Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
File: QH75-Xcjo9WiGTasNNMZl_JWHrk.mft (raw, json)
Hash identifier: E3+RdCO7Z8SIMmfcEDvtn2CiO5fijgCY6B3vxqpH1qY=
Subject key identifier: B9:7D:68:25:58:A5:39:AA:7D:52:F9:CC:8A:A6:FD:39:82:D7:AF:AD
Authority key identifier: 40:7E:F9:F9:77:23:A3:D5:A2:19:36:AC:34:D3:19:97:F2:56:1E:B9
Certificate issuer: /CN=407ef9f97723a3d5a21936ac34d31997f2561eb9
Certificate serial: 0197B5FC4ADA59B56AACE9A2CD2D543EC61C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
Manifest number: 0C94
Signing time: Sat 28 Jun 2025 10:01:39 +0000
Manifest this update: Sat 28 Jun 2025 10:01:39 +0000
Manifest next update: Sun 29 Jun 2025 10:01:39 +0000
Files and hashes: 1: QH75-Xcjo9WiGTasNNMZl_JWHrk.crl (hash: kiCbTPNOhntz2QymPXaPXQBTWvmXSXpfXSrwx+IEyeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:4a:da:59:b5:6a:ac:e9:a2:cd:2d:54:3e:c6:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407ef9f97723a3d5a21936ac34d31997f2561eb9
Validity
Not Before: Jun 28 10:01:39 2025 GMT
Not After : Jun 29 10:01:39 2025 GMT
Subject: CN=b97d682558a539aa7d52f9cc8aa6fd3982d7afad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:be:e5:c7:72:2a:28:32:96:a7:5b:df:91:27:
37:fc:12:ee:96:78:fe:55:23:97:64:13:80:dc:19:
dd:60:c8:8c:02:af:36:d5:aa:c1:f5:bb:dd:fe:b2:
c4:fa:b8:02:f4:cb:d8:8d:99:20:fe:a9:68:ef:a0:
10:36:e5:48:c3:c4:38:c3:88:25:da:37:c7:08:1f:
18:85:ac:b4:2c:e9:42:bd:29:98:7d:57:97:36:40:
4e:73:58:71:c5:db:44:50:ad:46:30:80:76:8a:a3:
f3:0d:1a:78:fa:b2:54:fd:a3:35:05:6a:ff:45:db:
ea:67:ec:be:ab:16:1f:d3:a4:46:67:ee:39:57:d9:
0b:9f:fe:0b:28:c5:04:82:9f:78:e0:8b:25:b4:d5:
09:99:82:bd:95:0f:5f:a4:aa:91:24:62:bf:77:aa:
9d:6d:c8:45:c4:95:e3:0a:93:53:79:23:5c:9a:db:
2d:0e:65:cc:b3:a9:7b:49:3d:ec:14:67:e1:15:08:
8a:32:14:42:46:86:c1:8f:c9:6f:6d:50:16:b6:ca:
55:3f:8b:9b:b2:e5:33:35:3b:53:50:0f:81:d2:f3:
f7:48:97:87:c1:56:24:62:99:a3:de:b0:77:08:69:
9e:19:8a:f1:9b:e7:96:9b:c8:aa:23:8b:80:ac:75:
ca:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7D:68:25:58:A5:39:AA:7D:52:F9:CC:8A:A6:FD:39:82:D7:AF:AD
X509v3 Authority Key Identifier:
keyid:40:7E:F9:F9:77:23:A3:D5:A2:19:36:AC:34:D3:19:97:F2:56:1E:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:52:9b:5e:f9:a3:59:55:11:9d:b0:42:e8:ed:e8:55:07:35:
a3:b5:8a:96:a0:82:1f:d1:e4:e4:c2:43:d9:f5:1c:e1:eb:9a:
34:ca:9b:cc:e1:4f:ae:f3:ca:0c:09:a9:06:fa:06:6e:23:e8:
e0:7f:65:87:3a:13:e6:46:4e:22:e5:89:fb:9b:66:66:6b:c8:
06:8d:e9:19:58:97:47:af:3f:89:22:18:e7:ab:88:bb:f9:c7:
a0:f2:2c:da:17:5e:f3:a2:8c:f4:e4:6f:ab:9c:1d:b0:af:1d:
d1:4d:dd:14:81:fc:f3:de:e2:07:77:61:39:85:54:38:33:ad:
39:7b:76:15:5c:57:f6:cb:82:41:ea:9c:08:08:52:97:b1:e3:
72:f5:d8:70:aa:16:3e:c5:46:49:16:f5:f5:d4:1b:96:03:12:
76:69:e0:76:0d:5c:dd:e0:0b:ee:d6:70:30:5f:9c:69:13:49:
a0:1f:81:a4:af:b3:74:4b:7f:11:0b:68:d3:b0:b3:44:14:a7:
a6:16:6e:a1:cc:92:e0:49:13:a5:ea:15:a0:ea:3f:08:47:97:
5e:b1:94:8b:df:95:4f:56:ab:25:ed:26:ad:f0:31:bf:81:57:
2a:ba:40:b7:21:7f:12:0c:43:e1:7b:23:93:ca:7e:be:94:1b:
c4:1d:eb:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:31:20 2025 by rpki-client