Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
File: QEPj9wJFibliregc9EVjBvTTXmg.mft (raw, json)
Hash identifier: 8jnPpWzQ0SOB76H1udpN3yohNxDaXWXsvlc33UaN/FU=
Subject key identifier: 1D:20:32:B1:DE:F6:A1:79:3C:B1:67:D1:17:9E:29:0F:9C:42:C0:AA
Authority key identifier: 40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
Certificate issuer: /CN=4043e3f7024589b962ade81cf4456306f4d35e68
Certificate serial: 01968BB8980E5A7BE0F98DE50B2C510545FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
Manifest number: 1201
Signing time: Thu 01 May 2025 12:00:52 +0000
Manifest this update: Thu 01 May 2025 12:00:52 +0000
Manifest next update: Fri 02 May 2025 12:00:52 +0000
Files and hashes: 1: 7347cFurkIFVNRTShqXtdTwOLOA.roa (hash: 81GL5pa945jQA5j8/X64fsQyRv+u1Eyr3yERMPF2bKE=)
2: QEPj9wJFibliregc9EVjBvTTXmg.crl (hash: GDNg71P7diuSpdomxUyN4WJ2AlCIAYgIUlmYRDFd9vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 12:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:b8:98:0e:5a:7b:e0:f9:8d:e5:0b:2c:51:05:45:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4043e3f7024589b962ade81cf4456306f4d35e68
Validity
Not Before: May 1 12:00:52 2025 GMT
Not After : May 2 12:00:52 2025 GMT
Subject: CN=1d2032b1def6a1793cb167d1179e290f9c42c0aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:69:42:19:29:1c:5a:2e:d1:d1:f7:20:db:d1:
c1:ad:71:18:d6:b4:50:85:c1:4b:fe:e9:d4:d1:73:
fd:06:be:d1:e0:d0:6c:aa:78:39:90:17:9b:c4:a6:
d2:8b:f8:a8:7d:df:c3:9d:fb:ab:aa:ec:1f:66:17:
3e:e7:10:42:5c:47:7e:60:c7:e1:49:58:b8:fb:cb:
b6:d2:eb:32:a7:00:dd:a0:62:99:25:6e:b2:1c:ad:
a2:09:86:96:02:43:a4:3a:f0:56:84:07:17:6f:e9:
30:5f:8e:ba:9f:ba:ae:40:98:e8:0c:bb:5a:e4:6e:
db:ea:d5:da:b5:ea:18:e2:ab:1c:15:fb:ee:43:8a:
a4:82:6a:b0:4f:0d:4d:39:71:d4:87:cc:10:e6:4f:
ef:a3:e8:30:08:96:7c:44:8e:cd:2b:a6:85:cf:56:
93:3c:03:64:52:e3:94:f5:76:dc:ea:2c:89:d6:84:
85:ab:fc:2d:d1:4c:f6:15:ea:ef:4a:8f:e5:47:8c:
f1:cd:48:a0:0f:ae:1c:26:97:07:aa:ba:83:30:ff:
0c:9e:c6:ac:04:01:09:b6:76:78:cc:a7:35:10:64:
05:11:4f:fe:48:13:93:51:4e:21:35:17:7d:b1:0c:
37:e4:d7:38:58:90:a8:70:18:12:99:9f:fb:44:ee:
48:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:20:32:B1:DE:F6:A1:79:3C:B1:67:D1:17:9E:29:0F:9C:42:C0:AA
X509v3 Authority Key Identifier:
keyid:40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3c:24:91:58:cf:57:9f:ee:b3:c5:6b:34:84:12:8b:d9:35:
29:93:5e:55:4e:57:5d:1b:72:86:b4:f2:68:1a:76:44:69:d4:
c7:3a:24:7c:07:e5:2d:a8:15:34:4b:94:27:e8:e7:52:79:b0:
92:b7:7b:60:2a:31:81:8d:02:62:06:09:57:f0:3a:83:5b:48:
cc:03:1c:86:52:59:2f:cb:49:34:c5:f0:e0:4c:7f:2e:15:73:
6d:3f:0f:6b:29:2a:22:bb:e0:9b:d6:bc:d9:4b:71:b4:2a:a4:
02:d7:a6:29:18:4c:89:67:13:03:f1:bf:ce:60:7a:5c:ad:42:
2f:d9:ef:9c:38:25:3f:13:e4:55:58:b3:d1:1c:a2:40:14:9d:
8e:79:71:fb:c4:83:43:1f:40:07:3d:92:22:1b:43:5c:06:1f:
d3:d3:8c:28:30:96:01:2b:71:0f:a3:7b:63:a3:ae:f4:22:88:
76:1a:10:ec:7d:f7:69:ba:1d:67:ab:9f:99:2e:7a:2f:8f:7b:
cd:ac:9f:40:ae:88:95:47:8d:dc:f3:52:78:07:b6:0f:a4:48:
c5:ce:d6:a8:94:e0:5e:c8:31:a7:b4:81:4f:b6:41:62:5f:ec:
c7:fb:a9:0f:92:6c:5a:33:7b:ec:ce:33:95:42:6d:83:0d:88:
40:79:f1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 23:00:30 2025 by rpki-client