Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: zJnIbQ9APltf4LKbiht1380hqGhJ/nuvV6lpZ3nNlwo=
Subject key identifier: DE:0B:A0:17:3E:09:E0:67:E0:A4:86:93:85:E1:D6:3C:DE:E9:73:8C
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 019677FBA986546AD670737927B7B3F90AA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 082D
Signing time: Sun 27 Apr 2025 16:01:43 +0000
Manifest this update: Sun 27 Apr 2025 16:01:43 +0000
Manifest next update: Mon 28 Apr 2025 16:01:43 +0000
Files and hashes: 1: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: AHwreagzpXxPPPRPrWt8Jkl2TB7sgxg6QB92GBpxOKM=)
2: EOgnkpCGO25TfSV28ABNiElbHMI.roa (hash: xamMOb/MG2jklBJl6shRJRNZ2UW4izFBKtZBvXEcSVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fb:a9:86:54:6a:d6:70:73:79:27:b7:b3:f9:0a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Apr 27 16:01:43 2025 GMT
Not After : Apr 28 16:01:43 2025 GMT
Subject: CN=de0ba0173e09e067e0a4869385e1d63cdee9738c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8d:00:a3:bf:0c:25:f6:f3:07:cf:19:24:e4:
cc:f9:1c:d7:3e:f3:fd:a5:0d:c8:2c:5a:dc:c9:82:
ec:82:b1:a1:b6:f6:50:77:fe:5b:17:90:52:fd:62:
0b:89:7c:c2:ee:eb:c6:53:ca:24:f2:53:66:ef:ed:
a8:ce:63:c5:a7:9d:6b:dd:3c:c6:8b:2d:c5:2b:98:
50:13:e5:c7:8c:29:98:c4:48:0e:a3:bb:ca:00:ae:
b2:9b:14:fa:e5:d6:cd:0f:49:f5:23:31:c4:84:bf:
89:29:75:3c:53:ca:2a:7c:f6:5c:c6:7c:71:a4:cf:
a2:d3:54:71:91:54:6d:b0:90:8c:db:f1:2b:30:02:
da:40:74:d0:e0:f1:7e:47:26:25:4e:ac:6a:b6:14:
cf:64:6b:2c:35:3f:67:bb:69:92:47:2d:1b:f5:6a:
3e:a1:82:8a:23:73:a8:96:ef:51:8e:1b:e9:58:31:
5b:ab:aa:8c:28:b9:0f:0d:f7:fa:2e:f0:ea:61:d0:
cc:4d:0d:bb:ba:ef:24:7c:d5:66:b9:5d:0b:39:63:
b2:30:85:36:22:94:a6:bf:a4:5a:78:0c:47:94:2d:
9f:c9:38:10:f8:71:5d:26:9d:ca:f7:7e:dd:cc:9d:
bf:31:21:c4:c3:1a:83:84:e1:c8:5c:0c:3a:6f:de:
0a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:0B:A0:17:3E:09:E0:67:E0:A4:86:93:85:E1:D6:3C:DE:E9:73:8C
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:34:31:c1:14:79:d1:07:fa:37:65:42:4d:17:01:06:b2:c9:
33:ef:9a:de:b1:98:e5:7a:f5:3e:96:56:1f:ae:da:67:7f:bb:
51:f6:20:19:67:1e:58:53:e0:2e:96:bf:b6:eb:e6:cf:1e:d3:
80:b6:82:8a:a9:05:f6:dd:09:96:b4:a3:44:bf:65:af:91:9f:
a9:26:fc:63:d5:56:3d:c5:ce:a5:86:75:9b:f6:c4:28:04:f2:
3b:5b:03:35:bb:5b:22:6a:c1:19:bd:17:3f:94:e4:b4:01:58:
cb:71:c8:16:09:47:e9:96:2c:6a:5c:5e:82:7f:09:28:27:fc:
df:76:c1:ed:15:54:3a:9c:cd:cc:f5:0b:a8:d5:6b:c0:5f:06:
97:65:eb:c7:e9:fa:b2:67:54:8f:0e:0a:6b:bb:76:50:07:b8:
fb:9f:bb:f5:62:b5:e9:58:23:3a:1e:95:6c:d4:0f:1f:e1:35:
60:8d:24:ab:07:6e:48:ec:a1:79:7d:cd:e6:96:9b:a1:1d:2f:
c4:46:67:1a:dd:f7:1a:d2:ad:d3:6f:1f:9f:75:46:ca:41:e9:
f0:51:d3:17:e9:b2:4f:d9:4a:70:04:70:19:5f:4c:5a:cc:f3:
c6:11:9d:52:a6:b8:13:78:29:30:5d:78:11:cd:ad:91:cd:3b:
96:fb:1c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:15:38 2025 by rpki-client