Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: ITd6WUL+KniDQvzQj8Q55pf/ht4a4KMccj8M+jIaVvw=
Subject key identifier: 89:0E:FD:95:14:6E:CC:E8:E5:F9:8F:58:C2:7F:AB:B0:4D:70:B8:BA
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 01967C45E13829A7713A406DB83FC65F30F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0B05
Signing time: Mon 28 Apr 2025 12:01:16 +0000
Manifest this update: Mon 28 Apr 2025 12:01:16 +0000
Manifest next update: Tue 29 Apr 2025 12:01:16 +0000
Files and hashes: 1: 0SSsSk3JYtZfVKoUdIXep-skUls.roa (hash: lo1rRlcKmSiP/o5fsPXMsNzyze1q/0lfZDjTXaH15HI=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: cKD077ANtZpea7j5huxqEhGjfmUzGrYO4OZnGMIXQs4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:e1:38:29:a7:71:3a:40:6d:b8:3f:c6:5f:30:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Apr 28 12:01:16 2025 GMT
Not After : Apr 29 12:01:16 2025 GMT
Subject: CN=890efd95146ecce8e5f98f58c27fabb04d70b8ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:35:b9:33:63:00:c4:99:f5:96:6e:ea:9b:33:
f8:ed:ae:1f:6e:04:e0:be:55:bc:cd:60:e2:b6:10:
18:d0:c5:18:b7:c5:7c:98:f5:9f:4b:0c:7b:3c:4c:
4d:87:3c:8e:c8:b2:fc:51:f1:cc:88:a0:74:2f:78:
c2:dd:a0:e6:cb:b9:c8:f0:5d:16:6c:aa:44:7a:35:
b8:c0:74:6a:ad:6f:a3:cb:61:65:b8:6d:0b:11:6a:
7f:b4:55:dd:a0:d9:e5:6f:26:21:94:db:1c:8e:78:
21:91:88:5b:65:18:3a:9e:21:97:74:9f:83:f1:f4:
02:99:e4:36:b1:9c:3c:16:b1:9b:70:58:5c:1f:5e:
0e:77:71:d4:30:13:cf:25:28:6e:b0:93:49:ae:27:
61:5a:5b:16:d1:ab:54:ba:e2:3b:1e:18:ef:7f:14:
38:b5:13:eb:d0:11:5d:20:4f:87:15:cc:de:4b:b4:
66:ee:5d:5a:89:65:3a:fa:b3:40:7a:df:4d:90:7a:
58:9e:98:19:2b:7e:31:27:96:40:e0:b0:94:5a:3b:
86:4d:da:1d:6f:91:82:25:01:a4:f8:32:94:8a:f3:
d7:c6:2b:3d:fe:0b:58:cc:a6:46:49:f1:31:25:e5:
25:3e:94:16:20:c1:97:33:10:e0:b3:c3:f4:b2:16:
8b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:0E:FD:95:14:6E:CC:E8:E5:F9:8F:58:C2:7F:AB:B0:4D:70:B8:BA
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:bc:16:d5:db:ae:24:f7:5c:ed:bf:e1:ba:13:80:51:48:4e:
d9:da:3e:84:6b:2a:01:3f:c5:07:87:7b:87:9f:8c:7f:23:35:
66:63:e2:28:06:30:a9:02:bb:8e:e6:3f:5c:fe:83:ed:6f:e6:
a9:88:a6:46:71:9b:ec:85:6c:6f:4c:51:62:14:21:d8:c5:a6:
94:6c:39:ac:59:d5:69:95:36:e0:26:b1:e9:c2:dc:62:7c:33:
f0:c9:5b:52:d8:d5:f0:db:dc:2a:4e:18:f0:35:1f:c8:8b:3e:
87:7c:da:13:51:09:07:69:9f:66:03:47:28:9b:de:0f:9c:d5:
28:e9:c6:82:90:51:d1:06:a2:e8:84:19:63:ee:f5:9a:01:9e:
ed:04:f4:51:11:ac:d9:02:98:00:0c:ef:33:19:e1:93:db:53:
e4:39:d5:d0:0c:e2:e4:15:b4:fa:43:53:7a:d3:15:37:a2:44:
0d:59:a5:c7:10:a1:c8:4e:bd:53:a5:1d:61:5e:a6:07:90:c7:
ff:d6:cf:4b:23:28:a4:76:83:97:6a:b4:ab:25:2b:91:dc:d4:
be:e6:ef:48:80:6f:c3:36:d4:8f:8a:8e:89:23:07:d6:2b:1e:
fb:fd:05:88:b6:b1:4d:63:83:0f:e4:6f:3c:44:ec:03:64:e0:
25:b1:7e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:06:04 2025 by rpki-client