Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
File: QVHWtEHT9XdiwDL4-tIXYIoi96E.mft (raw, json)
Hash identifier: AF65e15pUtt0oBCNWL/zwW16M2jOUybkrMrTdHv5+0c=
Subject key identifier: A0:41:DA:1A:95:5C:EC:BA:CC:83:54:99:47:1C:65:FD:8C:F2:A3:84
Authority key identifier: 41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
Certificate issuer: /CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Certificate serial: 0197B7EA64324B048523FFBCCF3FB8E974F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 19:01:20 +0000
Manifest this update: Sat 28 Jun 2025 19:01:20 +0000
Manifest next update: Sun 29 Jun 2025 19:01:20 +0000
Files and hashes: 1: Im-QceSwk2rydy4UnBzai_RFayI.roa (hash: 7cmPd6tOwgpnXHTZZ7ExgoosfdS4LnMMgIaEbvg4EPQ=)
2: QVHWtEHT9XdiwDL4-tIXYIoi96E.crl (hash: jYmJjcGa2lBBRPAOAFHzVPeQrvDlPJa4wvqWza2J1kk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:64:32:4b:04:85:23:ff:bc:cf:3f:b8:e9:74:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Validity
Not Before: Jun 28 19:01:20 2025 GMT
Not After : Jun 29 19:01:20 2025 GMT
Subject: CN=a041da1a955cecbacc835499471c65fd8cf2a384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ed:d1:bc:c4:62:c4:ca:8b:1a:0e:e6:59:b3:
0a:54:c0:84:d0:b2:dc:e1:96:aa:f8:1a:c3:6c:3a:
e2:69:25:82:f8:d2:de:f2:d7:81:11:e6:7d:9d:49:
23:6e:59:bb:33:ad:a5:77:68:49:10:36:57:38:7e:
46:fd:3c:6a:7e:0f:79:b6:cf:16:30:2c:63:7f:43:
0e:5b:ee:55:fc:c2:4a:70:17:44:01:5c:4d:b8:43:
3f:06:b0:43:83:2c:37:a6:e8:38:6e:b1:84:ca:af:
98:37:74:2e:9d:9e:00:1c:51:ab:2f:7e:15:8c:be:
c0:a0:5f:18:c4:39:c1:60:8d:21:24:3b:39:ac:a6:
3e:b9:8c:ca:13:57:51:22:5f:04:80:88:22:32:03:
21:0b:f8:91:d5:a4:66:85:2c:e1:cf:d1:16:be:dc:
90:09:21:00:ab:e2:56:8f:fe:45:cc:c6:3b:c2:35:
9c:d7:c8:ec:b8:61:51:9a:60:10:48:8d:00:a5:96:
f7:6e:50:b5:17:b0:99:3e:51:df:b9:0c:60:df:94:
f1:0b:cf:ed:8e:19:7a:0a:a3:a6:79:a8:05:ca:1b:
97:01:e1:ce:ab:c5:34:22:d2:bb:f9:e3:41:62:be:
d7:25:20:9d:15:f0:7d:0b:3a:b6:74:59:f9:ea:d7:
5e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:41:DA:1A:95:5C:EC:BA:CC:83:54:99:47:1C:65:FD:8C:F2:A3:84
X509v3 Authority Key Identifier:
keyid:41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:16:e8:70:d9:5b:bd:54:9f:0d:37:d9:17:16:83:fb:d8:e5:
e4:20:8a:f6:ee:54:46:19:da:47:06:5c:1c:36:e4:95:fe:17:
0a:0d:29:94:f8:76:7b:33:f4:25:19:0a:e9:65:74:16:c7:91:
b0:94:fa:68:38:77:a8:1f:69:0e:2b:d6:b8:52:4e:16:ac:8c:
f2:b6:2b:a6:45:8c:81:09:5c:9e:e6:4a:df:18:23:33:af:e2:
0c:63:05:3e:bd:0a:e3:c3:b5:c8:6d:65:36:9c:91:05:2a:50:
83:52:4b:03:88:87:ac:f1:73:88:ec:58:40:d3:93:81:03:a8:
e8:15:f1:59:20:79:c4:4c:59:87:b2:0f:91:a7:7e:6d:90:79:
e2:ea:0e:ca:d0:fd:a5:97:d4:40:30:b0:e1:d8:7e:59:91:e5:
b6:71:85:6f:50:b4:c8:93:0a:c7:01:85:cf:c2:b5:da:db:10:
18:d1:ba:2f:60:ee:14:28:23:bb:18:49:8b:20:9d:0b:28:7e:
50:09:e1:c2:43:33:e5:38:c0:02:c8:90:36:30:9d:08:ac:71:
99:40:36:07:e9:3f:98:76:58:d3:bb:0a:c8:2e:83:4e:c4:da:
b8:a5:6a:dd:76:90:da:a7:67:03:59:4a:80:fc:ba:a4:f9:5a:
d4:77:1c:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:14 2025 by rpki-client