Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
File: QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft (raw, json)
Hash identifier: jK5uGeQY6+wist31IexYf2tZVtS/fFibmZskivFAzMY=
Subject key identifier: 22:1C:55:48:43:D7:01:AF:F8:E7:57:D7:CA:B5:33:48:7F:13:38:7C
Authority key identifier: 42:4C:16:5B:6A:49:34:95:41:C6:5A:F9:B2:15:80:16:38:19:F2:84
Certificate issuer: /CN=424c165b6a49349541c65af9b21580163819f284
Certificate serial: 0197B6A2062B10A03A97FD84D72FCD066E13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
Manifest number: 0953
Signing time: Sat 28 Jun 2025 13:02:41 +0000
Manifest this update: Sat 28 Jun 2025 13:02:41 +0000
Manifest next update: Sun 29 Jun 2025 13:02:41 +0000
Files and hashes: 1: QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl (hash: 8Q+nSyATNC37s260CerJp4f7KDPzlSp/P6R/yDl2qRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:06:2b:10:a0:3a:97:fd:84:d7:2f:cd:06:6e:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424c165b6a49349541c65af9b21580163819f284
Validity
Not Before: Jun 28 13:02:41 2025 GMT
Not After : Jun 29 13:02:41 2025 GMT
Subject: CN=221c554843d701aff8e757d7cab533487f13387c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:64:82:80:d4:9d:ea:ca:7b:61:9c:bc:42:26:
13:e6:f0:4d:fb:67:1b:0d:2e:ff:1a:ae:47:48:ee:
4a:1a:87:96:0b:eb:7b:8b:45:10:d7:9d:a9:20:20:
75:37:8a:23:11:ce:80:5b:5a:25:0e:6e:c9:cb:b4:
f1:b7:60:bf:b1:3c:74:9c:d2:f7:37:b0:6a:bd:9d:
d0:b0:4e:aa:50:1f:3e:9c:7a:c9:1b:d7:6d:67:02:
f8:7a:2d:80:73:bf:51:e1:d1:9d:b7:45:f5:1d:e5:
bc:95:5d:53:f6:89:55:c9:9e:10:b9:7f:74:d6:21:
05:ea:90:5b:e7:b9:c3:d8:0d:b6:6f:04:b1:8f:dc:
e1:db:79:48:db:5e:f3:a9:5a:3d:f5:7e:a2:87:14:
86:14:4a:f6:79:11:0b:27:b7:b5:be:d2:19:b8:00:
7c:0f:8e:36:c5:2b:9f:71:18:1c:57:ae:59:45:33:
f2:4f:7f:91:20:0e:c5:fb:90:eb:74:ec:1a:ff:40:
7d:51:4a:4d:4d:b5:18:9b:14:61:0d:7c:d8:ec:f4:
c4:fe:b9:ec:79:86:3e:30:6e:74:3d:23:11:8e:8e:
60:6f:6f:2b:8b:63:e8:c3:9c:38:be:c9:88:49:fc:
ee:c9:df:ac:91:67:3a:a9:2b:d9:b2:e6:94:97:b4:
fd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1C:55:48:43:D7:01:AF:F8:E7:57:D7:CA:B5:33:48:7F:13:38:7C
X509v3 Authority Key Identifier:
keyid:42:4C:16:5B:6A:49:34:95:41:C6:5A:F9:B2:15:80:16:38:19:F2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:25:71:59:4f:98:ec:d9:98:f5:1a:cc:56:e0:b7:e5:86:46:
41:40:a7:fe:c9:ca:d1:a2:34:fc:b6:0d:dc:79:58:7b:c6:d8:
0e:bf:c6:84:5c:1e:be:a6:fd:2c:80:06:75:ee:c1:f7:d1:56:
97:cf:81:d9:4f:21:63:19:a0:c7:eb:c1:06:94:dc:af:0f:79:
e7:ea:70:82:6d:6f:ca:f5:f4:52:56:f9:2e:ad:2d:e1:27:71:
b8:78:cb:bf:dc:af:cc:bc:01:5d:1e:a5:87:f1:1d:fa:68:95:
8a:20:bf:e6:cc:5d:be:d5:31:87:a0:e1:ad:10:05:81:d9:8f:
dc:40:f6:f8:8a:5a:c8:23:9e:ba:da:90:5c:35:eb:07:2a:65:
f9:36:4f:68:03:fc:ea:fa:2f:18:4c:92:c9:47:89:2b:1c:d4:
4a:41:54:6d:60:cf:fb:71:ba:eb:77:2c:f9:06:ae:f4:b6:ff:
84:bb:3b:ed:05:6c:9e:ef:a5:8e:45:a2:a9:1b:ae:60:93:5f:
8d:3f:42:13:bd:81:9e:cf:a8:f8:ff:d7:5c:85:91:cc:8f:32:
98:1b:d7:af:04:97:61:74:b8:e2:3d:12:56:d6:dc:1f:18:68:
d6:f3:2f:38:ca:4e:fc:e8:6f:4d:ba:86:7c:ff:d1:14:b2:87:
26:c9:dc:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:43:21 2025 by rpki-client