Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
File: QRoqlAW9oWccEHdvRCYnPJBOStA.mft (raw, json)
Hash identifier: QrrsCRtq8DhdU1uM+7lAIVgj6R6F414x7EDxbG96tSk=
Subject key identifier: C0:D2:C6:C7:6D:65:19:7B:0A:D7:99:1A:EE:D4:23:80:0D:CD:4B:3D
Authority key identifier: 41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
Certificate issuer: /CN=411a2a9405bda1671c10776f4426273c904e4ad0
Certificate serial: 0197B6A20CA2B7525227F9A62CD69DD96AB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 13:02:42 +0000
Manifest this update: Sat 28 Jun 2025 13:02:42 +0000
Manifest next update: Sun 29 Jun 2025 13:02:42 +0000
Files and hashes: 1: QRoqlAW9oWccEHdvRCYnPJBOStA.crl (hash: oq04LXt6T3PUoHWO7PJub+MAY+9KKCZxwzCZ46I0Alc=)
2: bM6mSCryzLcqvPFxYUCmttMEnFY.roa (hash: b8FjItegYCst2YsPStwGEOU1VLujWdlHGpQF7tCH2s4=)
3: htodApNLGhLpFMruOMlntyiGeOc.roa (hash: cFfgGJzFfvTMD4F+KAnyyiaMBsfRll7IR2YZJcMoxkc=)
4: wzndaPRsTi0mxWGQ8DwrTSyFIjc.roa (hash: kbPsqoJze+tNEJsbFqXpAiz/ui3VxFgmLT6No+U36XU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:0c:a2:b7:52:52:27:f9:a6:2c:d6:9d:d9:6a:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411a2a9405bda1671c10776f4426273c904e4ad0
Validity
Not Before: Jun 28 13:02:42 2025 GMT
Not After : Jun 29 13:02:42 2025 GMT
Subject: CN=c0d2c6c76d65197b0ad7991aeed423800dcd4b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:4b:ec:c6:13:82:85:da:da:1b:77:58:8d:a7:
f9:f6:ef:44:ec:e3:a6:0a:fb:06:a0:64:82:2a:3d:
b4:f3:bd:0c:14:68:b6:90:c9:a8:f5:97:30:fd:86:
f7:7b:e5:5d:f6:24:e5:f2:8e:19:db:2d:03:06:1c:
90:27:e7:50:65:0c:50:0d:2c:3b:ae:75:24:08:8d:
c3:2d:54:9b:1c:70:8c:55:72:2d:8e:64:0f:4a:09:
a2:11:fd:b9:14:c6:2f:e3:79:dd:93:21:a5:9b:ed:
a3:30:46:96:eb:48:11:ac:a6:92:f9:74:06:b2:82:
77:f3:04:ca:fc:6e:b4:cd:6f:45:a7:c8:5b:37:8c:
66:cd:ca:8f:1e:29:26:87:43:c4:7a:fa:24:8b:8a:
d0:dd:7d:ec:cb:7c:08:ed:7b:53:a2:3b:9e:13:32:
20:ff:72:48:bc:29:5f:ce:df:d7:ce:50:b3:66:0d:
da:bc:a5:31:ec:06:85:0a:48:c9:5a:a8:4e:8c:a4:
e1:1d:04:ae:57:8e:cf:f5:b6:e2:84:a7:dc:4e:f7:
d0:36:1a:69:ee:9a:70:e2:cc:11:20:4a:6b:e3:3c:
8a:46:a9:02:7b:c3:e4:97:60:d2:3a:8b:99:2f:b4:
69:6a:cc:33:e6:41:d8:db:b7:72:b9:63:04:cb:c2:
cb:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D2:C6:C7:6D:65:19:7B:0A:D7:99:1A:EE:D4:23:80:0D:CD:4B:3D
X509v3 Authority Key Identifier:
keyid:41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:6f:3b:c1:2f:f0:ff:2f:20:9d:4a:29:ed:15:f8:8e:79:47:
4a:12:f7:3e:37:c6:1f:43:a5:77:93:83:18:eb:30:ca:f9:87:
92:04:6c:d1:98:82:25:b3:7a:72:71:2a:a7:c5:dd:ee:6f:56:
4f:46:ed:a0:7f:dd:dc:42:48:d4:20:c8:3c:5e:a5:05:3c:2d:
e4:ec:d5:a2:15:04:30:2c:28:93:36:af:a4:85:3b:eb:48:c1:
91:e0:7f:80:be:34:5e:e7:4d:92:52:13:dc:87:0f:58:95:81:
af:11:50:06:e1:02:dc:a8:7a:50:03:5e:71:97:35:5f:5f:10:
d3:3a:d9:d6:b3:c2:7b:84:63:77:a0:1a:5d:79:3b:00:fe:a6:
12:f8:41:13:b6:79:9e:4a:33:23:e8:f6:26:59:cc:6d:de:f6:
54:5f:ff:29:64:88:cf:84:63:df:33:2d:1b:4e:8c:4c:7c:af:
19:3e:cb:96:1a:52:18:61:60:79:ac:5a:ee:5d:f3:ea:b9:f8:
a6:7c:b6:1d:a5:87:73:27:c5:7f:c2:c9:a3:93:6c:62:76:0b:
f2:8b:70:63:d4:c5:0e:54:bf:1b:41:7d:cf:d7:ed:9c:81:07:
ba:dc:18:2c:80:e8:ac:42:e2:9e:6d:e4:1f:24:62:8c:10:64:
a3:d9:f1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:47:37 2025 by rpki-client