Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
File: qsIj-xlCEV5IqXVCByktAKCC7N8.mft (raw, json)
Hash identifier: m901EevQClBvap60ka51raQ152vYAlRbKo++P8ZY1iA=
Subject key identifier: 5B:4D:14:F7:9E:D0:C2:4E:64:52:37:C5:DE:3D:0F:9D:C5:D9:39:97
Authority key identifier: AA:C2:23:FB:19:42:11:5E:48:A9:75:42:07:29:2D:00:A0:82:EC:DF
Certificate issuer: /CN=aac223fb1942115e48a9754207292d00a082ecdf
Certificate serial: 0197B70EA6AC296CB3DD70E49F93B34AC5D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
Manifest number: 0806
Signing time: Sat 28 Jun 2025 15:01:19 +0000
Manifest this update: Sat 28 Jun 2025 15:01:19 +0000
Manifest next update: Sun 29 Jun 2025 15:01:19 +0000
Files and hashes: 1: f7H4NvJn5XG9ZEVLvo3rzyryem0.roa (hash: FIvnUTIH/WyzVRn7SNngTErOpdYKzvrkMjSyoAbXEio=)
2: qsIj-xlCEV5IqXVCByktAKCC7N8.crl (hash: S9W2lXUZtQPiPN67UfHL90Iv6+7qm+N2Yj1XsOR8FGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:a6:ac:29:6c:b3:dd:70:e4:9f:93:b3:4a:c5:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac223fb1942115e48a9754207292d00a082ecdf
Validity
Not Before: Jun 28 15:01:19 2025 GMT
Not After : Jun 29 15:01:19 2025 GMT
Subject: CN=5b4d14f79ed0c24e645237c5de3d0f9dc5d93997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:37:a0:a6:bf:15:66:32:a9:3d:d3:ee:c4:7b:
86:97:17:d4:fa:59:90:f0:3d:d9:f9:8f:a3:cb:5d:
55:68:88:a9:78:fd:f7:53:35:fd:65:b7:80:d6:63:
34:09:b6:c6:0a:d6:4f:eb:d0:83:3c:09:3c:37:68:
a3:00:1a:86:94:f7:eb:cb:86:d2:db:34:92:30:45:
16:f1:69:a0:e1:bd:ee:98:a5:f0:7e:cd:95:75:f9:
1a:b2:38:52:37:70:9f:2e:5e:2e:dd:9b:b4:7f:0c:
c4:98:67:6a:af:32:b9:ed:60:d5:05:5e:d7:29:34:
65:f2:08:3d:65:7a:f7:a8:80:79:db:ca:a5:d6:2b:
0c:3c:4a:ce:97:4f:c3:4d:a4:44:58:bc:24:44:f4:
d9:a8:68:40:55:8a:77:53:8b:16:cb:40:95:a1:37:
b4:bb:d5:b6:5c:99:08:4e:63:b9:df:4f:5b:d0:a9:
14:8e:07:26:81:3d:e9:ac:57:4d:23:9b:77:77:5b:
b1:20:c0:92:5a:b2:ee:28:26:32:2e:36:5b:d4:13:
76:c4:19:e1:63:eb:62:ac:85:4c:59:41:0a:c2:e7:
73:ee:dd:53:f0:8e:0e:45:aa:86:72:72:c5:cd:80:
47:ee:c8:3f:f4:ac:90:be:d8:26:7e:6b:98:dd:10:
55:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4D:14:F7:9E:D0:C2:4E:64:52:37:C5:DE:3D:0F:9D:C5:D9:39:97
X509v3 Authority Key Identifier:
keyid:AA:C2:23:FB:19:42:11:5E:48:A9:75:42:07:29:2D:00:A0:82:EC:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:96:13:97:97:9c:5c:c0:0d:33:52:18:34:2a:5f:0f:a3:c7:
51:c0:d8:5d:46:37:b9:2c:9b:41:d7:01:2c:55:c6:a9:27:33:
32:ee:7f:62:f8:32:e9:c6:9c:85:a1:8f:cd:0e:bc:8a:cc:35:
a9:ad:d9:e2:2e:6e:cd:a9:35:39:7f:2e:60:e2:0e:7a:ec:0c:
75:38:59:f5:83:15:d1:f2:0f:76:56:c9:23:cb:86:e6:03:24:
26:f6:c5:25:8d:3d:02:75:ba:bf:a0:8a:d3:84:6f:b1:d3:a9:
27:b6:f2:0a:28:74:b6:b5:2a:c4:d5:d9:fe:84:b1:d2:ea:78:
3d:a1:dc:30:c2:83:3b:a5:c8:2d:29:d6:55:b4:bc:fc:d5:01:
ad:ea:cb:3d:fd:6e:68:4c:14:43:43:3c:47:8f:91:61:08:98:
62:33:d7:9c:ca:13:ff:c5:27:ef:12:8e:0d:27:df:e4:b4:c0:
91:08:74:61:a7:40:6b:2c:c6:b9:ee:c6:fc:fe:95:e5:43:88:
9f:d4:ff:50:a2:46:36:5e:27:22:4f:07:0b:cb:72:c5:ed:ca:
59:f6:35:c4:48:31:62:4a:0f:67:6d:76:78:cf:16:f0:39:63:
f6:e6:40:ac:87:90:41:4e:c8:63:6b:b7:75:48:4d:8b:a1:81:
27:dc:a3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:03:54 2025 by rpki-client