Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json)
Hash identifier: QFBdG/xlt0tgH3+AyF17jJU+Q/mxgv7aCJh31BR4t7U=
Subject key identifier: 89:0F:6D:34:3B:FD:41:AC:58:BB:0C:41:2E:09:82:4A:0F:49:EB:0F
Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa
Certificate serial: 0197B745281C77901175122C2AAF6B844676
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 16:00:52 +0000
Manifest this update: Sat 28 Jun 2025 16:00:52 +0000
Manifest next update: Sun 29 Jun 2025 16:00:52 +0000
Files and hashes: 1: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: u35wdcYyyf2IowdncDGFQ7l2fYb+UY+oVlkHWLtJcXI=)
2: Y6QTaw-FjofB_OhkxIXlcm9P4-I.roa (hash: 4Yb+dRFpkkMPfeWzASwoM5NrRtcERhjg7Yl8jCZxXRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:28:1c:77:90:11:75:12:2c:2a:af:6b:84:46:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa
Validity
Not Before: Jun 28 16:00:52 2025 GMT
Not After : Jun 29 16:00:52 2025 GMT
Subject: CN=890f6d343bfd41ac58bb0c412e09824a0f49eb0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:33:ab:c8:3e:0f:39:37:ad:e5:1c:8e:60:72:
ba:09:e7:f5:fb:1d:71:14:d5:aa:c9:01:59:99:cf:
ae:a1:5c:ff:c4:e1:47:10:e3:eb:53:b0:6e:db:6e:
97:6b:22:1f:e9:27:fa:2d:3a:bf:99:64:35:e2:a3:
d4:89:d3:87:8e:a5:3a:52:ef:d4:e2:f4:97:3a:fa:
ee:a6:b0:63:c6:32:d4:60:6a:e2:76:bd:c6:fd:9f:
19:38:98:15:3f:06:96:e2:90:a0:13:63:83:dd:2f:
e4:68:b0:6f:8c:aa:0d:dc:c1:3d:28:ca:e4:0b:8b:
7c:f5:8b:d1:0c:67:e4:0d:b1:46:4b:2b:98:c6:26:
e3:46:b0:6b:a2:c5:69:36:b7:7e:7f:b9:7e:99:84:
c1:d8:88:97:03:9a:c7:ec:38:5b:b0:9c:a2:6e:1d:
09:ff:2e:49:f9:51:0b:10:84:ef:9e:35:4f:72:a5:
7e:2f:61:5c:9c:42:5d:6e:8c:54:ee:00:68:c8:ff:
30:84:50:84:16:ae:c6:82:a5:a1:b9:ed:da:37:e9:
6b:53:6e:97:5e:bf:0a:0d:d1:28:b8:59:4f:35:bd:
27:05:08:f3:6c:43:34:a8:a2:b3:4c:0a:8b:9e:10:
03:56:8f:d1:83:ce:f2:25:ce:e0:10:93:63:36:ba:
0d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:0F:6D:34:3B:FD:41:AC:58:BB:0C:41:2E:09:82:4A:0F:49:EB:0F
X509v3 Authority Key Identifier:
keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:a1:ea:c3:17:ba:5a:16:96:43:85:b3:41:22:f2:2e:e9:9d:
b5:d3:7b:03:41:1f:b4:0a:7d:07:89:34:95:95:17:2d:5f:8f:
99:af:48:14:f3:25:09:8c:88:de:0f:a2:82:cc:07:21:29:dd:
9a:f0:08:9c:12:3d:6f:06:04:15:fc:46:5b:76:24:ee:d4:e6:
10:c4:bd:46:32:2f:7f:cc:b8:ee:83:7f:9f:59:57:c4:77:e2:
48:78:0b:f4:b0:f6:4d:e1:c7:ac:1a:4e:cf:c2:f2:83:46:68:
31:75:53:ed:9c:e7:d1:26:8d:2c:e3:6f:2b:f2:67:cb:48:d6:
c1:36:77:4d:0b:4b:4d:c2:a3:06:3f:ae:3b:f8:82:2a:a1:66:
66:16:19:30:db:5e:de:d6:88:a7:87:30:58:d4:2b:24:93:9d:
44:e1:4b:13:b7:4e:5c:e0:34:8a:af:50:27:80:9f:d1:13:99:
33:92:e9:e7:43:ce:c8:f3:ef:b4:db:22:30:b2:b6:8e:f5:69:
17:fa:d2:96:58:cb:56:e9:0a:4d:7f:f7:81:03:37:80:27:5f:
7f:d7:da:8b:83:3d:fc:5b:73:dc:01:e6:f9:81:b4:79:9e:69:
20:23:a8:8b:b0:c8:50:3e:09:3b:48:d0:55:50:3e:a9:59:b7:
86:03:ff:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:17 2025 by rpki-client