Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: x9Fw+qxHCDLT+yl3qkeFjITZd8bw3ySQcjZifKJwkS4=
Subject key identifier: 92:4A:04:61:5A:AD:0B:18:74:53:8D:19:1C:D6:B2:DE:19:1E:23:53
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 0197C8DE2F3D88E2466B3E2A292B9C2711C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 02B9
Signing time: Wed 02 Jul 2025 02:01:33 +0000
Manifest this update: Wed 02 Jul 2025 02:01:33 +0000
Manifest next update: Thu 03 Jul 2025 02:01:33 +0000
Files and hashes: 1: Lh_NKL7D2mWFyhzHGugt5SgY5Oo.roa (hash: DjvsQWCGurUIzxMM5VASKrLIiSf6rVM8+QHojBeXG6I=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: 2skMWJQQuP/kQYwsYuMQ/lYetmD/bgfyFPhZ7uiNK8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 01:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c8:de:2f:3d:88:e2:46:6b:3e:2a:29:2b:9c:27:11:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Jul 2 02:01:33 2025 GMT
Not After : Jul 3 02:01:33 2025 GMT
Subject: CN=924a04615aad0b1874538d191cd6b2de191e2353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bf:b0:5c:81:3a:0f:f9:62:3a:10:be:67:a8:
31:26:68:9b:ed:b5:53:e0:2d:81:2b:16:3d:ec:4d:
2b:24:3d:21:27:f9:3f:96:a8:ea:2a:38:93:da:da:
cf:dc:3c:17:aa:5a:b2:47:82:c0:bc:46:c2:53:a5:
b8:61:3d:3e:eb:99:d1:41:80:ee:e8:c3:a7:30:b4:
ea:8c:7e:99:ad:c9:68:1b:24:f2:bd:45:fe:18:a0:
58:68:62:f5:02:6a:91:e1:56:88:38:7c:19:ce:76:
3a:6b:e6:c6:85:f1:4c:4a:79:22:47:5b:df:9d:ef:
eb:b5:16:0e:50:f0:66:08:6c:00:a2:80:c2:76:69:
7e:2f:42:d5:6e:91:ea:70:e3:8e:6e:93:a0:60:41:
80:02:5b:8b:dd:c6:74:0e:63:dd:46:1c:4c:bb:f2:
a1:f3:e9:f1:0a:77:be:75:99:82:c5:5c:3e:2f:71:
ea:60:0a:fd:60:8d:9c:a9:0e:09:79:3f:ae:b3:5e:
ad:f0:69:48:26:59:7a:d1:35:a9:b0:fe:03:89:e9:
0b:f9:8a:fb:68:09:7f:23:89:ac:d4:cb:19:07:7e:
ab:ca:6f:b1:8f:ce:e2:f6:c7:06:96:eb:86:27:dc:
f0:64:a3:84:da:e4:03:a8:3d:7d:d6:46:e2:3b:0d:
5b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:4A:04:61:5A:AD:0B:18:74:53:8D:19:1C:D6:B2:DE:19:1E:23:53
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:9c:76:fc:16:06:60:2a:af:c9:de:15:7d:70:e8:cb:0c:20:
5e:ee:aa:02:ba:05:47:37:a5:e4:33:37:6b:a3:17:8f:e3:6b:
8d:a8:a8:88:09:af:96:26:a0:3e:74:68:49:46:ea:75:7a:66:
86:f5:13:e3:0a:d4:12:71:98:7b:18:4c:13:bb:a0:8d:69:a7:
1e:dc:4b:81:ef:d1:2e:27:c7:d9:76:12:e8:c1:ff:53:30:c8:
a6:51:82:66:63:5a:c0:8d:ac:03:9c:d7:1b:c9:4d:ba:a8:64:
d4:97:ce:8b:9b:fd:04:e9:ca:b4:db:11:88:7c:0f:17:b6:87:
78:93:de:02:bc:49:94:d3:7e:c4:0a:33:b8:82:66:f0:10:96:
e8:48:bb:45:e1:0e:5a:c2:37:11:8c:b3:35:fd:43:63:93:c7:
2a:69:63:2c:0b:c5:f6:44:04:7c:8a:37:7f:44:4b:42:03:ea:
8a:8a:18:3d:1c:43:67:39:8f:32:4b:54:93:74:22:20:66:1c:
66:7d:37:d1:72:39:6a:8e:ed:c4:2d:a0:12:4c:9e:67:df:9a:
85:c6:f2:b6:b4:59:b6:2d:5f:68:8b:7f:0a:28:bb:6a:87:38:
48:b0:09:94:d9:20:5e:8d:ba:92:50:09:f1:16:af:1a:3d:b7:
37:c5:81:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 06:03:40 2025 by rpki-client