Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json)
Hash identifier: kUbeTyzSJQUB4wHcl4ZplaF+q35WW8sG22o4GqVcay0=
Subject key identifier: E3:20:30:DF:59:64:DF:F1:2E:20:DE:EC:1A:5E:BA:74:EF:FE:5B:72
Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Certificate serial: 01967AC4E4C1742174EFC799FAB6F28F7FA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
Manifest number: 1511
Signing time: Mon 28 Apr 2025 05:00:45 +0000
Manifest this update: Mon 28 Apr 2025 05:00:45 +0000
Manifest next update: Tue 29 Apr 2025 05:00:45 +0000
Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=)
2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: /CLnqgLeZa1vayDNJ/JzZBWCmauUaCNfLegy/1PHgKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 05:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:c4:e4:c1:74:21:74:ef:c7:99:fa:b6:f2:8f:7f:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Validity
Not Before: Apr 28 05:00:45 2025 GMT
Not After : Apr 29 05:00:45 2025 GMT
Subject: CN=e32030df5964dff12e20deec1a5eba74effe5b72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:47:0e:fc:c2:3a:33:cc:d0:29:85:af:5d:51:
06:8d:bb:7e:f2:8b:e1:1c:96:04:8b:5f:50:0c:6c:
ea:b3:42:70:22:4f:00:8f:61:e4:6e:45:86:7d:5e:
c4:da:14:41:34:2b:2e:22:a2:87:7b:1d:fb:86:02:
06:81:67:c3:39:51:35:0d:8e:a1:93:67:fe:a3:a1:
c2:5c:78:de:2b:a5:4d:f5:f2:bf:22:d5:79:4a:dd:
fb:3e:a2:7a:ea:86:b3:be:20:57:e6:05:9d:3f:db:
40:69:84:38:16:60:07:fd:a6:ba:6f:10:21:7b:46:
f2:45:69:07:92:f1:81:9d:ea:ec:13:8a:bd:4f:21:
af:30:82:1e:cd:f3:d7:a5:ad:c9:27:2b:69:b3:26:
b9:5e:23:64:d3:c5:2c:7d:f5:db:4f:29:e7:62:cc:
b1:b2:7e:f7:ed:e1:5b:da:53:6b:70:5c:5e:12:6b:
96:50:34:1d:90:50:7f:3f:3b:63:9c:4a:e0:1a:b7:
73:d8:28:a6:c1:7b:67:4d:2f:e1:e5:51:59:59:95:
78:42:46:23:46:3b:2a:58:4f:29:eb:9b:90:ec:d2:
20:0d:e1:95:12:04:f7:e2:10:f5:4a:0c:af:db:1c:
3c:73:d5:e8:58:d7:0a:56:47:bc:0b:e4:1b:c1:29:
59:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:20:30:DF:59:64:DF:F1:2E:20:DE:EC:1A:5E:BA:74:EF:FE:5B:72
X509v3 Authority Key Identifier:
keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:0b:a4:f2:d7:3a:1e:31:ae:77:eb:b4:a9:d3:91:07:d3:1c:
20:1d:ef:bc:a6:08:05:e0:41:8b:fd:2c:b2:5c:f1:d2:c1:e1:
d5:44:71:f5:4e:aa:1e:b5:fd:da:56:c7:ab:3b:89:b3:8f:13:
f6:30:d3:3b:d3:f5:15:fb:40:04:f2:12:e2:ad:38:38:f1:bb:
48:de:47:3e:b6:e0:2f:d6:84:d2:75:6d:41:a8:de:04:34:bf:
50:63:4f:11:98:38:c4:12:a2:91:35:5c:3c:ba:c2:73:33:64:
d7:d6:93:01:db:fe:5f:bd:75:ab:6a:26:b5:0a:c0:ad:a1:b7:
e7:45:ee:16:f3:6f:4f:63:89:5e:d7:f7:b1:d5:ad:f8:9f:af:
ad:be:61:ab:7d:11:13:d7:f4:38:62:5b:17:d8:01:c6:90:58:
88:c6:5a:10:3a:9c:a5:d2:3f:86:95:0f:49:89:b7:66:2e:e3:
5e:97:1b:71:de:af:80:b8:fa:18:1b:98:45:66:6b:63:4c:7c:
6f:c5:59:e1:90:3f:47:b4:ec:f7:55:ba:5d:b7:6f:5e:5c:d6:
de:65:2e:b0:83:d4:dd:68:ce:7d:54:cc:e1:fc:c8:b0:60:73:
3a:14:3d:cb:38:df:46:ea:c0:4a:a5:df:22:18:88:ac:8c:22:
68:11:76:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:06:08 2025 by rpki-client