Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
File: 2QqBMQKSV7_3YURI5va1A8Ersp0.mft (raw, json)
Hash identifier: +s66ZunnhxBgUjrXDuRLtzXNKVNguTldiXyOmyWCqnE=
Subject key identifier: 70:89:6C:5E:AD:E4:FE:36:C4:CA:8F:45:72:3E:38:D5:5F:1B:6A:30
Authority key identifier: D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D
Certificate issuer: /CN=d90a8131029257bff7614448e6f6b503c12bb29d
Certificate serial: 0197B77C4403A470B593856824755E7F4CB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
Manifest number: 0286
Signing time: Sat 28 Jun 2025 17:01:03 +0000
Manifest this update: Sat 28 Jun 2025 17:01:03 +0000
Manifest next update: Sun 29 Jun 2025 17:01:03 +0000
Files and hashes: 1: 2QqBMQKSV7_3YURI5va1A8Ersp0.crl (hash: FJuHCnxNuJpfIUUWO4XlIReTjd0fqJNUMyaeua5WOSg=)
2: ktw-FkrMXPNswM8IraWY-5p7J3I.roa (hash: jzXeR9Bv5fkU8m0kPMqZ57dXqdxvNx+7MlrJIZfIQC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:44:03:a4:70:b5:93:85:68:24:75:5e:7f:4c:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90a8131029257bff7614448e6f6b503c12bb29d
Validity
Not Before: Jun 28 17:01:03 2025 GMT
Not After : Jun 29 17:01:03 2025 GMT
Subject: CN=70896c5eade4fe36c4ca8f45723e38d55f1b6a30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d3:05:23:a9:53:b8:ab:47:6d:9c:91:4a:6e:
67:d7:16:7c:34:7f:69:9c:7a:65:21:0f:27:69:d5:
97:b3:a2:d6:44:b5:c0:25:6f:89:e4:a4:22:da:9e:
06:93:38:0f:7e:f2:50:43:d9:05:a1:b9:fb:89:4d:
59:7c:85:a1:d1:64:b1:10:fc:66:3a:58:70:ca:e0:
29:74:30:1d:b6:8b:6b:38:a2:91:41:8d:6b:e0:54:
7d:cc:35:1a:5d:1d:85:eb:5c:29:54:17:6b:d9:d9:
82:99:61:4d:cf:d0:de:8e:3a:25:ad:da:b4:30:fb:
19:43:ec:a2:67:48:97:de:2d:1c:d2:00:14:81:4a:
1f:df:37:8b:72:cd:bc:4e:86:5a:65:5a:12:c3:8a:
f3:f9:58:1b:fa:7f:5b:75:d4:68:be:16:b5:4a:6e:
61:bb:6e:60:49:80:69:c6:b7:3f:8a:ba:51:fd:ce:
90:49:b6:a1:91:22:91:c4:34:23:75:d5:96:db:a3:
e0:8c:ab:7c:b5:86:20:23:b2:df:35:9b:dd:3a:82:
13:e2:03:ff:d9:83:f6:9c:ab:10:57:f5:6f:5a:09:
72:a6:9b:d9:b4:d3:03:c8:2b:98:f1:8e:22:04:1e:
a3:20:97:95:62:aa:a0:38:92:f9:28:22:50:43:dd:
56:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:89:6C:5E:AD:E4:FE:36:C4:CA:8F:45:72:3E:38:D5:5F:1B:6A:30
X509v3 Authority Key Identifier:
keyid:D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:24:2e:29:62:f9:3c:bd:db:d2:bd:d4:85:de:96:e6:df:7d:
e7:da:60:9c:cc:f5:cc:b0:97:39:86:b1:b3:ab:c1:f0:9a:28:
b2:97:66:c1:c5:7e:a0:3a:c1:b1:4b:0d:ac:c5:30:54:1b:f9:
fa:a9:a7:33:be:a4:15:76:71:42:d9:41:c8:83:bb:03:f9:65:
4a:8b:1e:ec:88:1d:64:d6:ce:4b:c5:c3:fe:48:a9:64:96:d2:
e6:0a:e8:f3:fc:b2:56:d4:1d:24:ab:5f:44:a6:b4:17:26:2d:
ca:72:4c:5e:40:2d:99:2b:7c:2f:b1:d9:c7:44:61:0e:ec:cb:
c7:6a:28:ec:0b:ed:02:6f:01:6a:04:cb:c3:20:d6:4b:b9:a3:
96:b1:a0:19:8f:ac:e2:99:83:6d:4a:ab:1a:19:40:93:00:33:
b5:ec:a5:0a:92:b3:e4:1f:91:1d:af:62:e7:dc:bc:df:a4:42:
ea:5e:3c:5c:d1:67:08:16:dd:b3:05:68:0c:c2:7c:c5:28:45:
3e:cb:92:1a:52:92:66:99:ea:d2:f1:26:e1:f3:63:8c:15:d8:
22:96:25:ae:c3:2e:a8:a5:99:b5:64:75:74:bf:b5:d8:3c:05:
fd:36:a8:a6:0f:ff:46:73:ab:88:fe:9b:9a:87:e9:10:07:77:
7a:87:c7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:42:17 2025 by rpki-client