Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json)
Hash identifier: uJrOibFbHBDovOf5OeuBpIH5WSJHgkY3XV5JDp8ybR0=
Subject key identifier: 1B:D9:24:81:16:42:95:68:EA:B9:06:03:80:37:02:9A:CF:A5:0A:B1
Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Certificate serial: 0197B8FD76F5ED3E54C273D28D44CCB40415
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
Manifest number: 15B3
Signing time: Sun 29 Jun 2025 00:01:48 +0000
Manifest this update: Sun 29 Jun 2025 00:01:48 +0000
Manifest next update: Mon 30 Jun 2025 00:01:48 +0000
Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: PKRoQJwMQFecHb23DkpYe3QdmfvItZzie/UiOfCgFvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:76:f5:ed:3e:54:c2:73:d2:8d:44:cc:b4:04:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Validity
Not Before: Jun 29 00:01:48 2025 GMT
Not After : Jun 30 00:01:48 2025 GMT
Subject: CN=1bd9248116429568eab906038037029acfa50ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4e:76:35:61:43:42:19:f1:42:73:6f:4e:70:
2b:a5:f5:b8:00:9a:72:53:14:6e:3c:a5:d3:53:fe:
89:8e:36:d2:40:77:77:dd:7f:c6:a2:30:ef:81:57:
32:e2:4e:6e:dc:13:57:f9:76:a6:d2:eb:ab:65:45:
a5:b9:70:7a:7f:d3:5b:30:d2:fc:27:48:ec:a2:82:
15:dd:1f:25:e9:ef:4e:94:5b:e7:81:a6:fa:36:9e:
cd:31:b4:47:85:9f:3c:bd:2a:02:6e:71:bb:21:6e:
25:8b:6f:b9:f4:33:bc:a1:11:8d:d3:3a:c4:ae:31:
8c:d6:3a:52:21:aa:1f:52:4b:34:4e:cd:d4:32:0d:
a9:b5:ca:8b:98:a0:b9:45:f5:db:82:49:0c:ff:2f:
77:d0:4d:67:7b:54:1c:af:f1:e3:02:1c:c8:c4:d3:
15:84:a0:2d:3b:8c:ef:3f:5f:87:f7:7e:1f:0b:f9:
da:7d:cd:46:c1:4f:54:9b:77:60:8b:6b:be:49:0b:
cd:e1:fe:3e:eb:b4:08:36:68:23:fc:07:f9:c4:97:
2a:81:8f:fe:44:2e:41:17:61:10:81:4f:d7:24:25:
f8:b6:27:0e:8c:f5:8a:a6:0c:e8:d8:a4:1f:5a:9e:
f0:08:f6:fd:8a:e3:f7:3b:f9:50:07:14:8a:9a:49:
03:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D9:24:81:16:42:95:68:EA:B9:06:03:80:37:02:9A:CF:A5:0A:B1
X509v3 Authority Key Identifier:
keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:23:44:d2:85:64:d8:48:47:e4:bc:2c:84:1f:7e:60:e4:80:
2c:80:12:28:ad:90:e9:6d:8c:a7:31:f5:04:61:48:5c:f5:8a:
72:32:0b:6a:6a:d2:59:62:65:aa:ae:96:94:15:36:a5:89:24:
46:6a:94:5b:8d:5e:ba:40:08:15:14:4c:1d:50:43:14:ec:c6:
9a:84:be:5f:05:3d:56:1e:65:6b:37:a7:ba:80:b1:00:07:f2:
0e:11:4d:5f:30:23:69:ef:25:cf:24:75:a5:a0:2a:d8:ff:ef:
d0:9b:d6:96:b4:f4:84:29:e5:d4:31:88:bb:85:55:83:2f:cf:
9e:ad:62:2f:05:22:9f:4a:10:d4:3e:20:d1:e7:57:95:b4:f1:
f6:82:ed:20:9c:75:fd:f3:f8:30:27:cd:30:a8:b4:12:2e:c9:
ec:72:3e:b7:75:30:d5:e1:ad:dc:8e:ad:02:34:4d:ae:d9:b7:
84:a9:b3:89:7c:f1:fa:03:81:38:3c:24:91:4f:c5:5f:c8:b6:
1a:b1:7d:20:ad:48:c3:87:7d:25:46:51:b7:fe:48:6b:ff:b5:
c6:c5:9f:ba:a2:0e:aa:23:c6:60:01:27:07:f4:22:1b:ea:13:
b7:49:2b:e8:77:57:bc:e9:98:a4:0f:e2:2b:5f:09:a7:5a:0f:
e6:47:43:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:41:06 2025 by rpki-client