Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: 4esEHRgPnCgBCOCK80LcgWZl/J9WHZf0UkWjVwUZZwU=
Subject key identifier: 1F:2A:BF:84:1E:8D:E0:9D:C0:02:B2:A0:0E:D1:1A:A9:07:14:66:BF
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 019682111FFB1E804E6FC8379DA017B96A35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 0243
Signing time: Tue 29 Apr 2025 15:01:22 +0000
Manifest this update: Tue 29 Apr 2025 15:01:22 +0000
Manifest next update: Wed 30 Apr 2025 15:01:22 +0000
Files and hashes: 1: 21zXl1VT2wOLl9fEbNkRa053DOE.roa (hash: 5emuQVjcm3y58xrRXNGECOspFNylmBXZoEALIIh48B4=)
2: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: yKNbQZrMWWjjAGYT06abnoi8F0a7ve9O3TrPHM/SORk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:11:1f:fb:1e:80:4e:6f:c8:37:9d:a0:17:b9:6a:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Apr 29 15:01:22 2025 GMT
Not After : Apr 30 15:01:22 2025 GMT
Subject: CN=1f2abf841e8de09dc002b2a00ed11aa9071466bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:de:28:e1:02:71:a0:9a:7f:0d:59:86:fe:a4:
28:47:56:47:80:b6:80:cc:a1:e7:7a:48:f3:2d:a1:
82:e0:90:9d:ce:76:e8:a7:28:92:80:0a:db:e4:0f:
d5:a0:98:9f:4d:19:f3:45:6d:f5:41:1a:ca:b9:b5:
a9:c4:64:b7:20:51:9f:d6:ae:a3:4f:72:e5:ae:6d:
c9:a0:bf:a1:f8:4b:7c:4d:c1:40:72:29:24:b6:33:
29:59:de:68:0b:05:10:66:92:91:8b:ac:f4:36:b1:
8e:09:5b:78:09:12:2e:c9:47:ab:e1:3a:95:e5:d2:
f0:57:3a:92:16:40:5f:c6:f3:b7:a2:37:7e:cd:6a:
64:e9:03:bb:10:c5:75:ca:67:86:da:f0:94:9e:c8:
7b:bf:c2:92:d2:89:62:19:5b:92:6f:b0:26:b0:24:
65:e0:6b:3a:bc:94:08:18:ca:07:f1:0a:78:62:d6:
88:8e:5d:2a:92:88:9a:24:30:11:65:d6:cf:32:52:
ce:7a:4d:50:59:a8:dc:c0:d2:25:39:22:f0:57:85:
88:bb:17:f4:18:8e:91:bc:9e:18:cb:96:8e:43:eb:
39:fb:78:8d:2d:2f:72:1f:e5:d8:97:bc:c8:95:9c:
bf:d6:fc:f3:61:d7:f7:37:aa:69:18:28:59:6a:06:
6c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:2A:BF:84:1E:8D:E0:9D:C0:02:B2:A0:0E:D1:1A:A9:07:14:66:BF
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:c7:ae:57:cd:76:be:9b:7a:77:ff:8f:b2:d3:07:8c:2d:c0:
40:0c:65:38:0d:ac:07:c9:a2:fc:a2:2e:f9:68:71:11:ea:e8:
2c:3c:2b:37:30:cd:b6:aa:cb:cc:3f:cf:7c:8f:91:aa:ba:cf:
28:e8:e3:8c:8f:a5:b9:a6:0f:53:4a:d7:3b:bc:2a:e9:21:5f:
c2:0c:25:e9:18:74:68:04:34:05:3d:cb:fb:ef:66:b7:04:49:
15:43:26:3d:07:f0:ea:63:65:05:6b:de:39:f8:c5:e6:55:be:
77:a5:73:c7:0e:43:37:e1:50:39:bb:e6:c2:86:12:c4:77:19:
47:a8:82:a0:78:f0:d1:fb:d2:9c:11:6d:e9:7a:3c:25:94:03:
f4:6d:4f:44:c7:f0:1a:d5:e7:c1:3d:25:eb:05:1d:7a:ee:41:
52:95:f0:8b:20:a5:3c:2f:27:4c:d4:30:b2:e1:ac:81:a9:92:
5a:c8:38:b9:df:d6:b2:b0:e2:f1:bb:46:c7:9b:aa:48:f5:01:
2a:1e:75:e9:29:84:33:21:f8:7b:6e:8d:8b:d0:6e:c7:9f:44:
79:68:5f:20:fb:2b:e1:cf:9e:6c:28:15:6e:02:84:4e:fe:13:
f4:04:2d:75:a7:58:81:1f:af:6b:8c:71:cf:4e:e1:94:ae:53:
84:54:4a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:41:35 2025 by rpki-client