Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: T4u4iBmrZYOWRK7sj22SGHnKZGAwyxeQq+rp5wSzK80=
Subject key identifier: 0E:37:9F:46:F7:64:47:91:E8:A3:63:67:19:02:07:83:12:67:41:97
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 0196AC8D683DB8ED4F47CE1E4CB0BFDA8F7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 1529
Signing time: Wed 07 May 2025 21:01:10 +0000
Manifest this update: Wed 07 May 2025 21:01:10 +0000
Manifest next update: Thu 08 May 2025 21:01:10 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: mvZBrl0y3wa4m6NIsAEdw+AroIzV6vWiYJ/HNNs9IFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:8d:68:3d:b8:ed:4f:47:ce:1e:4c:b0:bf:da:8f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: May 7 21:01:10 2025 GMT
Not After : May 8 21:01:10 2025 GMT
Subject: CN=0e379f46f7644791e8a363671902078312674197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:77:b3:01:fa:e1:83:6c:46:b9:d3:3f:1c:29:
68:0a:be:c6:00:d9:9c:5b:ee:2d:2d:7b:29:e0:c0:
02:8e:79:42:67:0e:81:0d:18:90:56:b8:28:7b:48:
74:76:e3:f5:a6:b2:12:0c:dd:bc:82:58:65:71:ef:
10:a2:6e:ea:1d:6d:a9:ce:2e:23:ff:14:60:23:a7:
d2:32:6e:bd:f2:64:c2:de:3e:37:d6:ec:3a:3c:9e:
c9:b4:15:b7:a8:4e:cb:01:b5:37:d1:dd:bb:82:e3:
8a:e0:32:a1:1c:4d:43:8a:54:5a:ea:3b:e8:25:72:
f8:0f:ce:14:c1:43:0b:07:d5:47:1e:aa:98:45:3c:
6f:56:46:5e:16:91:3b:d5:58:f3:09:cf:24:c8:b2:
74:82:60:37:d7:8e:20:4b:d8:3b:c4:85:66:63:ee:
c4:ac:2b:5d:70:ff:19:47:7f:ee:2e:44:8f:99:44:
b3:d8:80:90:b7:14:fd:9a:7f:63:19:74:63:3b:19:
77:0d:9c:61:5f:f1:ef:d1:d9:a9:99:0f:36:b6:e1:
e6:86:b9:60:a8:63:c2:a7:1c:b6:3e:13:fc:82:ff:
ca:f5:4b:a3:ad:58:50:91:4e:9b:3f:c2:3d:12:a9:
ac:70:9c:37:81:db:79:b6:10:c9:df:df:b0:73:37:
6a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:37:9F:46:F7:64:47:91:E8:A3:63:67:19:02:07:83:12:67:41:97
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:9f:7f:fe:c8:7e:f9:51:2b:98:b7:e3:62:a0:9a:9a:6e:0d:
dc:fa:d3:a0:65:74:1e:6d:bb:64:01:d0:6d:c8:3d:28:ce:63:
d6:9f:8e:a5:15:e5:f4:5a:3e:97:6c:10:c0:4c:d0:b3:b6:c8:
c8:f3:4f:93:fc:dd:6c:65:4d:63:93:85:20:38:89:30:1b:5a:
d3:4b:f3:c0:b8:53:c8:6c:2b:01:94:53:8e:77:c2:58:42:ce:
6c:eb:32:8e:a1:f3:42:30:a2:2f:fa:d5:69:2c:5c:89:ae:b5:
5e:6b:cf:a8:dd:33:4b:5a:3d:a4:4f:b4:d9:ab:22:63:cd:36:
85:af:c3:c9:97:88:e8:af:42:af:ae:0e:de:66:4a:9b:ea:e8:
2e:64:94:58:5d:4a:cb:79:fd:b7:9a:2e:05:28:81:29:52:43:
cf:3d:a4:5a:d1:fc:c1:a1:9f:bf:bd:1f:3d:10:3c:e3:c3:c6:
45:ce:21:15:74:58:39:bd:ae:9a:8f:fc:61:f0:a5:36:4e:98:
2a:62:f3:bf:d5:14:7e:eb:a0:d8:77:8b:30:6e:da:71:cd:74:
25:cf:06:a5:1b:0a:31:64:22:d7:6b:10:11:07:15:82:08:e0:
37:35:e3:e3:6e:62:51:62:8c:b3:86:fa:51:7e:94:f1:b1:c2:
88:bf:18:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 00:47:42 2025 by rpki-client