:
keyid:43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:33:54:40:16:8c:3d:e8:00:f2:2b:6f:d5:04:2b:41:97:29:
89:a3:1f:71:31:96:2b:d8:3b:63:ed:fa:92:06:46:ee:54:5e:
a5:e8:c3:c3:7b:eb:b9:8a:d5:33:1a:62:78:3e:6a:aa:24:ce:
e4:3f:30:1e:59:a2:10:4b:e4:19:44:1d:fa:51:dd:33:a7:fe:
b0:87:1c:0a:0c:9f:31:eb:18:cf:01:16:4d:82:a3:5d:f9:b0:
f1:dd:0b:37:2f:62:16:1b:6c:39:05:b7:3d:43:22:9a:1f:df:
42:e2:6c:f4:ca:d1:c6:95:19:c3:da:90:c1:6d:29:1f:8c:3b:
54:1f:52:f2:d6:5e:df:2a:c4:86:a1:3c:e2:cf:da:01:4d:a8:
f6:2b:08:05:cb:60:40:46:41:a8:6d:a9:e2:df:ac:46:9f:3e:
52:ae:ec:c3:ad:ef:82:c3:0b:ab:8b:e3:9d:f3:5d:58:5a:b9:
7f:16:f5:47:1a:cd:1b:97:66:49:46:d9:a8:1e:9b:b6:3a:82:
10:e2:d6:6c:27:59:28:e9:f8:d9:b8:64:8b:b3:54:cc:d5:9e:
74:66:eb:b9:7c:05:85:e9:f1:62:1a:55:dc:b1:6f:a1:9e:26:
57:5c:95:c3:58:2a:eb:b5:d0:e3:63:2e:83:a9:90:a0:37:aa:
58:91:00:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 18:20:55 2025 by rpki-client