Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: fJ7tCf1MV40xX80ZSsF10Z0n6MXTq2iXavNK0CKm77o=
Subject key identifier: 53:81:58:E4:70:1F:30:10:D5:0F:A2:81:5C:0F:D2:C7:A8:1F:D6:28
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 019680224A7A63D601997EDEE12ABB26BF79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 1516
Signing time: Tue 29 Apr 2025 06:00:53 +0000
Manifest this update: Tue 29 Apr 2025 06:00:53 +0000
Manifest next update: Wed 30 Apr 2025 06:00:53 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: AlPcXBkZ8agjlxYCAHBO2KE0yIZjhclkoINljRqPiyE=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 06:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:22:4a:7a:63:d6:01:99:7e:de:e1:2a:bb:26:bf:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Apr 29 06:00:53 2025 GMT
Not After : Apr 30 06:00:53 2025 GMT
Subject: CN=538158e4701f3010d50fa2815c0fd2c7a81fd628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d5:be:55:98:4c:74:18:6b:46:7f:76:e6:89:
f5:f4:59:f1:cb:66:e9:db:c6:fc:f0:71:c8:71:aa:
f8:5f:01:b8:98:4c:91:51:66:fa:f7:44:40:02:43:
2d:5a:63:45:85:e5:7a:fd:ca:07:3e:b7:4d:2f:38:
8c:b2:33:38:17:01:37:bf:a9:21:2a:db:3e:ee:6e:
f7:fa:c1:23:23:ae:be:94:63:56:46:82:26:f7:be:
42:d7:51:e8:8b:b9:f1:c7:41:77:e6:55:a6:56:16:
a5:97:9c:74:40:61:d6:93:6d:1f:5f:b9:d4:76:0a:
1b:d6:fb:c9:ae:db:3f:a3:34:52:58:30:8f:a5:95:
57:99:c3:af:af:8b:8c:bd:cf:76:37:f8:12:f1:5e:
02:88:0c:63:89:b3:f9:10:4a:2f:62:c7:06:77:80:
8e:00:1e:9b:14:c5:75:a4:d3:c0:6a:20:a6:9e:df:
75:2c:40:78:e8:89:9c:03:66:b9:19:b1:77:72:88:
e5:c7:ce:67:f8:27:a9:af:56:c9:32:fc:5e:78:59:
fc:12:55:fc:21:4b:92:d3:fb:8b:e8:2e:3c:59:17:
f5:4e:d1:e9:b1:4b:c0:cb:2f:03:83:88:ca:02:57:
8e:4a:8c:16:52:46:3f:ca:39:83:34:46:7f:b9:97:
c5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:81:58:E4:70:1F:30:10:D5:0F:A2:81:5C:0F:D2:C7:A8:1F:D6:28
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:59:3c:50:43:51:c7:22:55:d1:fe:41:49:ee:78:71:ea:18:
6c:e3:39:d4:a3:cd:a4:a9:d8:d5:b5:7c:46:b0:e4:a3:ef:91:
78:c3:dd:e3:85:12:2f:88:4a:58:e9:f3:e0:91:26:da:5e:32:
49:f4:c0:b4:49:57:51:ca:9e:98:59:0b:74:26:bc:9c:3d:82:
83:76:94:dc:38:1d:01:5d:f4:f6:f9:38:6e:f4:f5:4d:9b:16:
d4:ca:10:38:fb:63:6c:27:45:6c:44:75:71:30:b2:45:56:83:
34:3e:da:c8:8d:0d:5b:f9:06:56:85:92:5c:f9:08:b1:29:f4:
48:66:0e:64:d9:14:f4:40:ed:a0:7c:24:6d:32:6e:72:ea:00:
ca:7b:1e:6f:1b:d7:c9:81:f8:1a:e2:99:35:fb:c3:50:80:82:
a8:8f:c7:80:1e:1d:88:6d:bd:02:ab:4d:88:ae:58:49:7d:b8:
2c:1e:8b:8c:44:2b:90:06:17:32:e6:d1:90:05:05:c5:03:a4:
85:5f:5b:5a:a3:01:ed:e5:d3:54:14:1e:db:01:bd:c4:5f:fc:
19:8f:76:f9:90:7b:7a:b1:fc:79:ad:95:00:e1:ce:d4:73:14:
3d:11:18:9d:38:fe:c5:25:f6:e3:79:b1:74:2c:9a:b3:a9:c4:
0c:c1:d1:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 13:58:04 2025 by rpki-client