Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json)
Hash identifier: 9RLJ9Sv4ao5V42gISUEcg6LCvIGVSwfXLk3W++WtBEU=
Subject key identifier: 3B:21:B1:BD:52:D9:33:7E:14:2B:98:B4:07:6A:DE:D3:87:E8:84:A3
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 0197B88F19786715005761CDB0CCEBC7FCD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
Manifest number: 15BD
Signing time: Sat 28 Jun 2025 22:01:15 +0000
Manifest this update: Sat 28 Jun 2025 22:01:15 +0000
Manifest next update: Sun 29 Jun 2025 22:01:15 +0000
Files and hashes: 1: 0UiMAD3K1Vd_o1ukey_EamOgfsg.roa (hash: /lgJM2bqi/sUpmdCb7crrQqVayvXqEJ8evDSByU3DJU=)
2: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: 4YZKsXkbxwE3Z2xbp2genxEv70+8lyyWW1E/21/JHsw=)
3: aVnXSxl3A9imF58Ni6PA9o97Lt0.roa (hash: 1b03aGZyiDI4vZq8xAQwMk9wWsMeLl0pjrQrWqhenxw=)
4: misEsljA75nAA5oIsh_k4GVCg4w.roa (hash: p4BzWp3j9j27Wjuz+V0a+txHqIiOhQ+ybn3eqzzf6rU=)
5: ujK7196Gk_c3ddVaz2vNjb1yuKM.roa (hash: oPbTKsm4Ke6sVA27ztN+8OGkGTX5DqK9hqJSWTYFs3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:19:78:67:15:00:57:61:cd:b0:cc:eb:c7:fc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Jun 28 22:01:15 2025 GMT
Not After : Jun 29 22:01:15 2025 GMT
Subject: CN=3b21b1bd52d9337e142b98b4076aded387e884a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:1d:d0:be:61:05:e3:71:2d:81:5f:d5:12:
66:00:74:45:8f:c0:82:17:bf:cc:00:8a:fc:b7:45:
87:28:1e:10:e8:c1:0b:5a:83:b7:28:88:a6:38:80:
97:a7:b2:42:5c:4a:d7:00:0d:cc:c5:4b:73:2c:72:
b9:59:d0:c5:03:cf:ab:97:0c:b1:a2:ea:1b:fe:45:
f7:91:df:ae:8c:df:74:bf:6b:68:48:b9:56:00:71:
65:7b:bc:1f:21:d6:a7:b8:65:2f:8f:fc:b5:46:e6:
c0:ec:03:14:39:c7:63:57:86:d2:67:3a:1d:b9:15:
49:6f:91:12:02:94:c2:9c:99:73:a0:73:98:b3:8a:
d5:4b:f7:73:47:e3:7c:de:0c:00:27:bc:67:36:f4:
ec:56:2b:c5:97:01:03:a4:27:15:31:23:b4:ba:95:
7f:a3:53:00:da:5e:4e:3d:1e:fb:7b:65:0a:8e:53:
0d:99:75:55:f5:bf:20:f7:b7:0c:fe:99:6c:0e:c5:
33:c5:47:61:2c:41:c3:7b:f7:3b:d2:77:fb:55:64:
c1:4e:33:e0:d3:b3:48:08:34:a1:9a:15:46:12:62:
22:38:82:15:16:4d:24:a2:76:33:3a:fe:1e:7e:42:
c1:d3:77:f0:ef:23:fe:bc:2b:45:e1:4d:8a:48:7c:
db:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:21:B1:BD:52:D9:33:7E:14:2B:98:B4:07:6A:DE:D3:87:E8:84:A3
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ec:7f:a2:8b:c0:d1:4c:33:09:a4:20:82:dc:ae:fe:fb:31:
db:1b:3a:00:a8:6e:71:9e:66:70:20:51:8a:5d:10:97:fe:1d:
9c:56:f0:ec:70:a5:0b:a0:37:f8:54:bb:5f:1f:cd:86:cb:f3:
4f:7a:85:38:08:b8:16:5c:de:66:60:02:c6:5b:05:7b:24:bb:
b1:9a:73:89:d5:30:e7:df:66:03:95:3c:ba:ea:4b:66:a9:21:
9f:56:30:55:28:98:4a:af:53:ba:44:2e:b2:77:78:79:9f:2b:
0a:63:41:ba:63:e0:23:91:3d:08:ab:c7:9b:1e:4d:bb:fc:7c:
79:90:be:aa:44:a9:b1:9f:f2:0b:7c:d4:3a:a2:b6:8c:54:69:
33:2c:5c:d2:16:ff:a5:f4:1e:8a:6f:5b:1c:f8:af:d6:4f:bb:
8d:e8:c3:47:f2:03:7b:33:1c:ee:66:61:8e:3d:49:7b:1b:31:
3d:79:99:fe:88:b5:fa:fc:f9:fc:e8:9a:d8:5e:f9:d3:3d:ca:
9a:cf:22:c2:25:34:ab:a2:5a:c2:99:60:3c:ad:1d:d0:dc:92:
3e:4a:2e:1b:c7:45:ea:3c:f6:f1:73:7b:76:c3:74:17:9e:ab:
03:6c:46:5f:aa:07:d8:b6:1b:c1:01:27:c7:d7:a1:85:8f:79:
80:83:c5:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:44:19 2025 by rpki-client