Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
File: QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft (raw, json)
Hash identifier: twijpye9hqI3h/vbdxrAgf0g+HEqPOPG//ghuQTiDdY=
Subject key identifier: B0:AC:D3:D9:1C:1A:F9:B4:77:57:34:4F:D1:86:A2:7C:45:38:02:82
Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Certificate serial: 0197B820C228DE525DBC604FB2E22801D9B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
Manifest number: 0BD3
Signing time: Sat 28 Jun 2025 20:00:43 +0000
Manifest this update: Sat 28 Jun 2025 20:00:43 +0000
Manifest next update: Sun 29 Jun 2025 20:00:43 +0000
Files and hashes: 1: QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl (hash: 6h9WNlCKDcyweh4DrUGqlMmVaOH8+QG3o7on5E6UZMU=)
2: vfjUIsx7CDVuZMrXZKkgTFoznUI.roa (hash: kc2fyWr6FJL7rTi0mPaMQj4eZbP6Y0dyJoouX+alOvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:c2:28:de:52:5d:bc:60:4f:b2:e2:28:01:d9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Validity
Not Before: Jun 28 20:00:43 2025 GMT
Not After : Jun 29 20:00:43 2025 GMT
Subject: CN=b0acd3d91c1af9b47757344fd186a27c45380282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9a:cb:ab:33:96:2f:54:60:4e:e6:76:a6:e0:
48:f4:36:96:3f:10:7a:03:08:e8:b4:32:18:b3:30:
f0:76:d6:0b:d4:cb:14:08:7d:71:aa:2f:9e:8c:a1:
03:2e:68:07:cf:2e:6c:ea:06:b6:3d:3b:18:a8:a3:
c6:40:cc:53:9d:ef:24:72:13:51:88:33:dd:53:b0:
14:02:7b:a6:60:45:ac:ab:3d:e2:f3:df:2f:ef:c6:
a0:da:e5:46:13:61:dc:74:b7:c1:8e:48:e3:2f:b2:
e4:40:24:51:bb:7c:ae:3d:15:a5:23:a1:b3:97:db:
7d:df:8d:4c:c3:e0:f6:33:cc:ad:4c:13:30:65:a5:
90:96:1a:18:8e:c1:0b:c2:54:29:e0:16:9e:88:8f:
58:00:c9:15:05:95:e2:3b:dd:fd:d3:e0:f6:eb:61:
17:21:cd:4d:e9:e2:28:0e:d9:54:d5:d8:c4:88:5b:
af:73:06:f6:85:19:ae:e5:6b:3b:ba:06:04:b4:62:
58:e5:a1:fa:a5:46:fd:3e:da:d4:cb:7b:92:75:84:
39:08:54:5d:d9:12:67:c1:9c:76:83:21:41:93:ad:
c7:49:38:32:1c:c7:c5:a1:bb:f5:32:da:2e:b7:c9:
77:8e:2a:2f:9f:0b:3a:ae:1f:2c:35:f1:d1:50:95:
bb:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:AC:D3:D9:1C:1A:F9:B4:77:57:34:4F:D1:86:A2:7C:45:38:02:82
X509v3 Authority Key Identifier:
keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:ca:0f:8d:7d:1e:56:85:4b:c4:15:3b:55:dd:6d:4e:1f:2a:
5d:02:ef:ba:b1:4f:f4:f0:bf:30:55:ea:b6:71:28:49:33:5b:
1b:51:13:b4:79:05:cc:14:66:18:8d:09:08:e9:c2:1f:78:80:
a9:b5:f6:7e:cc:6c:26:16:52:d1:49:2c:25:26:54:7e:3c:11:
93:28:64:d6:db:4b:25:bf:00:a9:bd:64:1c:15:db:17:95:61:
aa:5a:20:b8:20:e5:90:03:5e:57:ba:77:e1:e0:20:2f:68:12:
fb:ef:19:40:e9:d5:8a:f0:b5:e2:9b:52:4a:ca:a1:44:aa:2e:
70:b2:e0:8a:6d:8d:9d:ba:b2:0a:81:20:bd:cb:17:bb:f0:36:
72:7d:9b:ac:a9:88:9a:98:a1:60:56:0b:e7:54:16:74:ff:05:
32:fa:57:b4:8f:00:47:0c:d1:0a:aa:ca:16:12:32:87:d6:5b:
fa:99:ef:7c:39:c2:2d:be:52:18:47:c9:ab:7b:a7:00:68:55:
e6:b0:32:6d:b1:4f:a3:25:6c:ea:e3:10:91:16:88:91:10:d1:
14:1c:d6:0b:cc:94:38:9c:7a:e6:2f:7c:4e:c9:eb:ed:bb:7f:
0c:bc:7e:91:42:a5:6e:64:52:ef:ea:53:46:49:c4:a1:b6:b1:
4f:1d:01:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:04:38 2025 by rpki-client