Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
File: QIVi4riWGyLinHYtbJkDMbo2Zm8.mft (raw, json)
Hash identifier: CvIL7lrxNGUhd3cKVljqn5BPCHA/iB5tFEHk602wRLc=
Subject key identifier: BD:E6:39:65:70:B6:F2:FD:7C:79:AB:3A:0D:D7:10:1D:21:B9:40:83
Authority key identifier: 40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
Certificate issuer: /CN=408562e2b8961b22e29c762d6c990331ba36666f
Certificate serial: 019676434EB1BD34C0934572F4E13AD9BEE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
Manifest number: 11C8
Signing time: Sun 27 Apr 2025 08:00:44 +0000
Manifest this update: Sun 27 Apr 2025 08:00:44 +0000
Manifest next update: Mon 28 Apr 2025 08:00:44 +0000
Files and hashes: 1: QIVi4riWGyLinHYtbJkDMbo2Zm8.crl (hash: 43V8uUemeeTOvWPUR5usyTjysa1CMDOTo2ziFEjxibw=)
2: TH3iTyQHdiPtwrxen-ik0aBRXKI.roa (hash: 9e3J8Nl+Dc6K9RH7KE3BYQUYhRYoAJ/tNPR6z9IBOhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:43:4e:b1:bd:34:c0:93:45:72:f4:e1:3a:d9:be:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408562e2b8961b22e29c762d6c990331ba36666f
Validity
Not Before: Apr 27 08:00:44 2025 GMT
Not After : Apr 28 08:00:44 2025 GMT
Subject: CN=bde6396570b6f2fd7c79ab3a0dd7101d21b94083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:44:a3:63:c8:d6:80:7b:5a:71:53:ec:4b:ad:
00:fd:55:3f:7f:b7:55:a6:5c:83:96:76:0e:7a:fa:
5a:e8:54:58:77:25:e1:17:44:cc:8c:df:17:45:40:
68:11:99:c7:92:5c:b3:0b:d3:04:65:ad:8c:bb:9c:
a3:44:26:82:74:08:1c:b4:b9:6b:c6:a3:3b:fb:d0:
e6:89:2c:c1:10:d4:15:8c:30:99:58:bd:29:7d:c8:
a7:90:9b:04:2d:bb:71:36:c1:2a:39:a5:62:43:38:
e6:d0:3a:84:4a:ab:44:ae:4a:47:32:65:9f:46:24:
15:c2:e5:ea:56:cb:6a:21:ad:d6:86:00:b4:d7:51:
61:df:83:2d:c6:9e:15:db:e2:51:59:0a:93:6a:ee:
a3:53:d3:db:ee:70:32:99:ea:ef:ac:f5:c3:ae:d2:
bd:a3:ad:84:b9:b9:24:bd:b6:c5:e9:a5:76:c4:b2:
8e:54:84:b8:78:15:6e:20:95:eb:fa:96:e8:03:e5:
d0:d8:65:07:7a:54:79:26:d4:51:ad:c0:bf:07:e7:
76:05:be:13:1b:16:85:81:a4:03:15:28:42:fc:0e:
2c:d0:7f:e3:d9:33:1a:5a:d7:a3:30:5e:5c:12:ae:
76:ee:0d:77:bd:fd:03:e6:8c:89:0e:a4:3b:f7:b9:
16:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E6:39:65:70:B6:F2:FD:7C:79:AB:3A:0D:D7:10:1D:21:B9:40:83
X509v3 Authority Key Identifier:
keyid:40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:65:d7:83:8c:0e:48:c7:13:83:84:43:40:e3:d1:0a:5d:44:
70:06:7f:74:65:78:98:87:75:d4:6c:bc:94:09:21:17:cd:f8:
b9:04:5e:b0:75:33:3e:11:aa:78:16:fe:5f:49:ca:d3:50:22:
bc:cc:47:eb:27:00:e5:4c:07:b9:36:84:9b:92:a4:5b:64:aa:
e1:66:c0:ee:d5:a4:3f:13:28:63:42:5a:a6:15:8f:49:c5:f2:
d0:7a:fc:fc:5c:7f:3d:50:ad:4e:96:65:8a:ba:35:7c:ae:2b:
b1:72:70:7a:e2:21:16:9d:75:f8:a5:49:3c:72:55:cf:17:60:
54:f9:19:df:d5:9d:5c:71:b0:6c:8b:60:84:fb:9a:7a:39:24:
eb:41:e5:7f:79:1f:a3:eb:10:01:e8:97:e1:2d:7b:16:ad:8d:
92:e6:eb:e2:c1:7f:7a:dc:e4:cd:a3:04:1c:eb:a9:a3:c4:bd:
d3:4f:43:e8:41:57:69:14:1b:1b:c1:d0:ce:de:32:f2:0e:4f:
e2:7f:89:e1:10:cf:49:b9:a4:09:51:dc:a7:e1:84:5a:c1:8a:
0c:d2:70:45:d9:06:61:4e:c5:d2:8a:88:60:14:51:c5:3d:dc:
c9:a3:d3:e0:51:76:ea:86:a1:6d:9e:36:61:d4:81:1d:6a:08:
de:e3:c8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:39:12 2025 by rpki-client