Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
File: q33wfyEEN2kvd-7DRpuaSCuW0ao.mft (raw, json)
Hash identifier: sFxyKW5sPSjQBZ2wTnyO8PRQVP4ub29zhsV8Tf1oAQc=
Subject key identifier: 42:57:1E:14:41:18:1F:3C:1D:B0:36:4F:A1:B6:FD:45:2D:83:EB:E8
Authority key identifier: AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
Certificate issuer: /CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Certificate serial: 0197B7B2F4A9DF2A7B6EAA497D3E92F23B94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
Manifest number: 054A
Signing time: Sat 28 Jun 2025 18:00:47 +0000
Manifest this update: Sat 28 Jun 2025 18:00:47 +0000
Manifest next update: Sun 29 Jun 2025 18:00:47 +0000
Files and hashes: 1: q33wfyEEN2kvd-7DRpuaSCuW0ao.crl (hash: bnEomLnIPQ7NZDUtaubgMvPhnUs67UuVdxQmX8Zoks4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:f4:a9:df:2a:7b:6e:aa:49:7d:3e:92:f2:3b:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Validity
Not Before: Jun 28 18:00:47 2025 GMT
Not After : Jun 29 18:00:47 2025 GMT
Subject: CN=42571e1441181f3c1db0364fa1b6fd452d83ebe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:6d:ff:98:3e:43:ef:db:b0:a3:6c:ee:4c:
26:31:bf:9f:fd:72:e2:96:48:56:11:48:e9:36:a7:
8f:f6:50:cf:6a:7e:b2:32:d1:cb:d1:ea:b0:86:c1:
93:9f:0c:7f:be:ee:69:9f:c6:a6:d6:68:bc:7e:68:
9e:9a:47:5d:07:76:2c:e1:db:f0:51:43:85:4f:cf:
fe:cf:17:2a:4e:04:2a:56:71:ee:90:47:c9:2a:48:
ac:b2:42:4c:df:03:0e:ff:8b:03:c5:30:5a:11:0c:
ca:a1:1b:8a:e3:4d:8b:ce:13:25:9b:6c:34:ca:09:
7f:4c:ae:96:90:e0:df:e3:17:28:24:1f:67:a4:ce:
13:14:24:69:1e:50:0e:fd:24:db:0b:be:a5:34:67:
df:31:05:ed:15:17:b8:e0:00:f4:64:a9:85:33:f7:
f2:55:89:c1:ba:75:90:1f:5a:15:d7:a0:91:f7:b8:
d8:a7:05:6b:b4:22:7d:9c:80:e0:19:66:53:b9:3d:
2b:f2:59:9f:0c:b8:20:50:1e:7b:4c:d4:61:f4:74:
1e:ac:70:cd:06:8c:24:72:3b:18:8d:01:a4:e0:bc:
c1:da:75:29:9b:42:54:12:d8:38:2f:44:ea:58:2b:
a6:8d:46:e9:53:95:24:b3:33:43:bd:54:b3:20:c1:
15:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:57:1E:14:41:18:1F:3C:1D:B0:36:4F:A1:B6:FD:45:2D:83:EB:E8
X509v3 Authority Key Identifier:
keyid:AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:e0:09:81:ba:8d:5a:df:f9:db:d3:e8:95:65:d8:02:d7:0e:
6c:81:6c:7e:9c:4c:33:c9:95:97:67:14:50:c8:f2:1d:4f:1b:
03:3a:49:a9:e7:49:5c:ef:9e:2b:a7:4f:3a:b6:4b:59:36:3e:
78:d0:54:16:b1:fc:5c:7c:40:83:f8:2b:7b:42:ee:44:d2:6d:
ab:4b:cf:d0:23:7a:d2:8d:f8:34:1b:9b:30:6f:70:fd:35:1e:
0d:f4:89:34:8a:1c:62:08:80:79:1b:b8:bf:78:d4:87:8a:8b:
50:9a:34:8c:4f:8d:01:49:78:6a:f3:f1:53:10:92:79:c1:cf:
5b:01:37:76:1e:33:09:75:c7:a2:c5:94:be:ed:bc:ab:cd:f8:
6c:a5:59:ab:22:74:c8:03:e2:96:c5:d0:af:71:10:98:9f:ee:
3a:69:5e:3b:9c:bf:27:d3:fb:ec:cd:6f:0c:56:97:6e:0a:1e:
12:38:35:cb:17:21:5b:92:43:d3:6c:11:22:64:32:30:d8:78:
22:af:99:50:9a:d5:9e:ed:1d:00:32:48:ab:52:69:72:6c:d8:
3f:7c:1e:b3:a0:83:bd:10:6c:a6:15:c2:81:97:e5:a4:9d:52:
02:ca:94:c5:8a:17:ea:0b:40:0e:8f:a3:f5:86:0e:71:52:7e:
df:02:2d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:51 2025 by rpki-client