Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: l5JXCYJ98O8AZpOOujzBc9J/NMIoG+G5ayTT1tY2CKo=
Subject key identifier: 2F:AF:77:37:DB:E7:7C:6B:E3:10:19:DE:48:5D:8E:10:C4:83:39:1D
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 01967BD7BACDB777B4A87C2900656C4CC6AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 150F
Signing time: Mon 28 Apr 2025 10:00:57 +0000
Manifest this update: Mon 28 Apr 2025 10:00:57 +0000
Manifest next update: Tue 29 Apr 2025 10:00:57 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: IH8fz0+R8n1t0+cvfW60cko2VuOZUyCx9vwyBMW7++k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:d7:ba:cd:b7:77:b4:a8:7c:29:00:65:6c:4c:c6:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Apr 28 10:00:57 2025 GMT
Not After : Apr 29 10:00:57 2025 GMT
Subject: CN=2faf7737dbe77c6be31019de485d8e10c483391d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:77:06:bf:1d:fd:3a:5c:9b:7d:03:cc:01:ab:
b5:54:f2:92:15:33:36:5d:b2:cc:a4:f4:4b:56:0f:
51:ab:ba:e1:57:23:93:0f:1a:94:6b:ca:27:4c:17:
fb:17:1b:e8:f7:7f:80:c1:b4:58:2d:c4:99:cf:14:
1d:93:eb:5c:31:74:ac:7e:da:db:ea:8c:95:83:a2:
38:cb:b4:c8:3d:fb:4c:4b:1d:89:c1:b0:a1:61:98:
a1:21:22:ed:9d:da:01:86:a5:d4:c0:0f:a4:54:35:
8a:a7:d2:7f:41:f4:cf:79:aa:8a:0f:67:87:50:b0:
a5:81:04:55:b7:02:9e:bf:25:0e:54:e9:55:42:d4:
d7:bf:04:ad:d2:c9:1e:38:d3:49:b1:3e:46:33:c6:
a3:3e:3c:1a:e9:18:8c:0d:3c:4d:61:8f:b5:be:a2:
ec:be:dc:17:43:5c:32:c3:77:a2:53:7c:b8:56:0c:
ab:8f:b8:9e:bc:cb:b1:c3:01:aa:1f:37:2a:21:08:
9b:d3:f0:0c:ee:fa:c6:54:fb:72:42:bf:fe:cb:1d:
a2:5b:a6:03:8b:ae:7b:26:bb:38:68:e3:38:df:5c:
cb:02:ab:45:0f:ec:be:02:bd:d9:50:e3:2f:f2:3d:
46:73:38:25:3b:fb:8c:db:b5:cb:e9:ed:aa:f8:c5:
90:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AF:77:37:DB:E7:7C:6B:E3:10:19:DE:48:5D:8E:10:C4:83:39:1D
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:9f:46:3f:27:25:53:60:94:e9:d3:93:60:7e:14:82:ed:94:
a7:06:e9:d3:c2:37:e2:dc:02:d5:d8:9d:62:20:d6:5b:23:4d:
df:d8:67:ad:5a:4f:73:c3:8b:e1:1d:d3:22:c6:95:0a:d5:c7:
62:f1:18:65:5e:4c:96:7e:9f:a8:c4:99:1d:92:14:ee:fe:43:
76:c6:df:c2:8c:5f:d3:ea:dc:15:0b:90:98:32:cc:09:e5:3a:
9e:42:b6:51:13:0a:1f:22:30:3f:f6:14:7e:5a:9a:15:3c:82:
5e:87:71:32:49:01:6c:4e:b8:3f:b0:50:5c:66:38:6b:4a:e0:
02:f8:ac:92:fb:23:a9:74:5e:a7:70:03:84:99:2d:b2:d8:2a:
8f:49:4c:8c:c0:e5:db:7a:ce:24:8b:3c:72:76:bb:c2:df:43:
11:38:99:2d:99:4f:89:b4:64:f7:ff:a8:77:bf:39:b6:ba:9f:
2d:c1:c2:f7:b3:25:cd:02:ba:36:a8:48:38:23:e1:c4:a4:f1:
f9:6f:a5:13:d0:ab:19:35:18:05:ba:10:48:c0:ef:06:2f:72:
9f:2f:4a:da:20:f9:39:d1:0b:dc:6a:79:83:19:da:1a:3b:ec:
3b:0d:33:bc:8f:56:ce:af:ad:2c:53:e4:7b:91:e4:8d:a9:5f:
60:e1:60:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:26:14 2025 by rpki-client