Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
File: qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft (raw, json)
Hash identifier: DcHZWdiCT+F4TPnGuEGQAS0bQ3uotJmmRuHwXFX0x2k=
Subject key identifier: 3D:C4:8B:A9:30:C1:38:99:B8:EF:F8:2E:14:5F:60:FE:96:73:83:06
Authority key identifier: A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
Certificate issuer: /CN=a9a073b31d888e4439e272e007c9532fc305c80d
Certificate serial: 0197B6A0F8B3AFC0EFC15FF8ACD98BB2087D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
Manifest number: 0C77
Signing time: Sat 28 Jun 2025 13:01:32 +0000
Manifest this update: Sat 28 Jun 2025 13:01:32 +0000
Manifest next update: Sun 29 Jun 2025 13:01:32 +0000
Files and hashes: 1: E0nL2r6tA4Kip6utbHVTl2QsGcA.roa (hash: aen5+JQjIiPGZfLBCbBcX/i0rEODfLs98wUB0AIvd0A=)
2: qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl (hash: 52a6h7qZcySWVPihUxmAAGEzA9hSvdoDlMJNNxC+cGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:f8:b3:af:c0:ef:c1:5f:f8:ac:d9:8b:b2:08:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a073b31d888e4439e272e007c9532fc305c80d
Validity
Not Before: Jun 28 13:01:32 2025 GMT
Not After : Jun 29 13:01:32 2025 GMT
Subject: CN=3dc48ba930c13899b8eff82e145f60fe96738306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:db:87:93:cb:44:46:14:d3:52:24:2a:97:f6:
fd:4d:b5:c6:a7:3e:0e:a1:80:97:6c:56:15:ad:e1:
96:d1:37:e7:87:95:03:8b:10:5d:a9:40:a9:e5:4f:
de:fd:21:47:71:ac:ba:68:10:e6:8e:c5:d1:eb:7c:
fb:e3:f7:d2:8a:a0:2b:22:4e:df:35:2b:4b:d8:9f:
9c:da:31:d4:f6:15:46:ff:45:fe:d4:9c:ba:45:1b:
39:e5:af:d2:fa:5c:80:4c:ab:c0:0f:f1:b8:40:a7:
75:eb:a3:c3:b4:41:3b:41:9e:d5:a1:ec:56:c5:7c:
13:3c:d1:1d:94:01:0c:cd:1f:80:ea:5c:77:fb:93:
d3:87:7f:e3:1f:19:6a:01:f5:4c:52:92:dc:ea:1b:
a3:1e:a8:38:4b:9a:4d:a2:3c:f0:23:07:94:a0:46:
86:18:e5:bb:54:6f:ba:9a:f0:54:24:8b:e4:a0:c1:
ab:09:53:b6:86:4b:bb:cb:31:40:67:9c:38:ec:b8:
07:e6:d0:0b:a2:63:95:7b:7e:f0:de:df:a8:03:3a:
f1:4d:87:67:e5:3e:38:dc:a2:79:40:52:90:d7:04:
19:cf:60:46:e6:0a:88:42:d6:94:69:f7:5d:e5:d9:
b7:e9:f7:d3:62:8b:82:e4:08:3d:17:04:4b:3b:41:
2c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C4:8B:A9:30:C1:38:99:B8:EF:F8:2E:14:5F:60:FE:96:73:83:06
X509v3 Authority Key Identifier:
keyid:A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:e7:48:23:06:aa:79:7b:f1:03:5e:1d:f9:11:c7:d8:dc:c8:
f9:f4:86:59:e2:a4:e7:ab:0a:7c:b0:4f:ba:58:0d:02:b1:1e:
a4:c6:80:68:d1:ae:5e:aa:ad:69:72:54:ff:ca:a8:35:8f:66:
a1:69:35:50:c7:ef:b7:74:9d:a8:a2:05:71:d4:d4:7f:4f:f3:
02:58:e0:f3:32:8e:90:09:0b:33:cc:72:f2:14:2e:91:9e:cf:
60:3e:81:d0:57:db:13:8d:b1:47:ec:46:5a:fa:ac:10:d2:16:
c1:6e:9d:2e:cc:b3:b1:83:f2:0f:0f:f0:6c:0b:5c:52:c6:0b:
96:11:09:7d:40:4a:9a:2e:8e:a5:34:fd:ad:a9:61:59:aa:01:
94:dc:7e:04:55:5f:56:22:1e:a9:ae:55:77:1f:36:d9:e9:ec:
9d:52:3a:93:af:8b:55:5d:91:23:f6:42:ab:44:1d:67:73:28:
40:89:29:4b:46:cc:83:d0:18:c6:fc:7a:b9:1a:fc:2c:e5:74:
98:cb:90:63:02:79:e8:e9:26:10:54:97:0d:29:79:f1:7d:c9:
36:b0:39:81:ce:f2:c0:c5:ce:a2:b6:c5:ce:c7:90:95:47:b5:
fd:a1:0c:2c:94:bb:82:00:f1:ea:e7:c9:99:70:1b:d3:01:9f:
c2:25:39:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:41:59 2025 by rpki-client