Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
File: QukMnRAJsywZRbb45liUg8XqR0M.mft (raw, json)
Hash identifier: DJ9pNDypqycQvW1dlIXliif/h8UVGx/3Jl1mKWPvjWs=
Subject key identifier: EB:CF:B3:08:17:E2:C1:96:56:26:F6:7D:15:7A:5C:D8:81:B0:67:76
Authority key identifier: 42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
Certificate issuer: /CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Certificate serial: 0197B70E758D90F83F7BF3A66192086739DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
Manifest number: 099D
Signing time: Sat 28 Jun 2025 15:01:07 +0000
Manifest this update: Sat 28 Jun 2025 15:01:07 +0000
Manifest next update: Sun 29 Jun 2025 15:01:07 +0000
Files and hashes: 1: QukMnRAJsywZRbb45liUg8XqR0M.crl (hash: KNxJxwYYxtwJehwdjCo1uLvYcYKpQmW15zgJZCCRYyc=)
2: vdgwFbYVt8R1VSJ8o61nh0Nw_GA.roa (hash: 76jfpsJ1QF75Cjby0A7bmnFhoDcXagSAAfe9ZF5jiZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:75:8d:90:f8:3f:7b:f3:a6:61:92:08:67:39:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Validity
Not Before: Jun 28 15:01:07 2025 GMT
Not After : Jun 29 15:01:07 2025 GMT
Subject: CN=ebcfb30817e2c1965626f67d157a5cd881b06776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c4:52:64:c4:6e:4b:0b:31:d5:30:16:ba:4e:
71:13:62:05:37:0b:9d:e9:bc:b0:ad:70:f9:d6:53:
0b:3a:48:3c:bb:c6:c3:a2:be:54:2d:c5:5a:95:fb:
cb:3f:63:e3:c6:ba:ed:36:d6:27:0b:eb:93:f4:3a:
1a:da:db:2b:e1:47:4a:2e:b9:35:44:40:a2:97:ee:
b7:e9:47:eb:45:1b:84:55:f0:21:5d:da:03:17:78:
92:0c:15:6b:fb:8b:59:f3:7d:3e:e1:8b:b5:58:ea:
7a:a7:eb:cd:56:f2:97:e8:3a:35:05:21:57:5c:b2:
f1:9a:0e:e4:ae:b1:2b:95:bb:7f:bc:8e:c6:1c:25:
b6:57:0e:22:a0:ed:4b:f4:7e:21:55:d2:cb:0d:b4:
48:4e:e6:4b:88:9d:1c:a6:c4:de:c2:5a:75:c1:fe:
c9:6f:8d:4c:e3:64:72:b5:8d:a4:be:49:a4:7c:78:
4a:92:af:38:f5:d2:32:39:2e:04:af:4d:11:49:eb:
e8:4f:bb:20:37:90:2f:ee:d5:9b:d1:67:49:32:ee:
54:95:e0:ad:eb:5d:80:c9:3f:b4:eb:45:3b:76:a3:
e6:85:24:e1:10:2a:e6:1a:e9:9d:59:0a:ba:47:32:
c6:00:bf:dd:13:b7:0f:c6:7d:24:4d:26:76:04:d9:
ee:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CF:B3:08:17:E2:C1:96:56:26:F6:7D:15:7A:5C:D8:81:B0:67:76
X509v3 Authority Key Identifier:
keyid:42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:1c:7b:1e:7d:51:7f:53:d2:5c:1f:21:ae:3f:34:8e:8e:37:
c7:cb:27:76:a5:db:d6:66:45:a0:28:a3:16:aa:bf:41:20:a5:
bc:46:50:37:e0:1a:ed:94:b9:0e:8f:08:42:75:16:f6:67:04:
80:06:f3:83:d4:be:38:cc:08:08:88:80:42:cd:0d:47:97:df:
35:71:63:8c:6a:73:be:ca:1b:31:86:5a:a6:f5:59:99:1e:b6:
dd:d3:ea:11:38:cb:10:91:8f:33:f2:62:23:1a:81:8d:fa:9f:
c8:ca:86:94:ae:eb:d6:16:1e:ac:e8:b4:9a:cf:da:69:28:ca:
ca:8d:33:23:65:c0:53:ff:e2:e6:cf:4f:2d:f5:de:7f:b2:96:
b4:c2:93:3f:aa:30:c5:85:2e:87:3f:54:71:3f:58:db:22:37:
21:51:b1:97:a0:bd:27:2f:e2:91:e7:f0:3e:36:dc:2f:86:85:
5d:c3:8b:be:92:20:99:d0:83:d2:fd:1e:5f:49:ed:00:5e:38:
39:ec:c0:91:93:57:33:ee:15:68:0e:82:54:6d:db:4e:75:f3:
72:51:ce:73:e5:09:88:7f:c1:93:a2:1b:4c:ab:84:5c:af:68:
d4:a7:52:48:1d:f5:1a:6e:77:07:0f:b7:fa:12:a6:a2:11:f9:
c4:a5:b5:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:41 2025 by rpki-client