Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json)
Hash identifier: /y0Rr2rRa2f5CeuKllG0vsPzpYua0OMIpS9/A1/vYgM=
Subject key identifier: 67:DE:5A:22:99:9A:D2:44:EA:B5:A5:23:63:2F:A5:FC:DC:FD:88:5E
Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Certificate serial: 0197B77BF6164E6A4EA0456404144D128AB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
Manifest number: 15BA
Signing time: Sat 28 Jun 2025 17:00:43 +0000
Manifest this update: Sat 28 Jun 2025 17:00:43 +0000
Manifest next update: Sun 29 Jun 2025 17:00:43 +0000
Files and hashes: 1: HitPQyHhpEoVidVOwqr2ddK23LE.roa (hash: UNtTyCfc7GR1gxgfjG0Y/XLw7gBd/DnSW8H0cz2SvrM=)
2: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: 2k+jSqlE7PldcBzQixZdOix7wGyg1linkkZiT1noUt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7b:f6:16:4e:6a:4e:a0:45:64:04:14:4d:12:8a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Validity
Not Before: Jun 28 17:00:43 2025 GMT
Not After : Jun 29 17:00:43 2025 GMT
Subject: CN=67de5a22999ad244eab5a523632fa5fcdcfd885e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:65:e0:9e:d0:5b:23:a0:36:e6:4d:c0:82:6a:
ac:21:65:e0:91:32:c6:2c:b7:f7:34:68:2b:aa:57:
ed:08:2d:b8:c5:1a:13:e3:01:86:da:95:8b:71:55:
2a:d3:b3:4b:59:33:17:9a:40:91:49:8e:2d:2f:e4:
ca:38:26:5d:70:ad:0a:dc:7b:79:47:c5:db:2d:ec:
7a:4b:f6:c6:01:99:78:35:ac:33:93:34:78:4b:fd:
60:91:7c:a1:7a:52:e3:70:09:c2:5e:df:ee:2e:e5:
fb:d0:68:0b:f8:ce:23:d1:d7:7f:90:09:8e:46:9a:
df:b9:dd:4a:42:4c:d3:d0:04:f3:cf:06:69:8d:c3:
6d:ba:0e:bc:27:59:2e:cf:2e:c1:c1:06:19:bc:69:
7a:a6:90:46:04:0e:a4:38:0b:f7:83:c8:0b:e0:d4:
e9:89:b1:b4:9f:51:d1:18:3f:42:40:c5:a1:93:7d:
f3:05:00:0a:de:74:a3:b3:4c:22:0e:88:00:0b:01:
a9:2a:20:8d:66:be:c0:c3:85:8d:9f:a9:bf:3d:b3:
1f:82:67:56:56:ca:4a:2f:b1:b0:72:d9:28:ea:94:
c4:90:c8:67:4f:8c:8f:40:24:08:8e:55:15:c8:5f:
09:4e:b9:07:d0:0e:93:19:44:bc:4e:ed:c6:e8:62:
7a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:DE:5A:22:99:9A:D2:44:EA:B5:A5:23:63:2F:A5:FC:DC:FD:88:5E
X509v3 Authority Key Identifier:
keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:27:15:6a:89:cc:fb:eb:33:d0:ab:71:d0:64:12:bd:a8:e8:
f9:2e:3b:2d:07:43:1c:34:9e:d0:22:91:d9:f5:d4:5c:e8:51:
6a:9a:5e:71:6a:8b:dc:79:ea:c7:5c:90:83:15:b4:c0:95:32:
70:3f:0f:90:e0:d7:8e:20:0c:84:8b:2f:13:b1:a7:da:10:f8:
db:d4:0d:91:55:ca:c1:d9:32:59:8c:58:17:46:10:41:49:24:
75:4d:bc:f8:a6:6b:1f:7a:e4:01:c7:06:55:42:d8:3d:33:79:
d0:79:c7:96:42:f3:37:16:b4:c5:2f:b5:03:2d:72:1d:de:85:
bf:a0:5c:dc:e2:52:22:a9:57:6f:c2:9b:f9:a7:79:43:53:e9:
b4:05:d4:d5:10:15:23:59:a1:9f:4c:fe:38:d8:30:8a:3d:91:
51:0b:44:69:ff:39:6f:01:87:4b:f3:f4:ec:a6:c5:44:3f:03:
9b:f1:e0:1f:f4:1b:ab:86:6d:e6:20:2e:2e:2c:44:57:fa:2b:
b5:57:a2:4f:a1:0c:5a:0e:26:9e:ba:46:f0:27:17:97:46:06:
7f:f7:bb:db:0a:dc:76:b3:54:b8:46:ab:79:01:4a:36:d3:a2:
10:9b:f0:87:7b:d4:de:b5:83:da:30:9f:c1:3e:32:f8:95:0a:
89:d0:48:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:40:50 2025 by rpki-client