Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json)
Hash identifier: YvyG9uqhzYhDFZXJg+BgBYCqCllbAHW3I/cGKVl13LY=
Subject key identifier: 61:D8:F9:67:8E:A4:43:87:52:8C:6A:CA:CF:34:B9:7F:B4:9D:C2:E0
Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Certificate serial: 0197B77C8BAA6EB084AA79958DB560905BE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 17:01:22 +0000
Manifest this update: Sat 28 Jun 2025 17:01:22 +0000
Manifest next update: Sun 29 Jun 2025 17:01:22 +0000
Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=)
2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: PLDuQ4T/suxSbagIi7z182Jgp++XIuBocxsdu9WTDzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:8b:aa:6e:b0:84:aa:79:95:8d:b5:60:90:5b:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Validity
Not Before: Jun 28 17:01:22 2025 GMT
Not After : Jun 29 17:01:22 2025 GMT
Subject: CN=61d8f9678ea44387528c6acacf34b97fb49dc2e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2c:53:c9:70:72:22:8c:41:88:fd:01:13:cc:
34:13:2d:fa:40:ef:ac:a1:6f:be:c7:d2:ab:82:11:
5f:e6:35:55:75:e2:27:9b:60:27:02:87:ca:79:5d:
46:63:06:51:f1:e6:e6:5b:a9:2f:39:f0:1a:68:2f:
91:8f:93:31:91:88:ff:2d:dc:57:72:12:8c:51:cb:
f4:4e:0a:f0:c8:3d:63:ab:7b:58:c5:b3:95:93:22:
90:4b:4a:35:99:80:11:83:38:86:0a:7e:d1:fd:dd:
87:26:7c:31:5f:d9:08:0f:a4:22:b2:52:23:33:f1:
a7:3f:05:27:83:f2:36:4e:43:93:e5:1f:3d:56:88:
a5:f5:4f:34:9c:64:29:c8:2f:12:b0:72:da:48:1e:
e1:05:6d:ff:8d:5f:34:19:db:a3:13:fe:c8:b1:86:
a1:c4:5c:88:cd:7f:a7:67:96:9a:7d:53:05:f8:14:
4a:5f:0c:e4:aa:07:13:b6:d7:bc:55:eb:0f:98:64:
0d:1f:5b:af:c6:2a:f1:70:86:b4:25:e8:39:96:18:
20:f1:eb:da:bb:bc:e2:35:49:51:10:b8:3e:5b:38:
9c:0f:72:f8:11:8d:eb:65:fb:b5:b0:fd:00:d0:3b:
de:5d:72:04:d8:1b:43:cd:5c:34:ab:5c:f6:8c:2c:
0e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D8:F9:67:8E:A4:43:87:52:8C:6A:CA:CF:34:B9:7F:B4:9D:C2:E0
X509v3 Authority Key Identifier:
keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:71:d1:43:92:c7:fa:b6:88:89:ec:42:73:24:6a:84:93:35:
ee:49:14:62:92:f9:d6:f8:82:22:b4:be:d9:04:f4:ad:b5:93:
fd:e0:59:31:70:8b:4f:d9:f6:37:c6:a0:e6:85:18:40:6c:3c:
a4:d0:fd:80:c6:68:28:06:4a:09:26:2b:95:f7:f5:e6:c8:e3:
4a:8f:11:6c:29:f9:44:a1:fd:8a:28:1c:73:7c:34:57:77:05:
0c:c8:4a:99:80:99:e8:74:99:0a:14:c1:1d:57:96:01:0f:3d:
89:93:98:4e:79:25:b1:2c:bc:35:b6:6d:85:80:d8:0a:f4:87:
d1:f3:c7:92:11:9b:87:3f:b9:94:c3:47:9c:a8:2a:3c:24:2c:
12:9d:ba:ce:dd:28:70:bb:99:e2:59:dc:e9:c7:35:68:3b:60:
ae:96:ab:56:73:25:f5:ef:54:0e:f8:df:9d:f6:e7:44:51:56:
44:fe:35:dc:1d:4d:ae:1f:0d:a0:de:64:5b:99:23:91:77:8d:
9a:56:f6:49:fd:5a:25:ac:7e:b5:1e:45:5b:26:1c:23:12:a3:
05:49:a7:15:0a:71:84:97:52:f9:7c:cb:c9:fc:b5:d0:c5:c1:
c3:69:6d:59:4a:1d:45:93:76:60:14:8d:01:a9:49:ab:b2:23:
91:d0:5f:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:38 2025 by rpki-client