Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
File: QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft (raw, json)
Hash identifier: /c2TV4nzoAGJFl7hKlqPC+a5BTP++zZGnD0bp4Fout0=
Subject key identifier: 8F:90:38:BB:78:FA:72:3E:8F:5F:6F:E1:2B:DD:8A:70:8F:D2:6C:46
Authority key identifier: 40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A
Certificate issuer: /CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a
Certificate serial: 0197B6A158941135F38E145237E743E8F8D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
Manifest number: 09C2
Signing time: Sat 28 Jun 2025 13:01:56 +0000
Manifest this update: Sat 28 Jun 2025 13:01:56 +0000
Manifest next update: Sun 29 Jun 2025 13:01:56 +0000
Files and hashes: 1: QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl (hash: JdIjRURluFid8ppTsOvHMJmdmw6C3Dd83Qt1cQz74Ts=)
2: dmWwMKmVtBjrQ943YS9mH5Wi3ME.roa (hash: prLT1d+yXEMIyzM51qGGgQHR5qaRcSsmNt9aZioq8kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:58:94:11:35:f3:8e:14:52:37:e7:43:e8:f8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a
Validity
Not Before: Jun 28 13:01:56 2025 GMT
Not After : Jun 29 13:01:56 2025 GMT
Subject: CN=8f9038bb78fa723e8f5f6fe12bdd8a708fd26c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:6b:83:7f:12:d8:55:3c:07:d3:69:d7:e4:
21:16:43:d5:c0:e3:0b:7a:eb:26:43:f2:f4:6c:b7:
6a:0f:77:8a:c0:e6:39:3a:65:bf:07:a4:8b:f9:c8:
01:41:6f:13:1b:1b:b4:6e:d6:8d:01:76:79:49:30:
b3:ae:11:6d:1e:c5:4c:b2:51:e3:ed:55:61:71:f0:
c6:86:62:f9:99:29:0e:9f:18:33:1a:35:de:63:12:
bf:d1:54:05:94:d4:15:0f:0f:30:49:09:65:53:75:
98:62:b0:ae:f3:5d:d2:9a:ab:47:7b:ed:48:ae:ca:
97:49:20:e0:9e:53:66:55:e1:01:7f:0d:8a:ac:2d:
9e:34:52:91:49:6a:23:d0:31:0d:d0:84:2d:c1:35:
ff:6e:99:9b:9f:db:be:a3:de:57:8d:11:ed:73:5b:
1c:7d:99:96:ee:05:58:69:1d:f5:05:62:a8:00:e9:
1c:5b:c7:d7:33:10:80:a9:10:a7:2b:8d:47:c0:89:
52:4a:ec:74:de:43:25:d3:2d:0c:8b:72:d6:29:b4:
40:2f:55:19:d5:db:e2:50:79:88:a3:07:a9:77:82:
f9:c8:2a:f7:45:91:51:47:31:92:d2:22:5a:c0:c4:
47:95:7e:fa:d6:93:8d:c4:53:90:b6:02:52:52:eb:
61:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:90:38:BB:78:FA:72:3E:8F:5F:6F:E1:2B:DD:8A:70:8F:D2:6C:46
X509v3 Authority Key Identifier:
keyid:40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:ca:f5:4a:a6:9a:3b:6c:fa:b5:dc:04:b9:a2:04:0c:cf:a0:
44:97:85:0f:66:c4:f7:58:9f:f8:42:ad:e6:55:8e:e0:36:6d:
dd:24:ed:ae:a6:5e:05:54:36:df:0b:ca:47:78:54:cf:0d:d4:
96:06:2d:6d:35:d1:1b:08:84:96:cf:09:b5:b3:44:dd:63:23:
5c:2e:04:62:e1:0d:74:84:2e:7b:92:3f:9a:36:a4:0f:01:30:
c8:91:ce:95:7f:5d:4f:dd:e5:ed:91:c3:9c:79:ea:67:61:e3:
56:b0:26:b5:eb:c2:ef:f2:e1:48:c5:16:7f:87:70:e6:87:98:
3c:e7:98:5a:b6:19:65:aa:d7:64:92:84:66:f8:88:f5:4c:b2:
01:bf:6b:bc:20:2b:51:51:f7:ee:c8:4c:55:b4:6c:ec:f0:ae:
4d:92:4f:fa:64:7b:87:26:9a:83:c2:0b:88:da:c5:de:6f:b4:
3d:af:3c:f9:2e:19:db:fd:61:86:26:1b:a1:82:c9:a9:4f:ff:
f0:b2:d9:77:28:1f:b0:33:26:76:b3:90:59:a8:91:13:62:2b:
13:63:6e:42:91:23:01:da:1b:f7:91:11:43:8c:2f:f9:e7:43:
41:50:e2:d9:b1:7d:be:6f:f8:97:4b:d3:26:b7:56:c1:15:74:
cf:d7:f7:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:27:51 2025 by rpki-client