Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: 0bfGj9OxhSVn0yhAFYps943OGiKtYeINEuKdmHfxWwg=
Subject key identifier: B9:35:54:2E:64:83:9E:5F:4F:AD:A1:5D:53:B3:9A:10:2E:B2:10:F6
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 0197B63306B8706ECD5F568811F9BED8A74C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 11:01:26 +0000
Manifest this update: Sat 28 Jun 2025 11:01:26 +0000
Manifest next update: Sun 29 Jun 2025 11:01:26 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: Kiq0X1Kw7GZiXv0lBWiVf3tTTpuuv32OVzfHpx+edD0=)
2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:33:06:b8:70:6e:cd:5f:56:88:11:f9:be:d8:a7:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Jun 28 11:01:26 2025 GMT
Not After : Jun 29 11:01:26 2025 GMT
Subject: CN=b935542e64839e5f4fada15d53b39a102eb210f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d8:35:3f:6d:38:05:51:1d:34:08:f5:7b:5b:
95:27:a6:94:6d:ee:42:85:56:78:e8:67:89:ba:28:
93:26:99:e3:31:a3:12:a8:2f:78:48:9a:78:e8:95:
27:0e:41:b7:3e:94:64:4f:af:9c:db:d2:1d:08:f1:
9f:bc:a4:5c:7d:4e:cb:20:f5:fe:4b:32:a7:7c:48:
fb:da:aa:f8:1f:51:c2:5c:f3:02:73:4f:c1:ae:c4:
3c:fe:a3:88:ed:97:f4:c1:ad:85:c0:4a:16:73:44:
b2:c8:e9:0e:98:b5:6a:d7:bd:2d:c4:e2:14:d6:b6:
34:1f:95:62:58:a6:43:02:5d:73:e5:1d:5b:b0:f0:
8a:14:0c:7f:c6:ac:81:04:72:17:aa:52:f3:fb:2f:
cd:f1:47:cd:82:80:b6:83:43:32:b3:17:67:26:bd:
ed:cf:b4:2e:75:b5:c0:d2:a7:da:cf:a3:74:b0:6d:
61:78:59:d6:53:d3:c9:0c:e0:65:b4:ac:b1:c4:d0:
49:51:dd:79:23:23:46:8c:9b:9f:2a:16:8c:6a:d0:
4c:03:2e:87:50:63:57:0f:07:9d:b7:23:61:a7:85:
e4:7b:b7:ca:3f:b7:98:31:64:17:f4:aa:c1:f4:87:
80:f2:78:ba:be:5e:e6:7d:8c:83:68:7c:58:b1:1b:
12:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:35:54:2E:64:83:9E:5F:4F:AD:A1:5D:53:B3:9A:10:2E:B2:10:F6
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:0a:ff:54:75:ad:75:57:33:e6:46:a5:c7:d2:65:39:17:89:
47:e9:5e:e3:94:9d:28:ac:e1:a9:08:08:f6:f8:46:a3:10:34:
14:70:2a:9b:94:05:5e:50:50:3f:3c:8c:8a:a3:09:20:f7:66:
91:fb:71:b8:7c:b5:b8:e8:14:74:68:d4:6c:b0:1c:2e:0b:e0:
ab:60:5f:80:6a:1e:5f:51:1f:d4:fc:8e:63:fe:47:fa:9c:df:
83:aa:0e:5a:e4:a3:90:bc:06:07:d3:d2:01:10:c6:ce:15:01:
9d:d9:17:19:e1:64:0b:ef:7a:fd:d4:52:8d:6c:a9:cb:68:4f:
64:c0:7f:2f:ec:1a:63:b0:82:4f:1f:9d:f5:31:42:55:f3:14:
1d:8f:f2:5a:65:46:a9:3a:c2:b0:f4:88:1b:f2:72:ed:ca:b0:
61:ce:90:59:7b:92:55:e7:f1:8e:b3:59:19:cd:4c:3c:69:93:
ad:d6:12:ba:b3:c9:84:3f:e4:60:3e:b0:20:ba:9a:ea:2c:83:
3c:7a:cd:13:8c:e1:15:8c:9d:1e:34:5d:8c:21:76:a5:d0:b5:
4e:d2:eb:d9:ef:ab:4c:c7:7e:32:0a:5c:44:3b:0e:b8:6d:8f:
c5:7b:9b:b1:d9:1e:d1:0a:8a:55:63:11:5c:3f:35:d2:d7:c3:
1e:fd:6c:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:34:52 2025 by rpki-client