Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
File: QL_eNYm0RMN59zNggxsd2OovhwM.mft (raw, json)
Hash identifier: CvRWws0/3eAKLDdTog5iXSbxWLJaQ6y4kREpJ5NoivY=
Subject key identifier: 1C:93:25:F8:9F:60:02:2A:B2:64:39:05:EB:34:29:37:63:D0:3C:DF
Authority key identifier: 40:BF:DE:35:89:B4:44:C3:79:F7:33:60:83:1B:1D:D8:EA:2F:87:03
Certificate issuer: /CN=40bfde3589b444c379f73360831b1dd8ea2f8703
Certificate serial: 0197B7EA1D2F6BBBFB2F543A8A3CD71C1DD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
Manifest number: 07C5
Signing time: Sat 28 Jun 2025 19:01:02 +0000
Manifest this update: Sat 28 Jun 2025 19:01:02 +0000
Manifest next update: Sun 29 Jun 2025 19:01:02 +0000
Files and hashes: 1: QL_eNYm0RMN59zNggxsd2OovhwM.crl (hash: 0/5oOgKR/wEZ5dKA7QPQfPpjc5bb2wa88TB2spPxtRg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:1d:2f:6b:bb:fb:2f:54:3a:8a:3c:d7:1c:1d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bfde3589b444c379f73360831b1dd8ea2f8703
Validity
Not Before: Jun 28 19:01:02 2025 GMT
Not After : Jun 29 19:01:02 2025 GMT
Subject: CN=1c9325f89f60022ab2643905eb34293763d03cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3d:31:a4:4e:d4:bc:bb:1f:48:1e:c1:22:31:
26:ff:40:53:09:1f:b5:ee:69:f1:ed:6b:4e:37:62:
54:06:fa:a6:99:ff:b0:ae:26:2f:87:39:0f:1f:b7:
25:ac:b0:35:46:b2:9f:22:23:c3:12:d7:fc:f8:50:
81:a4:36:92:29:40:3f:9f:93:6f:89:9c:d0:20:f8:
b4:c9:8a:71:36:57:31:3e:71:d1:07:f6:c7:42:12:
cb:47:0f:f0:07:a4:59:85:1a:41:a3:7a:d3:ba:de:
24:e1:18:75:aa:ec:bf:3f:c9:15:84:b1:a0:33:1d:
0f:be:0f:6e:60:a2:4e:80:1a:d9:ec:5e:e6:ad:91:
4d:f0:60:09:b7:ce:57:0f:4c:b4:ec:31:ad:ba:19:
7a:6a:eb:a4:43:86:5f:ef:ea:5d:a8:cd:3e:e2:87:
ec:35:8d:78:1a:41:52:98:77:ce:7b:ff:9f:7a:cb:
44:17:b9:31:80:28:81:3d:aa:bc:10:3b:b6:d0:84:
cb:00:06:71:37:0d:52:ef:ac:62:5d:19:a7:66:2f:
15:ff:27:b9:21:b4:73:f9:21:4b:b2:9a:fc:e9:81:
95:70:c2:b4:5d:4c:4d:d9:85:91:69:13:a0:81:35:
2c:42:cf:03:59:68:f6:bb:b9:26:5c:e4:9d:a6:18:
f8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:93:25:F8:9F:60:02:2A:B2:64:39:05:EB:34:29:37:63:D0:3C:DF
X509v3 Authority Key Identifier:
keyid:40:BF:DE:35:89:B4:44:C3:79:F7:33:60:83:1B:1D:D8:EA:2F:87:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:41:d1:bf:c9:2b:e2:e6:73:88:1e:53:16:19:1f:e0:aa:43:
f7:12:7e:19:9d:8f:d1:74:5c:6c:25:96:de:46:e7:d4:0b:0f:
f3:e6:be:a9:5d:51:f0:2b:ef:3a:a5:10:7c:a4:af:f4:af:c7:
26:b8:6d:a3:dd:24:de:b8:ce:6c:f4:a7:f2:13:e4:b7:b8:78:
7c:52:15:e8:4f:3d:17:c9:89:44:0c:3a:d7:48:bc:d6:44:1d:
48:3d:4e:4f:7a:b8:ad:10:dc:b3:bf:b5:63:75:5b:76:41:3b:
24:0b:f2:3f:8d:20:49:fd:6b:8d:a6:92:2b:9c:b7:b7:91:5e:
df:5b:f4:70:be:ad:26:8c:d2:2e:70:e0:48:68:8c:c6:f2:56:
fe:e0:50:65:21:4a:25:6a:ad:91:4d:ac:3d:ea:d8:7f:54:fb:
22:ce:16:61:07:90:e0:19:da:3a:bf:65:8c:03:c1:c6:75:3f:
dc:9f:d6:80:5e:a4:21:eb:a7:8e:6b:32:3c:a4:5c:6c:34:3b:
be:ef:6e:e6:aa:b1:d1:6a:ec:09:49:6b:a4:1f:f5:6e:b8:cf:
f1:e6:79:6b:7d:80:09:77:ac:90:e1:51:04:8a:c8:d9:18:a4:
b0:fa:97:63:53:29:e9:12:a8:dc:ef:4f:d8:c1:dd:bd:72:d3:
90:90:84:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:36:32 2025 by rpki-client