Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: St7kCjmvCWJRmvMbw3hJDllNZUdyaRrv8VFDRs/41e4=
Subject key identifier: E4:20:F9:64:22:D7:86:98:E8:57:E7:DD:AE:B0:1B:CF:CA:CB:0B:2D
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 0197B70F36032BE2D0F5F1B3E81244DA0ED2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 15:01:56 +0000
Manifest this update: Sat 28 Jun 2025 15:01:56 +0000
Manifest next update: Sun 29 Jun 2025 15:01:56 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: sXlZHZ4NyGSn/nufeXfvoW7JoYzcoh4T8T7KlFkJ/tk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:36:03:2b:e2:d0:f5:f1:b3:e8:12:44:da:0e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: Jun 28 15:01:56 2025 GMT
Not After : Jun 29 15:01:56 2025 GMT
Subject: CN=e420f96422d78698e857e7ddaeb01bcfcacb0b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a2:5d:11:4c:67:87:fc:52:d6:b2:57:15:e2:
67:a9:93:49:24:a3:36:3b:12:d7:71:46:7e:39:e2:
1b:65:db:58:f3:fa:55:55:ba:15:9c:e6:cb:e0:e9:
7a:f0:ca:08:93:db:ad:49:f6:eb:fb:2b:f5:0a:62:
be:de:da:eb:1b:3d:1b:45:33:0f:be:e9:c8:7a:e9:
88:e1:c2:f4:56:29:6d:6d:54:e2:c0:6c:05:21:da:
c7:c9:fd:5b:d2:cd:d1:c6:02:c2:43:51:40:5e:66:
be:c1:d3:4b:46:48:e0:a2:12:7f:b9:c6:be:3f:c6:
9c:0f:c8:59:92:aa:e2:6b:29:0e:a0:4e:c9:64:e1:
43:44:a6:71:d5:56:09:44:e4:2c:61:4b:5b:df:e0:
a2:a3:33:d3:db:54:b3:f3:4f:69:3e:aa:53:15:b7:
a2:1f:6c:3b:98:fa:12:96:8f:c7:5e:67:28:1b:04:
d6:48:08:21:b2:36:e8:cc:73:86:f7:fa:21:1d:4b:
63:f7:c9:24:84:7f:65:e5:31:9c:f3:b4:8d:f0:6b:
f6:7d:ea:80:5e:70:0f:8e:d4:d2:68:64:01:5b:cb:
8c:db:da:0f:ad:b5:13:f0:a5:88:b2:ca:97:8c:86:
e9:a9:5d:d1:1b:50:91:bf:ef:03:8c:34:d7:43:73:
b6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:20:F9:64:22:D7:86:98:E8:57:E7:DD:AE:B0:1B:CF:CA:CB:0B:2D
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:bc:7b:40:e5:7a:db:ed:dc:09:1d:f3:85:4e:c4:69:79:b4:
e7:d6:1f:2c:d7:b6:c3:b2:df:91:6d:54:b7:d7:75:29:9f:22:
d5:70:ba:d6:79:b0:7c:f5:e8:a6:61:c6:ce:65:a3:9c:b3:12:
00:90:39:ed:d8:df:81:64:9d:82:96:01:bf:d8:5e:41:92:df:
7d:c1:6c:74:70:5f:04:eb:77:ec:f5:dc:9e:94:14:91:eb:67:
3a:4c:5e:b9:01:e1:72:85:61:ee:61:1d:50:24:57:cb:43:3f:
c6:fe:c2:db:b3:8d:01:96:65:34:1e:25:68:f6:10:6a:a9:4a:
bb:78:95:91:e0:aa:51:3a:a2:91:8d:d8:d5:41:98:13:a3:9b:
bb:68:bf:e4:03:ea:ea:23:ed:99:80:bd:1d:26:5c:1c:6f:1f:
76:aa:88:5d:69:9d:c2:0e:7e:14:cf:2b:3b:69:76:61:9f:c8:
44:82:49:7b:7d:b5:ca:56:01:bb:15:9e:29:d9:96:22:cc:3f:
ad:e4:cd:9a:33:ad:2a:3f:b1:7a:4f:57:dc:2e:f3:7e:9c:66:
97:80:67:c1:54:d3:f2:35:a9:11:8d:7e:0e:64:07:8d:1f:f0:
1c:0a:0e:f3:09:08:ed:a8:50:4c:1b:ea:77:d0:19:b1:f9:72:
ef:98:43:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:21 2025 by rpki-client