Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
File: q4PmT3LdWIn7E9whjGg_bi-s9bI.mft (raw, json)
Hash identifier: l7H2TieBJG1iSWV2zLGqDrXMdn//41uMQXcJx+0FGUA=
Subject key identifier: E6:90:A3:B1:5A:92:C6:3A:7A:9B:C0:84:D8:19:11:83:F4:1C:B5:B9
Authority key identifier: AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
Certificate issuer: /CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Certificate serial: 0197B8FD5DD7163161A170BA60D538D434D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
Manifest number: 15BB
Signing time: Sun 29 Jun 2025 00:01:41 +0000
Manifest this update: Sun 29 Jun 2025 00:01:41 +0000
Manifest next update: Mon 30 Jun 2025 00:01:41 +0000
Files and hashes: 1: e9Q7nqELcXh9z5GxTS2HgswbvNY.roa (hash: W3gFNoBMYCC84DrQ/3WRMBqrsKJtoro560CT0+o0FeU=)
2: q4PmT3LdWIn7E9whjGg_bi-s9bI.crl (hash: T2sZnAWhcXxkKBpnkh0izvwfzrjHiNsyQnd5cTMELBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:5d:d7:16:31:61:a1:70:ba:60:d5:38:d4:34:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Validity
Not Before: Jun 29 00:01:41 2025 GMT
Not After : Jun 30 00:01:41 2025 GMT
Subject: CN=e690a3b15a92c63a7a9bc084d8191183f41cb5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e7:b9:dd:78:88:6d:b0:9b:5b:a5:aa:55:a9:
a8:dc:39:bd:19:f1:6e:7f:42:4b:8a:4c:b7:d3:cb:
b0:c9:ad:99:c4:c3:3f:f5:55:03:7d:8f:28:48:26:
69:08:e9:7c:0b:c1:27:ac:c8:f8:fb:47:66:35:23:
4d:7a:e7:8f:d2:61:89:ff:4e:2c:17:b3:2f:fd:16:
f7:76:ac:b7:b1:4a:6e:3e:dc:0d:52:00:cd:d1:81:
1e:28:47:f4:9b:e2:f9:74:c9:98:ae:59:b9:6d:72:
bd:59:fa:b4:d5:a4:73:98:92:9c:b6:f0:d3:68:0e:
84:81:e5:f9:83:40:b2:68:6f:dc:cf:3c:cf:16:c1:
56:d9:4f:37:d0:48:66:05:d0:83:76:df:ea:94:6a:
85:22:14:9c:3a:3c:13:af:e7:3f:d0:a6:d5:0a:7b:
91:31:84:04:fb:48:a3:fb:8a:11:88:1e:a4:77:8f:
b6:09:ce:51:ab:19:3e:43:6a:f3:88:3e:f6:05:87:
d0:92:9f:ac:f1:9d:4f:27:68:3a:cb:7f:5d:db:03:
4f:2b:5b:85:82:3d:53:16:a0:8d:49:06:71:fd:64:
78:69:52:9b:f7:d6:18:af:d3:7a:2f:1c:fd:be:a6:
fa:91:0e:94:ae:0d:9f:1f:5a:45:0b:7a:de:89:c0:
40:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:90:A3:B1:5A:92:C6:3A:7A:9B:C0:84:D8:19:11:83:F4:1C:B5:B9
X509v3 Authority Key Identifier:
keyid:AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:68:8f:d5:a8:e2:91:ab:b0:d0:e6:74:14:9e:2b:12:57:6b:
88:b2:19:7d:40:a3:ba:40:de:81:50:53:fe:b9:58:10:fa:27:
14:83:93:a0:df:63:70:83:cc:d8:f1:18:34:dc:6b:c2:65:67:
02:4f:39:a6:90:c8:b8:84:1f:80:d7:e5:b2:73:d3:1a:2a:05:
f4:ca:7f:ae:e9:d8:24:63:06:b2:1b:01:f4:6b:d1:15:c1:64:
db:25:07:32:99:22:1b:67:3a:87:f0:57:81:40:25:0b:99:7d:
29:1d:1e:72:d8:d8:8f:5f:e6:c3:08:e8:b3:02:dd:df:21:97:
29:96:d4:d5:ca:b1:91:48:9d:8d:cb:ea:69:3b:6a:92:db:a6:
ad:f4:48:96:36:95:49:15:d3:79:9c:43:8d:70:4f:11:d9:f7:
3b:79:83:0e:aa:b0:4d:25:7f:ea:fc:4f:cd:a1:0c:9c:fa:fc:
5c:0c:fd:7b:f3:af:28:b8:81:aa:b0:8b:a0:5f:23:ee:75:30:
e8:cb:65:c9:f5:db:29:3f:0e:9f:91:2c:7a:03:94:b4:4d:08:
eb:55:93:c0:78:49:88:87:4c:a2:e1:30:69:8e:45:8f:de:fd:
8b:46:e1:ca:22:5a:2e:01:fa:54:d5:83:8c:57:36:56:c5:e2:
73:fb:ae:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:05:14 2025 by rpki-client