Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: D+DxIB3e0rNbxsfGgaRYXbF5oJI3ieJjEa5ZkndUbJg=
Subject key identifier: B0:5A:01:5D:84:76:C0:52:B0:7B:29:A2:29:1C:E0:80:65:74:A4:05
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 0196827DE6E6FD7F5FA8A6551E390A3CD08F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 0FE0
Signing time: Tue 29 Apr 2025 17:00:11 +0000
Manifest this update: Tue 29 Apr 2025 17:00:11 +0000
Manifest next update: Wed 30 Apr 2025 17:00:11 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: J2rHz44xnNjE6QcBeo1FESWoVXZ9p4KjrGbhSXNCJlA=)
2: fD4OezRM4UrasrKKJ10uGn5_Qug.roa (hash: +HiHjgUZa5Xei+THiDncnTXYzPCxqbbX0ahPYM7QsZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:7d:e6:e6:fd:7f:5f:a8:a6:55:1e:39:0a:3c:d0:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Apr 29 17:00:11 2025 GMT
Not After : Apr 30 17:00:11 2025 GMT
Subject: CN=b05a015d8476c052b07b29a2291ce0806574a405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c1:04:f0:6d:d9:4e:5f:85:85:e0:8c:54:dd:
eb:e0:14:a5:e7:93:ef:0e:67:6b:27:86:17:49:dd:
c5:db:d0:c3:a9:a0:86:5e:b3:c1:c9:67:ca:c5:7f:
d7:d5:6c:51:17:80:e5:3a:b5:b8:d6:32:ea:b3:1a:
c3:af:55:17:95:72:da:a4:9a:24:73:3a:f7:8d:25:
c7:5b:2a:a5:0d:03:5a:da:b1:49:ee:49:bf:e5:ca:
3c:24:ee:69:65:dd:62:0f:eb:96:67:4b:e2:31:91:
7c:d0:a5:d7:3c:ea:2e:7b:91:39:6a:35:c9:e2:20:
82:f5:4e:4e:24:05:a5:3c:5c:b8:50:4e:34:65:bb:
ea:47:3b:c1:7b:12:68:15:ee:87:36:27:52:5c:af:
4e:b9:cc:53:e0:67:b7:f6:ea:ff:6b:b1:3f:fb:5e:
e0:9d:5f:15:95:96:db:5f:85:ef:eb:f0:b9:8e:5c:
12:9e:05:a9:f0:af:ea:69:4c:1b:19:23:d6:94:2d:
d7:0f:d3:3c:27:1f:32:7c:71:dc:1b:99:70:0d:d5:
89:60:93:dc:9e:b6:92:05:b9:2c:23:39:07:d0:01:
dd:ae:bf:18:3e:52:53:1b:08:51:76:ee:91:be:81:
0c:50:fc:36:a4:0c:06:76:7f:46:05:85:08:2b:55:
95:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5A:01:5D:84:76:C0:52:B0:7B:29:A2:29:1C:E0:80:65:74:A4:05
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:e6:95:27:09:39:e4:3f:a9:c2:29:ae:47:da:5b:84:c2:f8:
4c:c1:a4:a6:96:f6:b9:e2:8d:14:b8:2f:4b:ff:9f:82:05:7f:
75:a7:f9:74:27:b3:91:28:53:6c:9f:b3:32:db:f1:63:9a:78:
65:49:08:f0:49:28:de:26:6f:7b:8b:2e:84:76:5f:91:e7:af:
18:b1:74:90:8f:55:63:17:80:c8:c2:99:96:a5:e0:e9:c4:c9:
e0:12:29:02:e6:a7:61:ab:b0:13:b1:d2:1a:0e:16:ed:56:92:
55:f8:48:3d:e1:ed:cf:45:a3:16:b6:bc:8b:14:82:5f:6e:61:
19:0d:0a:7f:5e:49:70:6c:ee:3d:c7:13:cb:ec:46:f0:01:20:
40:c1:54:66:0e:13:da:ef:5c:4a:de:e7:23:cd:7b:e9:98:c9:
c8:28:54:1d:e4:2f:86:a7:26:90:de:1c:bc:e5:05:4d:6e:c1:
1c:94:ab:68:65:8e:02:36:25:4c:17:77:0c:12:c4:16:45:97:
00:a7:ab:2d:3c:b3:b3:dc:2a:2c:18:76:60:8c:3f:79:06:18:
98:07:c5:2d:50:36:17:55:68:93:8a:7c:ae:eb:0d:5b:a5:d8:
b4:69:fd:59:2e:86:7e:78:36:e8:19:23:f6:33:eb:1a:1a:64:
c3:3f:6c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 20:33:05 2025 by rpki-client