Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: K7QIv9lRN2dlJyUI74ZgUmV0dBChcZpBYhD9nyiXlME=
Subject key identifier: 03:35:E9:D8:AD:C3:F3:20:38:0B:F2:4C:63:D9:9F:4E:91:C3:DC:8D
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 0197B9D9318A191F5BD29828B92BF1DF02F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0BD3
Signing time: Sun 29 Jun 2025 04:01:48 +0000
Manifest this update: Sun 29 Jun 2025 04:01:48 +0000
Manifest next update: Mon 30 Jun 2025 04:01:48 +0000
Files and hashes: 1: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: 6p64bLb2oPhUD85YeAQE8G7bBDM0zV31FjCJV7iFaNM=)
2: u25_l7rqpA4jc9Mn9X_nn6jE1D8.roa (hash: XxkiW8kKfa52GpQHHiGBtUNZJLczRvJy5PTfiodYsrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d9:31:8a:19:1f:5b:d2:98:28:b9:2b:f1:df:02:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Jun 29 04:01:48 2025 GMT
Not After : Jun 30 04:01:48 2025 GMT
Subject: CN=0335e9d8adc3f320380bf24c63d99f4e91c3dc8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c8:e2:bc:a1:f7:ae:72:8f:ab:c6:89:64:8e:
a8:7c:c2:2f:fe:61:f8:78:98:d6:ab:75:80:b4:c7:
dc:24:f4:7c:b4:69:f1:ef:6a:ab:a1:23:6c:f0:99:
ca:62:df:69:6f:62:52:d2:3b:e3:39:94:fc:7e:1c:
63:31:1e:dc:28:15:93:56:c6:ab:3b:a9:24:0a:35:
3e:f0:85:02:42:d9:05:1c:e5:d4:a2:ef:cc:91:f9:
7d:cb:c0:a4:2b:20:83:11:fd:ca:12:ae:f3:0d:33:
7a:4b:73:eb:84:fa:47:67:af:83:c3:37:85:85:87:
1f:be:2d:2d:ca:54:8d:45:53:23:7c:76:24:b7:28:
2a:12:97:51:22:6c:23:02:8d:77:5e:c4:2d:1f:5a:
d1:6c:0c:a0:46:14:9a:c3:0f:f4:88:3b:f8:c3:74:
5f:d6:e0:f9:e9:c0:10:69:01:eb:b2:e7:0a:b4:53:
58:a6:ec:c3:8b:2e:c6:0a:9f:9b:d5:d6:92:45:51:
4f:bf:6d:22:d8:aa:86:fa:40:f7:11:18:43:d3:61:
ac:4a:b5:19:c3:d6:7d:58:2a:dc:19:a4:57:30:a6:
a8:f7:b5:32:d0:2a:63:9f:5e:9c:84:34:23:3c:8f:
e6:74:61:04:7e:09:37:82:a2:2e:05:69:52:34:ba:
67:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:35:E9:D8:AD:C3:F3:20:38:0B:F2:4C:63:D9:9F:4E:91:C3:DC:8D
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:fd:38:a1:f5:b9:fc:36:71:3e:2b:fb:40:73:74:f2:ce:90:
e8:88:f1:2b:ec:ef:5f:2c:df:32:6a:9c:54:93:fd:5a:d5:49:
24:b9:09:77:20:6a:65:0f:62:e8:a6:9a:df:b4:71:42:c7:14:
16:da:f6:6b:46:84:59:8a:b4:e6:77:ea:88:a9:05:47:2d:44:
41:1c:26:b0:28:9d:d2:72:48:7c:12:1d:7f:3c:b7:54:56:ee:
16:26:4a:2f:9d:3d:33:03:24:fb:05:4d:e1:d7:c9:90:7c:81:
d6:9b:e4:da:ab:d6:34:19:79:d9:76:7e:83:95:b9:a4:52:97:
56:a1:0c:99:46:ab:58:c1:d5:49:72:0e:2e:c9:42:08:cf:99:
b4:e9:1c:49:86:a1:9a:89:ae:11:8d:7f:32:00:9c:93:6f:10:
a8:ab:64:d8:a9:25:08:f9:f0:a4:47:94:47:0b:e2:cd:3e:14:
4d:65:f4:c8:82:31:2e:53:fe:0b:ac:43:ef:58:1d:8a:11:36:
65:6e:c8:72:2b:cb:38:e7:d8:b4:e1:aa:44:f3:ff:d2:69:51:
f8:e6:e8:21:42:15:d5:6f:1b:f7:74:9a:b8:d5:c4:a9:7e:37:
8a:a6:f9:ce:4c:1f:50:22:3c:82:45:5c:e5:60:dd:e2:67:bf:
e5:92:bb:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:30:46 2025 by rpki-client