Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json)
Hash identifier: m1w42kb/c21AYRGrci5hWXczk6tjFndECPLKpJMYhaE=
Subject key identifier: 98:7C:18:B5:B2:ED:D8:E5:67:E8:64:B2:A6:E1:A1:B9:DA:2B:D8:10
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 0197B88F7170D8749683510B3B496685BB07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 22:01:37 +0000
Manifest this update: Sat 28 Jun 2025 22:01:37 +0000
Manifest next update: Sun 29 Jun 2025 22:01:37 +0000
Files and hashes: 1: JDPCHXAUbfBXZ-JAE6cFE-tGXMI.roa (hash: bOxTgT+7J9XF4HocPumdm4M3ak6meIWnJq5cg5Hpmfs=)
2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: etAElKdyfWZ1ZvQ74VvXlhkH5J9alS3pwPf+/onnEiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:71:70:d8:74:96:83:51:0b:3b:49:66:85:bb:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Jun 28 22:01:37 2025 GMT
Not After : Jun 29 22:01:37 2025 GMT
Subject: CN=987c18b5b2edd8e567e864b2a6e1a1b9da2bd810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:02:a8:bb:ae:8b:9e:22:9d:70:25:60:bb:2b:
fd:86:78:47:0a:23:7b:33:54:49:dd:df:78:a7:84:
41:a6:cd:fc:4b:62:41:cf:90:74:dc:c7:f8:a9:85:
3d:6c:a1:a2:9c:44:0a:e3:60:e7:f6:32:ef:11:41:
48:23:7c:b1:fc:0d:4d:4e:6b:32:90:2f:8d:78:c9:
a0:44:4c:fb:e6:1c:82:c3:ca:da:12:ef:fe:04:d6:
58:88:a0:79:0a:a4:28:67:28:6d:ce:e2:13:ca:33:
2f:77:27:12:fa:24:ac:3c:76:e4:95:35:ff:2f:d1:
f3:eb:f5:61:3a:16:e2:6e:97:1e:72:db:88:53:c0:
bf:f6:b7:43:6d:42:9f:b0:d7:38:c1:58:6b:75:1b:
b9:24:e0:fd:7c:30:41:d7:d1:60:a4:a8:b5:a5:d1:
71:42:fd:f8:c3:3d:61:cb:19:e2:cd:85:be:ad:d2:
d0:59:96:8f:0b:c0:ae:b4:42:de:60:17:fd:fa:0d:
41:de:85:9a:27:23:3c:b4:61:24:4a:46:61:35:ad:
06:bc:6f:d3:33:db:b0:86:c0:96:09:99:2d:0c:b4:
e2:40:62:2a:e9:8b:fe:62:65:f9:ac:02:dd:f1:02:
26:8f:f7:52:65:82:74:fd:f7:6b:11:1a:8f:6f:db:
eb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7C:18:B5:B2:ED:D8:E5:67:E8:64:B2:A6:E1:A1:B9:DA:2B:D8:10
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:ba:46:41:26:1f:c1:f2:44:a9:2a:d5:bc:51:3b:60:40:82:
49:7e:1c:86:bb:d7:42:ed:5e:de:a6:4a:d7:8a:a9:bd:1d:94:
76:b8:56:ad:4d:74:65:63:a8:de:71:7c:b7:5d:18:df:10:9e:
e9:ff:8d:53:4c:5d:06:4d:74:8f:d8:f1:ac:3f:82:4b:1f:88:
3b:a0:7c:89:c3:22:d4:4f:a1:b7:de:bc:4d:9c:81:ea:a4:52:
01:c1:cd:be:cc:63:ca:61:9d:31:c7:90:fd:51:f0:5a:c4:ed:
c1:fe:fa:33:6c:d8:3c:4e:d0:3c:d7:e4:6f:6e:69:52:a5:9d:
65:d6:68:ef:73:92:fb:3b:93:0f:f9:94:4c:82:71:04:ab:fb:
1b:70:07:85:ce:18:89:09:19:37:26:03:39:27:4d:96:3e:31:
20:2a:04:93:ff:2e:b4:a8:de:71:06:3d:ab:fb:4c:3d:7d:20:
26:ed:4b:1d:03:ab:f7:ad:29:33:ae:9f:eb:71:aa:ec:fe:f0:
c1:68:bc:ad:9c:28:f7:a0:22:5c:11:dc:a2:55:03:ff:87:9f:
23:08:07:91:5e:86:a5:cb:8c:d4:b0:66:76:ad:b1:d8:24:d0:
b0:7d:b0:b7:db:cd:80:a9:b0:50:42:17:86:d4:38:03:da:e8:
fb:1f:cc:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:14:41 2025 by rpki-client