Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
File: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft (raw, json)
Hash identifier: xEhuycCOTFYLFJbrlDaIxIrVuMgy7W9dkbgAWDmQ7DQ=
Subject key identifier: 0B:05:25:5A:8F:1E:06:35:6E:A1:D8:A1:68:AB:66:C8:40:05:DE:86
Authority key identifier: 42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5
Certificate issuer: /CN=42f9a96952777f1074338303ecb65025c4e2b8b5
Certificate serial: 01967679D1C02702281C46FBC4F52CA7AC6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
Manifest number: 0647
Signing time: Sun 27 Apr 2025 09:00:16 +0000
Manifest this update: Sun 27 Apr 2025 09:00:16 +0000
Manifest next update: Mon 28 Apr 2025 09:00:16 +0000
Files and hashes: 1: HF0LqW6Nn7yrC4zWZGNegGbZJQI.roa (hash: ZufShUH8VmdZ1SaW4ZA1zfhMayCSiwCUVqOn6kPrIf0=)
2: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl (hash: viqqMwUvrNYbRME5tc3uYcfav67zf2zq2wXMaLPYIrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:79:d1:c0:27:02:28:1c:46:fb:c4:f5:2c:a7:ac:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f9a96952777f1074338303ecb65025c4e2b8b5
Validity
Not Before: Apr 27 09:00:16 2025 GMT
Not After : Apr 28 09:00:16 2025 GMT
Subject: CN=0b05255a8f1e06356ea1d8a168ab66c84005de86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9e:b4:38:83:5f:74:56:7d:0f:fb:87:0e:dd:
bf:bf:54:d6:ef:53:72:fc:9d:8b:fa:70:28:67:1a:
5b:88:ad:ef:ef:ed:92:c0:3f:76:b9:6e:69:eb:ac:
89:71:45:f3:2c:4e:1e:bd:13:52:b8:7f:bd:fc:fd:
24:5d:cf:0a:db:31:5e:b4:3d:70:58:61:a3:9b:80:
dc:fa:28:74:5a:43:22:f8:8f:a3:c3:3f:7c:0a:9f:
9d:79:fe:94:ca:38:b6:08:85:63:0d:91:bb:8b:81:
87:14:21:35:a3:a1:ed:01:bc:bc:5d:b8:cd:71:e5:
a7:11:a0:63:35:f7:57:5b:91:7a:03:3b:14:c4:3a:
2e:5f:03:44:e6:81:57:78:6a:55:be:b2:8e:e4:92:
11:c4:53:dd:38:05:e4:b7:ff:e0:b0:c0:09:a7:d1:
d9:f1:f4:d9:f0:20:99:f2:f5:41:8d:d0:28:85:d2:
90:df:8b:06:a3:91:df:9f:07:06:b3:d8:f3:37:7b:
1b:ac:57:3e:97:94:ea:d7:1c:31:73:0f:c8:bf:ac:
da:51:f2:2f:5a:d0:57:23:7d:ef:2e:a5:d4:1b:9b:
9e:9e:68:dc:d5:a6:97:39:c8:0d:29:5b:57:d0:90:
ea:cd:8c:20:31:ef:1a:c6:9f:74:31:09:7f:cd:10:
44:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:05:25:5A:8F:1E:06:35:6E:A1:D8:A1:68:AB:66:C8:40:05:DE:86
X509v3 Authority Key Identifier:
keyid:42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:35:d6:52:12:71:fc:ef:eb:05:f5:7a:9f:d2:47:a8:86:d6:
62:07:ab:b7:95:30:8f:6e:9d:2c:77:3b:14:2c:d5:d2:33:47:
85:9d:f4:2a:1d:b0:69:e2:83:98:43:f9:c4:86:e9:d9:ae:23:
7e:83:8d:c7:09:ac:06:e7:f0:22:c2:d9:1e:32:37:d2:65:d1:
0b:b6:30:e2:7a:74:46:c5:a5:30:27:03:40:1b:ea:1a:41:07:
4e:95:33:1d:d6:2b:da:70:36:c9:09:b5:ab:07:2d:71:c6:2a:
01:d4:76:3a:24:56:e8:8c:ad:4e:67:b3:b8:99:cd:bb:17:77:
0e:46:eb:53:e0:f9:9c:51:05:e5:3a:c8:ef:90:a2:f7:48:51:
44:06:c4:b6:1b:5b:4c:47:64:17:88:05:f2:36:f0:ee:43:41:
f1:29:f0:3a:a8:68:91:c0:86:c1:a2:b4:e3:1b:5e:93:f5:4d:
8f:15:63:d8:38:a7:60:c8:cd:c8:bc:9d:42:4b:d7:fa:c9:36:
6b:5d:b4:e6:48:16:64:75:9b:58:18:07:d8:8c:33:e2:40:ce:
c5:86:26:54:14:96:31:bc:63:53:40:3a:be:dc:37:a1:80:45:
01:28:34:0f:31:5d:64:f4:53:47:81:8b:1c:ec:cb:c2:f8:77:
e6:ce:7e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:43:48 2025 by rpki-client