Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: pnBaOD/hOqm3SFAxrafbozzIWzq2iUlBdIqlkPpo//Y=
Subject key identifier: E4:1A:35:11:1F:8F:8C:B0:70:7A:9B:E5:58:D1:71:3D:E3:3B:2F:E0
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 01967567182E09E252DD158CEAA680D2C272
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0B2B
Signing time: Sun 27 Apr 2025 04:00:12 +0000
Manifest this update: Sun 27 Apr 2025 04:00:12 +0000
Manifest next update: Mon 28 Apr 2025 04:00:12 +0000
Files and hashes: 1: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: eIwbJ1ILznAhEMhFccfFF+raRPb2N/dat/BzC2C6630=)
2: u25_l7rqpA4jc9Mn9X_nn6jE1D8.roa (hash: XxkiW8kKfa52GpQHHiGBtUNZJLczRvJy5PTfiodYsrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 04:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:18:2e:09:e2:52:dd:15:8c:ea:a6:80:d2:c2:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Apr 27 04:00:12 2025 GMT
Not After : Apr 28 04:00:12 2025 GMT
Subject: CN=e41a35111f8f8cb0707a9be558d1713de33b2fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b4:07:14:15:79:24:c9:c3:ce:9a:3a:44:54:
ce:b2:2a:d4:06:12:85:32:11:04:cf:38:6e:34:4b:
00:56:9d:ef:36:65:45:5f:2e:44:03:fc:6d:28:5a:
fb:4c:ad:25:95:41:cd:3d:cb:7a:df:82:2b:18:06:
6a:04:3e:2f:dc:bd:d8:62:d8:03:eb:7a:a4:3d:09:
f8:8d:60:8f:0b:37:52:39:08:66:a5:51:05:f0:82:
3c:6a:75:37:34:b6:46:64:b5:89:6e:31:bf:de:a0:
2d:21:8e:81:76:f0:03:99:23:1a:7d:0b:cd:0d:6e:
35:f8:6b:48:ec:81:7e:8f:47:a3:02:13:71:fd:0a:
77:9f:67:48:ba:2a:cd:b7:4e:aa:46:ab:60:a8:33:
23:b3:84:22:2e:8d:68:89:8d:e9:81:63:8c:8a:3d:
56:7c:5a:a0:cf:2a:85:ea:45:94:95:3b:65:0e:de:
2e:9c:33:07:2c:5f:d5:39:e3:3d:17:0b:80:4e:a5:
e8:15:60:5e:55:ba:79:72:56:6b:d6:b7:69:1a:38:
8d:c2:cb:61:da:51:1d:ca:ff:ff:48:28:75:c4:7f:
e1:d2:d1:16:a4:55:29:03:89:a2:db:38:01:f3:dc:
5f:0b:3f:5b:2c:6a:09:47:9e:b5:6c:d9:20:fc:65:
50:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1A:35:11:1F:8F:8C:B0:70:7A:9B:E5:58:D1:71:3D:E3:3B:2F:E0
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:39:76:45:4b:3f:6b:57:2a:00:4a:7c:ce:60:29:62:15:61:
f9:cb:93:5d:38:44:31:bf:f6:06:21:8b:84:02:a9:75:2e:d9:
63:0d:47:c4:d5:84:46:b5:a7:7a:f5:19:77:f1:dd:1d:85:77:
d5:d0:cc:b8:ed:e6:50:05:60:34:bd:fb:c7:15:0c:e4:d2:50:
31:ad:7c:93:d6:d8:c0:da:30:6f:f5:fa:8e:46:b3:51:fc:ae:
28:00:58:5d:72:8d:55:85:c2:0e:bc:b7:25:9f:b9:b6:bd:de:
5b:5f:85:7a:16:0a:fc:93:e7:c1:d9:a1:8e:d9:cc:4b:b7:c2:
6c:4f:b8:5d:86:ba:9b:85:f1:d2:a0:a5:76:de:f8:33:ad:5e:
f9:32:20:fc:cb:c9:48:e2:01:f3:a2:6c:22:c7:1c:bc:d2:be:
a8:8f:a0:b3:8a:e2:d3:73:3b:19:df:d5:1d:25:6c:c5:9b:d6:
4c:fd:f3:7d:ca:0a:c0:01:6d:14:51:87:e0:ee:1a:2d:ff:4e:
7e:54:cc:01:97:49:12:db:56:7d:a3:ec:1e:64:04:f6:d7:d3:
c4:7a:63:be:83:39:fa:b3:f2:0c:19:7e:50:aa:0e:af:f7:e7:
b0:07:52:04:b0:d3:9c:2d:b1:c5:7f:dc:94:ae:2f:e1:d2:fe:
a1:a7:dc:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:50:27 2025 by rpki-client