Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
File: QpXD7wDP_s4vcbYZkcbG09pJwRA.mft (raw, json)
Hash identifier: SkZaTSQ/vIjQu3pT+O4r/vvc5Bj49gBVnqzUiXe9C88=
Subject key identifier: B1:FB:56:90:AC:AF:69:4D:0E:4B:05:D3:DB:01:53:E9:BB:07:ED:85
Authority key identifier: 42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10
Certificate issuer: /CN=4295c3ef00cffece2f71b61991c6c6d3da49c110
Certificate serial: 0197B7EAB160144B83973F779532786F9561
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
Manifest number: 029F
Signing time: Sat 28 Jun 2025 19:01:40 +0000
Manifest this update: Sat 28 Jun 2025 19:01:40 +0000
Manifest next update: Sun 29 Jun 2025 19:01:40 +0000
Files and hashes: 1: QpXD7wDP_s4vcbYZkcbG09pJwRA.crl (hash: HhL7PVvqiOZsE7U+UNQuua8T1oR6hmLFARL2mXWNCvw=)
2: SGxwV5wEplv2xVzvW6jMMH0Hi4k.roa (hash: p0OjWToBEfnkzQw/yjz+AdE3+kwiUg0q1pmwBXRywUk=)
3: eC0FosjTUlbZcnWZVWIH359Lcd8.roa (hash: qDWdvtB5VIYnR+iPBmUfW1ayU92Br+j2BjK1vo1fUg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:b1:60:14:4b:83:97:3f:77:95:32:78:6f:95:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4295c3ef00cffece2f71b61991c6c6d3da49c110
Validity
Not Before: Jun 28 19:01:40 2025 GMT
Not After : Jun 29 19:01:40 2025 GMT
Subject: CN=b1fb5690acaf694d0e4b05d3db0153e9bb07ed85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:73:6b:35:b0:d0:29:a6:4e:b0:af:a3:29:83:
ca:36:ae:4e:a3:c2:ed:78:7b:1d:97:35:3b:73:9d:
af:b6:57:a8:ce:e3:af:ba:78:39:51:00:e3:2d:07:
0b:97:c8:92:98:2b:d7:32:d3:5f:fb:2d:e1:4a:5e:
50:22:20:f0:a6:80:c3:f0:83:ff:3d:ea:0c:82:02:
5a:01:0f:74:8e:0e:c1:26:62:13:b8:26:b4:c3:3a:
45:5c:78:a1:5d:9c:c4:f3:90:dd:7a:95:33:c7:e8:
6e:ab:89:fe:3c:32:fc:58:1e:ff:fb:16:56:49:9a:
88:02:60:ec:f1:0e:e8:50:b4:ab:75:1f:08:3a:55:
6d:a4:24:cd:f8:61:df:8c:a6:4d:7c:b3:f8:1b:00:
f1:e8:11:f6:fa:9e:f1:b1:6d:9d:c1:cd:2e:41:91:
26:c9:f6:35:25:f9:a5:0d:f7:f3:06:ad:80:d4:16:
fa:d9:2e:26:e7:89:e5:80:d1:1d:f9:06:1b:cf:69:
72:02:51:78:79:f7:2f:b4:d5:89:ed:1c:84:35:6e:
94:c9:60:c0:e8:e0:50:05:79:7a:d3:09:bb:ca:47:
db:b6:3c:72:d3:59:34:72:ca:32:1f:34:0c:65:f9:
2d:26:c1:9d:67:4f:ae:8d:05:79:f7:57:7a:7f:10:
d1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FB:56:90:AC:AF:69:4D:0E:4B:05:D3:DB:01:53:E9:BB:07:ED:85
X509v3 Authority Key Identifier:
keyid:42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:07:e3:60:5a:40:d3:f3:6d:77:4e:5d:e1:ed:53:57:ed:5f:
e7:66:07:34:f3:9d:b0:4a:53:5b:69:51:9a:9c:02:62:91:9e:
83:01:d8:c4:2c:ba:e1:88:42:cc:4e:9c:36:b0:91:c7:dd:d9:
b4:2c:f1:55:c5:1f:c0:22:5d:13:58:0a:b3:78:bb:30:5d:04:
dd:07:47:88:68:e9:e2:78:ca:4b:d7:bb:a3:b8:aa:b9:bc:79:
58:3f:e3:a9:6f:20:5f:5d:16:85:56:33:a4:07:9a:de:9b:2d:
93:11:f3:8b:ef:06:a2:ef:4a:d4:95:bb:2a:8a:83:44:a8:3a:
db:64:f9:9b:c6:89:20:26:48:6c:1a:f1:4c:8d:c4:56:99:2c:
71:e9:fc:a8:99:a6:4c:47:b8:e6:aa:79:9b:c2:03:c2:97:4f:
e9:ee:1d:34:0e:66:ce:44:dd:f8:fe:a1:b4:68:d0:a0:8e:24:
27:38:d8:57:27:51:9e:df:46:2d:8d:29:36:76:9f:b6:c5:85:
e5:a2:81:4e:18:fa:96:6d:3b:9e:c4:14:85:70:a2:73:24:4e:
2c:13:70:c8:33:91:8a:87:11:6b:3e:b7:ad:82:a4:84:05:aa:
fb:ad:54:73:04:4d:74:cd:54:c9:20:08:21:b2:cd:86:b2:be:
7d:00:37:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:00:06 2025 by rpki-client