Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json)
Hash identifier: 8Fe9+5OQ5XtJmR+MQ+lhHreTmwuEkLJEvVsoKQeyleo=
Subject key identifier: 77:93:BC:BF:22:28:E1:BA:A0:27:22:DE:AA:EC:CD:A4:33:C7:DE:E6
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 0197B82137AE1DACC3505A8B41287CCE16DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 20:01:14 +0000
Manifest this update: Sat 28 Jun 2025 20:01:14 +0000
Manifest next update: Sun 29 Jun 2025 20:01:14 +0000
Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: zqHTojQWUxHK2shEcQdTJhEyqd+9rgaZviMXaXrTnfs=)
2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:37:ae:1d:ac:c3:50:5a:8b:41:28:7c:ce:16:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: Jun 28 20:01:14 2025 GMT
Not After : Jun 29 20:01:14 2025 GMT
Subject: CN=7793bcbf2228e1baa02722deaaeccda433c7dee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:de:bb:80:19:bf:0c:b6:54:bb:73:04:16:52:
e7:f7:48:62:fd:1e:52:e0:de:50:e2:f7:e8:0d:ab:
9d:ff:bb:62:a2:be:49:79:85:83:16:a9:b8:15:df:
92:c7:53:c4:3e:f1:4c:37:04:30:34:5a:21:96:53:
23:ad:df:49:0e:86:ba:5e:96:10:fc:cc:9b:31:76:
aa:82:1d:e2:4e:c1:2b:86:4b:cc:8a:46:e7:f9:ed:
c9:61:80:3e:69:31:b4:75:a4:65:b3:c5:e1:e4:c3:
32:07:c9:1d:3f:ef:9d:11:69:67:0f:cc:c9:eb:7b:
26:10:f7:b9:3b:51:75:d6:b2:86:f5:90:21:8e:f0:
95:e6:32:5b:b2:78:b3:87:c7:e6:44:a9:5e:6e:5b:
fd:74:12:16:95:f5:ad:79:5d:3e:c2:01:a7:7c:05:
70:19:08:3f:51:03:ed:14:03:f8:c1:66:73:79:4a:
f7:32:4f:bb:a2:5c:0f:10:d5:1d:55:e6:ee:05:27:
a3:d4:3d:ee:24:24:43:0c:ef:f2:8d:42:e8:57:ac:
84:eb:fb:80:e1:2b:80:28:03:66:b5:34:b2:e6:42:
b9:e1:3a:6c:24:13:20:44:32:87:98:da:17:62:89:
2a:d4:d0:4e:de:80:83:b3:d5:f9:b7:ee:a1:17:c1:
41:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:93:BC:BF:22:28:E1:BA:A0:27:22:DE:AA:EC:CD:A4:33:C7:DE:E6
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:d2:d9:a3:7d:f6:68:a2:24:6f:f8:65:e5:d0:12:7c:da:05:
1c:d7:00:5a:e7:e0:e1:82:b9:b2:b7:5e:0e:36:79:d4:75:2c:
da:97:d7:77:ff:7f:26:6e:f6:38:3b:ff:af:71:b3:df:ff:61:
df:fc:59:ce:fd:7b:bb:61:7e:8a:19:9a:5c:2a:90:b7:90:02:
b9:08:ee:18:65:a5:43:c4:2a:57:46:09:ef:87:75:55:2a:16:
db:df:2d:b3:fc:0d:c2:11:2f:01:24:32:e3:b7:c3:12:e1:15:
dd:84:79:2e:34:f0:7f:ed:23:b0:49:0e:5a:ee:63:6e:36:40:
b5:65:a6:1f:29:47:04:35:a4:49:f4:0d:db:e2:52:e2:4c:97:
ad:72:61:73:a7:20:e5:d7:af:69:1c:75:0e:c2:4b:e8:e3:e3:
7c:6a:9e:c8:23:f9:b9:c6:f4:33:60:df:86:49:42:ba:f5:18:
7a:2e:07:a2:a5:2a:92:d0:68:f6:a5:45:d3:7d:0e:27:35:c2:
c9:b2:91:ef:7d:bd:ea:d0:51:a0:cd:16:a5:66:14:7a:7b:72:
c2:ca:20:e4:98:92:34:ce:03:94:c8:3a:24:4a:36:5d:75:a8:
65:d0:92:96:b0:78:6c:42:8c:06:a6:f4:50:82:f0:d1:3b:02:
47:c5:37:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:38:19 2025 by rpki-client