Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json)
Hash identifier: oRzmTwe81ti/WkKA2Ky9ONghGaiHxocCwbaNYbaEBz4=
Subject key identifier: 96:EB:2E:63:9D:AB:6A:88:E3:37:D1:E4:3E:9C:C5:D4:EB:31:91:D3
Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Certificate serial: 019692965C0F60778146DFA8B8DD93A08E8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
Manifest number: 017A
Signing time: Fri 02 May 2025 20:00:49 +0000
Manifest this update: Fri 02 May 2025 20:00:49 +0000
Manifest next update: Sat 03 May 2025 20:00:49 +0000
Files and hashes: 1: UGApytPJPEIPFbzs4L0oU_KIdHM.roa (hash: cf5ZtJTmEf4eW9FhhtNmIkoS04da9/P7WQkJtlas3+0=)
2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: xXmpfUYYIZJdWYN9dZcBuuxMSTXSyc6s0nBsvMBvZo8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:92:96:5c:0f:60:77:81:46:df:a8:b8:dd:93:a0:8e:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Validity
Not Before: May 2 20:00:49 2025 GMT
Not After : May 3 20:00:49 2025 GMT
Subject: CN=96eb2e639dab6a88e337d1e43e9cc5d4eb3191d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b1:76:fe:07:4d:64:55:99:46:13:60:5e:5b:
48:de:61:d0:06:2b:18:83:df:2b:7f:39:41:bc:73:
20:e1:9d:f3:82:a7:64:06:19:2f:58:37:4c:3c:e7:
c2:73:fe:b0:d4:aa:b5:e7:81:19:53:be:dd:1d:f5:
6e:17:ce:20:bc:f6:90:1a:25:bf:9d:35:5e:f1:5b:
7d:f3:d6:42:78:53:1c:0f:66:96:97:93:2d:bf:cd:
cf:f7:3d:80:22:75:f3:dc:ca:a1:3b:07:1b:aa:ac:
2e:9e:bf:2b:e6:db:4a:66:7c:d6:b8:6d:aa:44:49:
ae:b2:54:8a:05:92:c7:3c:b3:e4:bb:bf:97:9a:8c:
a1:0c:3d:47:b9:eb:cc:eb:ca:52:26:bf:60:21:45:
92:e1:66:01:1b:53:95:fd:1e:7d:db:a5:2b:9e:0b:
0e:9c:51:7e:a6:73:32:c8:c6:97:a9:f3:a3:76:d3:
c5:ed:0e:e2:a4:99:d3:6d:a5:d2:c9:19:b6:d0:8e:
f4:57:00:4b:34:17:ec:5a:b7:33:46:c8:95:85:71:
be:54:39:e9:8e:19:b3:75:1a:a1:70:2b:c3:2b:6b:
b2:2d:c7:1a:e8:1b:58:f1:24:ac:6b:ce:04:30:e4:
ea:1b:92:1c:c9:aa:ed:3a:40:44:4d:35:85:2b:b7:
ef:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EB:2E:63:9D:AB:6A:88:E3:37:D1:E4:3E:9C:C5:D4:EB:31:91:D3
X509v3 Authority Key Identifier:
keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:1f:e6:e8:e1:c1:3f:ca:43:5a:37:a6:df:6e:a4:c6:de:d9:
07:8e:22:63:a4:71:52:0e:73:74:72:07:0d:7a:c4:13:5a:48:
23:bb:d6:b3:28:87:ed:50:4b:cf:2f:41:04:0a:49:c2:3b:c4:
90:e9:93:74:79:4e:01:88:42:90:61:07:ac:00:86:d1:85:9a:
2b:1c:35:84:cb:46:25:fc:f5:80:fd:cd:86:11:36:1d:b8:ca:
24:f8:ed:18:25:09:ca:39:2a:93:21:40:4d:4b:b8:bf:25:92:
bf:14:af:90:66:35:5e:1e:ad:26:f9:b1:31:6b:3b:4a:bd:32:
36:79:75:b4:ad:8b:fa:62:8b:57:2b:e4:b5:48:f1:ef:f0:55:
42:93:40:ff:da:29:b2:0c:71:b6:a3:a7:ee:33:b9:79:88:0f:
e9:09:9d:d4:73:8a:15:af:08:7b:36:35:5a:65:54:a8:59:55:
48:5d:69:36:c3:11:38:bb:a7:5f:57:78:d6:58:25:75:c9:c9:
7b:78:c0:5a:cf:1c:9a:35:79:78:da:12:8c:2e:18:39:77:19:
81:05:f8:fc:cf:a1:ca:14:61:c6:db:b9:39:bb:7e:1d:55:7f:
8e:fe:42:fe:6a:b4:79:71:57:ff:93:12:24:23:fe:f8:1a:66:
a8:e3:82:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 05:11:44 2025 by rpki-client