Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json)
Hash identifier: m3bW6mzTZnLWlenCUFn+hiSXCyNSuw7OOl6jA9xbJls=
Subject key identifier: 1A:36:80:E0:41:42:6C:2A:D2:CC:F7:DC:53:A2:36:80:2D:E9:B4:D4
Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Certificate serial: 0196756787B641D7930AB8AA0F68829D1743
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
Manifest number: 64
Signing time: Sun 27 Apr 2025 04:00:41 +0000
Manifest this update: Sun 27 Apr 2025 04:00:41 +0000
Manifest next update: Mon 28 Apr 2025 04:00:41 +0000
Files and hashes: 1: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: Zxu3G9JbD6aEo/u9DLIIdPvAvkfZq6OJZrvKFeWIuYY=)
2: etqHJp94mEXyM-mZRNVFRO7Kziw.roa (hash: Y6iOU/XBP66s91SGzXjQj2BEKS4QjWa/buoOF4uhFqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:87:b6:41:d7:93:0a:b8:aa:0f:68:82:9d:17:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Validity
Not Before: Apr 27 04:00:41 2025 GMT
Not After : Apr 28 04:00:41 2025 GMT
Subject: CN=1a3680e041426c2ad2ccf7dc53a236802de9b4d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:43:8a:9e:da:28:3c:3e:10:de:f8:ba:79:bb:
1c:99:6d:cf:42:92:82:97:08:93:98:bb:ab:79:c7:
fc:80:4a:7b:71:ac:ae:c6:87:b5:f8:55:29:48:a6:
3b:9f:1d:37:65:87:2b:e0:21:c3:15:17:6c:ef:7c:
fe:20:71:19:39:6f:c0:a2:12:8f:dd:37:b4:51:7f:
48:f1:8b:f2:76:06:89:98:d3:47:fa:f6:0b:2d:dc:
34:c2:3a:1b:e8:6a:69:10:f8:25:61:f7:39:be:68:
f8:93:97:27:32:30:d6:87:31:e8:1f:14:f7:2d:b9:
bd:7f:81:d1:2f:20:79:75:6a:fa:c2:56:7b:29:1a:
7b:e0:d3:5b:b5:e4:bf:25:cb:86:1e:ad:de:81:5d:
40:f5:47:99:34:77:3a:d4:d3:81:db:52:71:25:f4:
6a:8c:b9:5b:de:39:4a:97:2d:4f:cd:e6:a9:a9:1d:
03:0b:80:a4:58:ff:dd:71:65:38:f7:92:28:a9:02:
bc:6e:9d:27:57:f4:4f:2c:0c:cb:c3:bd:50:d3:0b:
6f:b1:67:2e:37:82:4d:54:46:51:3a:af:b3:6e:3b:
0f:be:cf:57:31:6b:b1:e2:38:86:1c:63:3a:57:d8:
84:34:06:73:19:22:fb:3e:f6:07:9d:3a:3a:39:f7:
c0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:36:80:E0:41:42:6C:2A:D2:CC:F7:DC:53:A2:36:80:2D:E9:B4:D4
X509v3 Authority Key Identifier:
keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:8a:1a:c4:90:2d:ab:a1:f6:e5:f3:48:fc:fd:07:be:a2:b8:
26:fa:96:29:5b:78:27:fd:9e:dd:15:7b:96:71:12:dd:39:04:
d1:2f:e6:18:29:d2:88:f8:be:ad:78:89:d1:3d:d6:67:ce:6d:
f5:c0:d5:48:0e:21:62:0b:43:79:1c:c6:72:ba:08:4e:e8:55:
50:82:46:06:af:3a:36:fd:35:c4:82:84:a3:26:cd:c8:38:28:
0d:17:46:22:a2:eb:07:83:c4:51:b2:a2:c4:7d:a9:6f:d0:8b:
73:83:74:94:bf:93:c1:fa:03:04:f4:cc:ff:12:35:69:b5:f7:
9a:c3:ba:1c:94:23:c4:c4:21:16:d0:44:08:d3:8b:81:a7:85:
94:63:af:6e:ae:a8:5c:5e:af:7a:c1:66:54:ef:16:b9:6e:39:
8b:1b:37:2a:d1:d3:c9:b8:47:06:d2:50:d8:5f:6a:be:7b:46:
b5:08:c1:5a:8f:d6:fa:2e:1d:56:e5:4f:15:f6:a7:4c:7d:ea:
c5:71:60:49:8c:d4:c2:68:b9:2c:c6:26:cd:98:dc:bf:44:d5:
53:0c:cc:4d:b6:36:bb:18:a5:3c:b8:31:f4:13:de:a0:bd:d7:
cf:1d:c3:9b:14:d0:14:b3:c8:ca:bc:13:ed:6f:79:5d:3d:ec:
93:7e:80:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:02:31 2025 by rpki-client