Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: 1Xa9A62p0x2/kdpchgFK218no8PL8RjbblB/uJJyMmw=
Subject key identifier: 13:8D:6F:B6:4F:B2:12:B1:31:6E:69:53:D1:A0:FC:2C:B2:8D:5A:95
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 0197B632767758C21420C752DFFB5523EB48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 0939
Signing time: Sat 28 Jun 2025 11:00:49 +0000
Manifest this update: Sat 28 Jun 2025 11:00:49 +0000
Manifest next update: Sun 29 Jun 2025 11:00:49 +0000
Files and hashes: 1: PTvQgS1qnjLwo9s4LdFb_Ohs-14.roa (hash: ISrdGe09G63GrIhvFHUR6KGbQ/gtnJbbuoeTtm56a1E=)
2: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: Mq8MnwlUUgSFt7aR8sHxG9IQKEwdrJG4ajp1RigVOuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:76:77:58:c2:14:20:c7:52:df:fb:55:23:eb:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: Jun 28 11:00:49 2025 GMT
Not After : Jun 29 11:00:49 2025 GMT
Subject: CN=138d6fb64fb212b1316e6953d1a0fc2cb28d5a95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fd:a7:bc:8d:87:a0:12:3c:b4:9f:80:c3:cd:
55:41:b7:36:48:36:bf:a0:58:b2:e1:d8:2a:d0:36:
a0:24:16:9f:59:33:54:b8:96:6e:a8:85:81:1c:66:
2e:cb:64:4b:62:f1:1f:e9:c3:8b:08:c8:18:d9:6c:
e7:02:02:a2:a8:5f:a4:d2:ee:46:97:e0:49:5e:03:
ed:08:44:63:d4:b3:ad:08:52:dc:fc:39:ea:51:91:
c7:c1:9f:68:5d:82:0e:46:36:86:a9:9b:f4:16:dd:
30:b8:33:5a:c3:63:af:3a:74:4e:aa:45:f4:5e:c4:
dd:2f:d1:21:db:b1:fe:3c:9d:27:2f:96:87:90:0a:
43:a9:be:a5:d4:4c:f0:0d:ac:d7:da:b2:51:47:ec:
6b:48:4e:35:e2:b0:c5:ae:89:a2:ab:93:ec:84:d2:
a5:df:fa:06:fc:4a:20:29:8e:6d:44:f7:b8:85:d7:
cd:00:62:dc:b9:81:d8:f5:74:13:cf:84:04:42:fa:
bf:fb:c6:ea:1b:85:1c:02:3b:e9:e4:ed:35:66:8b:
a7:1a:f4:a9:c9:7f:99:4f:52:5d:48:f8:33:58:7b:
0b:d1:14:8d:7a:ec:d8:a1:51:b9:7c:02:60:99:e8:
04:75:d2:77:a3:49:5c:05:53:0b:fd:c4:e3:3d:07:
d8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8D:6F:B6:4F:B2:12:B1:31:6E:69:53:D1:A0:FC:2C:B2:8D:5A:95
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:44:a0:2e:ae:0d:99:f6:33:62:34:43:81:65:80:32:ae:1b:
65:c0:e4:fe:82:0d:e9:38:2c:20:ce:29:a8:c8:f8:1f:ba:d7:
a3:b9:e8:9f:79:d3:ea:ca:28:fc:2a:d9:3b:c1:3c:1b:c7:35:
45:11:b6:9e:a0:0c:a8:76:93:34:23:1c:1e:0c:8b:82:b7:bc:
91:61:b8:ed:d5:0d:5c:13:91:39:69:18:51:f5:1b:b8:55:f7:
6d:93:9f:e8:bc:24:00:db:ab:d7:12:54:8c:0c:c1:44:8f:78:
d6:0c:fe:10:ae:c2:cb:41:e0:e3:58:24:6e:4e:23:00:9f:42:
3d:88:91:bf:97:2f:4f:77:16:e3:50:2e:16:89:bc:21:46:a6:
69:64:01:b7:10:b3:2f:d8:07:1d:9a:4f:bd:a9:cb:2b:bd:e2:
bd:be:1f:5e:85:e1:f9:d5:d9:77:f5:5d:b6:46:35:2c:5d:56:
f8:bd:6a:37:2a:15:94:c7:d5:37:a2:97:f9:c1:6d:f1:4a:d5:
40:85:5b:ae:f6:b5:30:bb:7d:99:e1:bc:3a:ce:00:a5:61:b7:
20:5d:f5:44:33:3a:ba:8a:9b:7e:1f:bd:04:e7:c6:18:7e:a4:
d2:33:54:71:42:86:a2:e9:e4:3c:3e:68:fc:a7:9c:8a:28:ed:
dd:e5:8f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:31:20 2025 by rpki-client