Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: O2T+KB+6+mpdonL/UzaHM2b/oyaIQ70hI5jIksboTUg=
Subject key identifier: 5E:55:6E:9E:E9:2A:86:69:C4:AF:81:3B:9F:BC:9A:05:40:00:3A:38
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 0197B82130786B9A5E35CEB2E6B84341B0B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 20:01:12 +0000
Manifest this update: Sat 28 Jun 2025 20:01:12 +0000
Manifest next update: Sun 29 Jun 2025 20:01:12 +0000
Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: XZrfkqznH1VWLnMxdmfcwyHIs+NbHgY3cIJIMeE/BHo=)
2: tBcUVtef6rZ0kSSzgGFNQ0aGmXk.roa (hash: axGcXX34atfoTeccVW4HcK4Aoj164U97BqMvxhWQBsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:30:78:6b:9a:5e:35:ce:b2:e6:b8:43:41:b0:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Jun 28 20:01:12 2025 GMT
Not After : Jun 29 20:01:12 2025 GMT
Subject: CN=5e556e9ee92a8669c4af813b9fbc9a0540003a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:21:47:de:d4:1d:fc:25:90:60:5a:e9:4e:88:
a6:45:03:85:ea:ef:f2:d7:0d:d6:37:1e:a5:84:03:
9d:41:f3:0e:a7:2f:59:e2:a3:56:11:57:4b:50:79:
96:3a:a2:88:b9:2d:91:85:ad:9b:0f:00:36:37:70:
08:b0:bd:32:f3:81:4d:0c:e0:fc:c1:a8:3a:8e:dd:
00:47:35:02:51:32:96:c9:4b:c8:bf:66:32:3f:14:
0b:5f:e0:1e:c1:8d:ae:9c:65:77:b8:d9:07:b0:13:
1b:20:aa:f2:25:0a:f7:f5:83:11:fe:c4:06:74:7c:
fc:06:97:5f:0c:44:d2:1a:f9:61:ec:dd:9f:94:ec:
3b:7c:6d:9f:1f:75:52:c3:b3:a9:fa:c7:95:56:14:
27:9a:b7:05:66:9a:37:1c:da:4d:39:d2:b8:bf:59:
b1:fd:87:b0:31:c1:92:c8:45:df:06:3b:3b:38:f0:
eb:fd:e1:53:64:a5:07:5e:10:70:11:33:8b:91:38:
d1:3c:72:47:42:76:ab:61:26:32:ad:0f:5e:6f:6c:
bc:95:68:dd:db:93:bb:f8:e3:c7:c5:d1:dc:47:70:
9a:a0:c0:9e:65:32:c9:cf:73:01:73:01:70:e9:72:
60:22:38:85:9d:44:ae:d3:a4:79:60:8a:a2:8f:90:
21:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:55:6E:9E:E9:2A:86:69:C4:AF:81:3B:9F:BC:9A:05:40:00:3A:38
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:36:21:b4:19:e0:f1:22:78:0f:08:d8:2a:4b:df:f2:ed:d1:
0a:69:5f:6a:dc:29:c4:c0:1d:fd:5b:3b:dd:6d:dc:ae:b7:03:
bf:e5:c9:15:eb:e3:b6:0c:b9:fc:51:a7:99:f9:ec:3b:df:35:
97:59:b8:d8:e5:e2:59:db:f0:c4:40:c4:9a:01:90:8a:e7:89:
78:a8:99:23:3c:f1:69:00:08:4d:42:a8:d3:24:80:47:d9:f8:
18:41:e7:00:41:8b:88:20:a9:7c:5a:5d:d7:82:5e:a6:a5:ed:
7d:af:5d:87:b1:ee:dc:52:4f:3e:7a:bf:0d:82:01:d8:0d:a4:
fb:2a:e9:3f:5b:b0:da:d1:91:70:40:90:70:11:76:3e:e8:f5:
6e:48:0f:78:63:63:24:47:da:e8:b0:75:5d:48:77:e4:37:cc:
8f:fb:85:f9:c4:e8:66:1f:30:a1:5c:9d:a5:d1:88:64:97:6b:
21:ee:7d:d8:41:51:45:d4:18:04:75:9b:4c:b3:ac:78:8a:2d:
c6:54:83:b9:f4:34:5d:f1:01:b9:a4:83:75:78:dc:20:8b:b9:
5d:f8:1d:2a:d5:74:ee:bf:d7:df:eb:1f:f3:d4:88:4a:1b:88:
d4:93:f0:de:0b:b9:e8:80:9b:ee:e2:e7:95:64:d0:96:71:5e:
58:ab:64:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:56 2025 by rpki-client