Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json)
Hash identifier: 7h/NEqqxdOM8Hr3wRFWgT8g8ZvfjtqEEQ5XTPp7tvFs=
Subject key identifier: F8:8D:DB:B8:52:A5:F6:4E:32:45:32:D0:D9:B0:69:9F:46:56:02:A6
Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Certificate serial: 0197B9D91C306CE2DAD45B701E60CD066815
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
Manifest number: 010C
Signing time: Sun 29 Jun 2025 04:01:42 +0000
Manifest this update: Sun 29 Jun 2025 04:01:42 +0000
Manifest next update: Mon 30 Jun 2025 04:01:42 +0000
Files and hashes: 1: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: 0bMUkHCD4bOHx6BMFVMdUdkouyo5tkTiGgqyjQPEbvI=)
2: etqHJp94mEXyM-mZRNVFRO7Kziw.roa (hash: Y6iOU/XBP66s91SGzXjQj2BEKS4QjWa/buoOF4uhFqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d9:1c:30:6c:e2:da:d4:5b:70:1e:60:cd:06:68:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Validity
Not Before: Jun 29 04:01:42 2025 GMT
Not After : Jun 30 04:01:42 2025 GMT
Subject: CN=f88ddbb852a5f64e324532d0d9b0699f465602a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ef:93:ee:58:68:80:11:5e:d3:55:a0:48:41:
9f:de:7d:cb:e3:88:d4:8b:a5:72:f0:f7:7f:f5:90:
4d:2f:69:27:ee:ca:75:0c:9e:11:89:73:4a:ca:09:
e6:06:fd:0a:e5:33:5c:84:1a:03:87:a4:87:98:e8:
51:90:e2:80:6e:26:f5:9f:83:e1:c5:9f:b8:90:b1:
8a:18:40:e9:ad:8b:49:07:a5:7e:af:21:7d:a2:7f:
91:ac:da:a6:66:75:25:50:28:96:a4:4a:3b:02:83:
38:f3:12:13:be:1d:7a:f0:ad:33:a0:24:c4:04:9b:
05:e8:f1:cc:f5:c6:59:0e:5f:5a:36:86:88:d1:53:
8c:06:92:a7:b3:77:18:19:4a:0d:2a:ae:60:b2:54:
77:18:a1:df:21:3d:b1:34:a6:a9:82:1c:60:d5:5c:
3b:6d:c4:ac:75:b6:7a:4e:7e:fe:4c:17:78:49:83:
1d:31:db:ac:87:a7:aa:43:91:79:75:1a:43:98:3e:
06:3d:64:ab:35:89:f6:19:38:f9:60:9c:a0:8e:4d:
4f:9e:b6:bf:9f:8a:6d:2b:df:10:6b:90:4d:de:5e:
df:58:82:a5:a6:db:13:1d:ca:29:9b:38:4c:3b:3a:
26:07:12:45:2e:24:0f:08:8c:df:c5:70:37:1c:1b:
6e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:8D:DB:B8:52:A5:F6:4E:32:45:32:D0:D9:B0:69:9F:46:56:02:A6
X509v3 Authority Key Identifier:
keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:1e:81:56:29:c3:b4:8b:0c:20:5d:09:8f:c2:71:23:53:53:
be:73:65:2e:48:92:6f:82:07:66:ee:af:b7:65:58:50:4b:c9:
38:9a:d5:3d:d1:5b:b9:9d:f0:60:b9:3d:8a:2f:0a:6e:55:45:
80:23:c6:10:f4:28:18:9f:28:0c:23:13:dc:c9:49:b2:35:46:
58:20:fc:76:d6:cc:f6:f6:e6:5e:01:72:26:23:19:9b:10:39:
42:0b:a0:3c:d3:5c:f7:87:86:6e:1a:3b:a0:fc:11:bf:13:36:
b5:98:23:22:78:59:32:88:90:05:0d:c6:45:f0:0a:a9:90:fb:
af:5e:69:b4:37:87:6d:d1:e3:55:0f:5d:2e:eb:8f:32:17:13:
97:53:8d:dd:a0:4d:10:1b:23:c8:03:88:c3:f3:30:2f:95:98:
6c:e6:17:e3:a5:b4:c1:40:b9:f0:f0:74:32:95:be:66:60:35:
8e:b5:41:0d:57:f7:7e:44:3a:ce:2d:08:89:37:39:de:ae:1d:
1b:e0:29:1a:47:42:bd:b2:c4:ff:ac:ae:81:9c:59:dd:fb:42:
4a:91:fa:8a:28:ee:5e:71:39:bf:54:58:98:ad:10:3e:a2:04:
82:0f:25:25:fd:cc:e0:1c:0c:26:84:c1:15:e0:34:bd:b3:2e:
af:10:e8:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:42:58 2025 by rpki-client