Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
File: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft (raw, json)
Hash identifier: qHRck0NXodj/PYVKMvla75ArUiW1k+dY3aUIjKF0C0s=
Subject key identifier: 20:35:12:31:44:DD:A5:B9:1A:D2:27:7B:53:F7:84:CA:5F:5B:84:D0
Authority key identifier: 43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
Certificate issuer: /CN=43cf416193a1c2ed3056b647e5a46503148e3824
Certificate serial: 01968435E066A2A6B2C99BCBBE4D77D5DDA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
Manifest number: 05D6
Signing time: Wed 30 Apr 2025 01:00:45 +0000
Manifest this update: Wed 30 Apr 2025 01:00:45 +0000
Manifest next update: Thu 01 May 2025 01:00:45 +0000
Files and hashes: 1: EVfs3Ty5us2kONM9lNbKxeOpQy4.roa (hash: XNAy20rJW1bN/SCZtyAydEWkC3qMnBorsPnV2qCqZ6A=)
2: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl (hash: S79Qd1m51UdMqFFi80zn2MjMgKmT8HSs20f4MmVxLak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:35:e0:66:a2:a6:b2:c9:9b:cb:be:4d:77:d5:dd:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43cf416193a1c2ed3056b647e5a46503148e3824
Validity
Not Before: Apr 30 01:00:45 2025 GMT
Not After : May 1 01:00:45 2025 GMT
Subject: CN=2035123144dda5b91ad2277b53f784ca5f5b84d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6c:84:35:b8:6a:22:22:11:04:a8:7f:40:71:
75:61:0c:e7:b2:58:82:6c:4e:6d:dd:d5:c5:02:f5:
5f:93:ea:f9:56:3f:67:38:68:a5:0b:64:a0:f9:1b:
08:c3:16:bc:b0:fb:d8:45:64:81:31:1a:c2:c8:3d:
be:ca:a9:30:8a:92:0d:68:12:17:bd:04:a8:5e:24:
28:a7:c2:c6:81:fc:c7:df:a9:35:63:90:6e:24:ab:
46:45:98:3a:fa:86:89:d3:38:3c:fd:6a:5b:a4:5c:
ec:73:07:e8:73:c4:ca:31:8e:bd:ce:aa:43:d2:3a:
3e:2f:a1:d6:02:8f:6f:ac:6c:3e:35:ec:a7:7c:d1:
51:45:50:cb:66:57:3d:a5:41:d2:1e:42:8c:65:26:
db:1a:42:d6:90:ea:4b:53:c7:a8:f9:3c:aa:7e:8c:
27:8f:2a:32:0f:b8:a2:a8:1e:42:89:e8:13:e9:09:
21:fb:9b:75:2e:78:55:33:c1:14:99:75:17:9f:c3:
da:9e:2e:8c:a8:11:cc:3f:c5:48:43:5d:2f:55:46:
07:a7:72:3c:0c:0b:ef:4b:00:07:f1:58:b9:86:1c:
ed:8a:94:b1:9d:e0:eb:89:4f:76:88:dd:d2:d2:cf:
75:d2:0f:93:e8:a8:a5:ca:4f:17:0a:87:29:33:55:
7f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:35:12:31:44:DD:A5:B9:1A:D2:27:7B:53:F7:84:CA:5F:5B:84:D0
X509v3 Authority Key Identifier:
keyid:43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:28:6e:9e:cc:2c:c3:8f:7e:c4:0d:0c:37:6f:56:ec:f4:ea:
5e:90:ca:21:b6:52:77:97:e0:08:62:fb:d8:9d:44:df:59:a0:
45:de:01:ba:24:b8:35:25:37:fe:b6:7c:1d:7f:e2:37:15:77:
31:05:80:20:ee:1b:bf:e2:97:c5:d4:47:1b:5e:91:6b:89:6a:
db:ad:df:cf:3c:92:64:33:83:5e:45:56:5a:bb:c6:e0:c6:39:
db:73:19:11:09:33:f6:21:98:f8:b3:2a:b7:09:7b:e4:54:7a:
04:d1:d0:2e:0f:94:5a:d8:e3:fc:aa:e3:bb:df:dd:1a:c9:16:
e3:cb:da:6f:2f:68:37:cd:41:c2:fa:8a:55:7d:b9:c5:ca:10:
76:ad:2d:f7:2c:84:d3:e2:64:d1:bc:ea:81:c7:82:74:41:c7:
be:28:e2:ec:22:b5:42:95:27:37:ce:f0:b5:e9:e9:d5:a7:46:
c6:a4:be:d2:27:95:77:99:32:73:61:38:c6:6a:bb:97:86:95:
9d:3c:5b:56:42:0f:86:46:b2:06:53:c9:54:48:0c:8f:e1:64:
bc:51:0e:65:8c:8f:2f:8a:bd:5a:12:f7:86:69:75:e7:ac:de:
cf:99:29:5d:fe:dc:78:2e:99:31:25:5a:81:5c:ff:e0:74:8f:
e4:f3:73:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 09:36:21 2025 by rpki-client