Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
File: q22oNLMssSxL2uM_Zy80jZg_MXY.mft (raw, json)
Hash identifier: xTsEP8UAyzBkKVIn1YSvrUAyzRdgrgGXhhnECszesT0=
Subject key identifier: 2C:12:F8:F3:4B:39:50:2A:BD:73:89:7C:89:66:CD:88:94:BB:0E:7E
Authority key identifier: AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
Certificate issuer: /CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Certificate serial: 0197B70F0DA17FF9A620774FE69ED16F5DF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
Manifest number: 0E1D
Signing time: Sat 28 Jun 2025 15:01:46 +0000
Manifest this update: Sat 28 Jun 2025 15:01:46 +0000
Manifest next update: Sun 29 Jun 2025 15:01:46 +0000
Files and hashes: 1: evpxyC_xQr6-9_i5vhF3SSD60QY.roa (hash: F+Lkz2iLknBGekmgWZevszL+qAh6hnFUDMady9RqMNg=)
2: q22oNLMssSxL2uM_Zy80jZg_MXY.crl (hash: oTzzauhtBI3W6B0N4D1LEskMKedb/RB3AbVvtLPxhxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:0d:a1:7f:f9:a6:20:77:4f:e6:9e:d1:6f:5d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Validity
Not Before: Jun 28 15:01:46 2025 GMT
Not After : Jun 29 15:01:46 2025 GMT
Subject: CN=2c12f8f34b39502abd73897c8966cd8894bb0e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b7:69:70:2c:d1:60:4b:6e:46:ae:09:9e:f4:
83:c5:94:07:2a:e9:13:0c:e1:62:25:6f:ce:ea:63:
99:f3:cf:df:01:fa:fc:c9:d2:13:a5:09:f5:63:07:
71:a8:61:42:cc:33:9c:32:5a:0d:0b:58:88:d4:2c:
53:fb:fa:42:98:f7:3d:0e:4b:54:d7:f0:86:b9:84:
83:38:3b:14:8f:a2:70:52:3a:07:33:29:3a:f8:a6:
c2:7a:27:0e:d4:d5:a9:10:7e:1b:5e:89:2b:25:7d:
e7:51:c8:83:ef:c3:7b:a1:70:96:ae:e8:d7:0e:23:
c8:1a:73:e4:3f:e0:d4:d3:f5:d7:c8:9f:dd:90:92:
d0:9e:7d:d1:3c:ae:9c:8c:d9:ed:ba:a4:2e:44:98:
bc:7c:f4:cd:fe:c5:31:e5:bf:ac:73:49:b5:eb:ff:
18:54:5d:db:8b:00:85:7e:86:ec:c6:87:74:8b:ab:
9c:47:5f:13:e1:86:02:5f:d8:c9:d1:19:9e:c6:95:
01:79:29:b7:c4:05:23:01:35:2a:98:87:10:45:9e:
18:0a:73:4f:77:e9:51:4c:bf:ff:02:e9:5a:7c:c1:
77:33:76:9d:ac:06:b2:62:25:10:bb:af:af:d4:e7:
ca:81:ea:f8:5d:96:98:95:fa:e1:66:ff:f8:3d:fe:
56:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:12:F8:F3:4B:39:50:2A:BD:73:89:7C:89:66:CD:88:94:BB:0E:7E
X509v3 Authority Key Identifier:
keyid:AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:59:44:88:26:43:93:23:ae:c7:d3:30:a5:e4:e0:e4:c7:45:
97:0f:69:ec:8b:1f:1e:f8:d5:c2:57:c2:99:d8:aa:d7:18:46:
08:46:80:da:ff:32:f5:e6:a0:65:1d:fc:65:98:a8:80:63:18:
2f:93:1e:a2:76:54:a7:f0:be:a1:8b:8e:73:6c:61:99:d1:35:
93:c4:52:7b:0e:d4:f6:33:cc:54:0f:11:75:32:14:b1:a3:57:
82:66:5c:ff:8a:18:79:24:61:c2:98:c8:d4:2e:f5:da:c0:6a:
ce:a2:8e:36:7d:7c:45:f2:56:86:7f:dc:f4:aa:2d:26:1e:11:
46:7f:fd:d3:fc:b2:ab:78:35:d8:20:ac:a8:e1:7d:0d:70:f9:
31:b8:b6:d8:fd:9d:e3:85:07:3e:df:e1:7a:22:01:cd:52:cb:
d8:83:e9:3e:47:3a:34:89:05:bd:02:65:65:54:e8:d4:d5:34:
ff:b8:44:94:ee:fa:79:e5:83:eb:e5:99:bd:9b:d2:35:b0:04:
21:75:7c:4e:fa:79:30:96:7a:70:e3:84:e3:a2:d4:16:b8:ad:
6b:e7:eb:16:94:d0:5b:8b:20:5d:8f:c6:ed:23:8b:c9:c6:5d:
32:8f:be:14:cf:35:69:c1:13:0f:20:e5:68:f2:ae:5e:d4:83:
d1:e1:f2:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:22:48 2025 by rpki-client