Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: +hQycsp8AF3qEm7sAGktJLtXG8Ti6gSI8p9eHAo2JNo=
Subject key identifier: 72:4C:16:F7:DF:F4:11:5B:81:81:BE:1A:56:34:C4:1E:C6:78:EA:6D
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 0196748BD829483FC364BBA5CFB7A0E42294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1510
Signing time: Sun 27 Apr 2025 00:00:43 +0000
Manifest this update: Sun 27 Apr 2025 00:00:43 +0000
Manifest next update: Mon 28 Apr 2025 00:00:43 +0000
Files and hashes: 1: QLHEJas53oiAGzs_YSaCGuwaZeU.roa (hash: OfpByeH9dDyJ45cIcWM9guSmvu9MoGjj7YKQgKOyd/0=)
2: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: NqyWDo0LaDOaTgGOAaztUNC1iLscstlJcPCQ6tc2sv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8b:d8:29:48:3f:c3:64:bb:a5:cf:b7:a0:e4:22:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Apr 27 00:00:43 2025 GMT
Not After : Apr 28 00:00:43 2025 GMT
Subject: CN=724c16f7dff4115b8181be1a5634c41ec678ea6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c7:77:54:0e:a4:23:ca:8c:c7:82:4e:a0:50:
8b:b3:af:8d:bf:a3:a1:ea:cc:31:e3:5f:88:97:2c:
a8:3d:75:03:71:53:cd:e3:48:6d:28:d3:19:0f:05:
53:83:8f:26:19:4d:09:e6:69:30:a5:62:6c:f6:7f:
c6:02:be:b9:01:85:80:11:db:12:0d:1d:ce:db:e1:
69:76:86:16:72:04:e8:62:db:ed:4b:5f:7a:41:cd:
f2:3d:7f:4d:17:58:90:13:a7:bb:6e:6a:98:bc:e5:
f0:11:7d:6b:67:90:a2:97:d0:75:af:e1:03:20:85:
a6:f4:2d:17:f5:8c:7e:12:b9:50:d7:89:45:bc:bb:
fc:e5:9d:cc:70:1c:d2:b6:b8:59:35:18:26:8f:e4:
de:f2:c6:b0:f1:46:46:82:2c:03:52:03:3b:cf:0e:
e8:76:b7:8e:ce:1a:9e:0e:92:c4:76:b6:d4:2c:64:
b5:79:22:52:a5:77:bd:59:2d:c3:c9:4d:95:20:e9:
fc:fb:fc:d7:a1:1c:35:27:57:7d:42:63:98:cf:45:
7b:57:ea:11:98:15:1f:e0:7a:51:c6:f7:f6:04:cc:
83:60:5f:64:41:ca:c0:87:6a:a3:0e:99:3a:54:03:
67:83:08:f1:bb:1d:50:11:e8:3c:ed:e5:2e:80:43:
f6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4C:16:F7:DF:F4:11:5B:81:81:BE:1A:56:34:C4:1E:C6:78:EA:6D
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:b3:37:bd:93:43:12:80:66:48:8d:72:f8:e0:da:e1:5b:b1:
07:39:be:01:f2:e7:a9:a0:4c:8c:96:11:42:c8:da:38:05:37:
a6:77:0c:64:7f:be:31:16:91:89:05:4b:9e:f1:f8:47:62:aa:
c6:7b:12:61:6e:79:ca:0a:04:c3:c7:b5:95:3c:87:ef:cd:4b:
3b:ab:f8:71:91:73:81:d6:40:3d:5e:a2:de:9b:c1:80:ee:ee:
fe:8d:20:0d:7c:43:58:3c:98:86:5e:60:b3:f5:cd:05:c9:39:
00:62:31:d6:2a:90:a5:e3:df:1e:45:a7:cf:70:60:88:39:19:
cb:c5:f9:e4:69:2b:c2:81:28:e2:d7:e9:6e:3a:7c:9f:6e:b3:
fe:f4:d0:07:3f:64:25:07:38:d6:dd:51:b6:d6:12:fa:6b:f2:
c1:9d:df:fb:0d:29:6b:8a:94:a8:cb:df:2c:cf:a7:31:70:ff:
a0:15:fa:fd:44:cb:7a:df:fd:f7:b9:da:80:26:72:08:ba:1d:
82:f8:2a:c0:83:46:26:4c:0e:a2:19:ad:b1:d9:5d:db:9f:78:
56:c1:f0:1d:de:aa:0b:f2:ef:93:fc:95:7f:a1:4e:0f:16:c3:
02:5c:b7:79:ea:47:d4:d8:3b:e5:27:a5:a8:72:98:29:ee:d8:
d7:90:9c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:50:37 2025 by rpki-client