Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier: FlTBTiEycRHS+WSVeDNP6HA+djOMJbZG0DJt89dXFBM=
Subject key identifier: 77:B5:44:5F:89:E4:0D:B8:B6:31:67:29:19:9B:FA:03:44:1E:AC:E2
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 0197B6A0FD474C0A4C9CCDB8C94316BA24C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 13:01:33 +0000
Manifest this update: Sat 28 Jun 2025 13:01:33 +0000
Manifest next update: Sun 29 Jun 2025 13:01:33 +0000
Files and hashes: 1: USQ6h1BmGX_5l6r9JsziO1Ui1Vw.roa (hash: W3xrS1zgc7QMM+ux8ilDAtn6lUWxhEYKoHwrzSB4Kb8=)
2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: ZngDiAl2Zmp1kxB6yP9UsiCV3xx0jHffqtpFOx/8Zl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:fd:47:4c:0a:4c:9c:cd:b8:c9:43:16:ba:24:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: Jun 28 13:01:33 2025 GMT
Not After : Jun 29 13:01:33 2025 GMT
Subject: CN=77b5445f89e40db8b6316729199bfa03441eace2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:04:05:ea:c0:31:a9:fb:46:6a:e4:0d:31:8e:
f9:ed:07:35:8a:37:07:7f:2d:45:de:d2:cf:a2:bf:
10:68:06:ff:c2:c4:9a:f5:bd:ea:16:fd:1f:7d:d2:
cf:d8:5f:cb:94:a3:3a:c4:73:10:f5:d7:28:04:8c:
75:92:35:ee:93:fb:87:12:17:8c:f6:76:dd:12:b7:
53:0e:97:5a:d7:b8:06:3f:da:ac:31:64:2b:34:ac:
fa:d3:47:0b:8e:0e:9a:47:16:bb:b6:e9:d2:2c:20:
74:ff:fc:3e:bc:f3:b2:d8:1d:6f:61:61:69:78:7d:
c1:22:73:24:33:64:0d:3a:54:06:a2:c7:f5:d2:61:
3c:61:85:43:58:80:b8:29:17:b2:a1:ee:1c:5b:c4:
d5:56:d2:a6:92:74:1a:19:41:f1:ca:55:55:03:24:
58:6a:92:e6:ee:2a:5d:54:ae:ce:db:7e:38:fa:2a:
13:96:6d:bd:92:89:9b:80:ec:d6:14:ec:b0:7d:b9:
40:67:d7:40:07:57:32:e6:22:d6:c4:3f:c7:12:0b:
2e:fb:70:fc:86:2e:35:ec:66:7f:70:7e:4e:0f:6e:
5f:11:df:d2:1d:2a:61:f3:91:3e:aa:58:7f:cc:6b:
09:6c:a6:7b:bc:53:c3:a4:34:26:e7:9c:62:38:0e:
ea:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B5:44:5F:89:E4:0D:B8:B6:31:67:29:19:9B:FA:03:44:1E:AC:E2
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:06:28:9f:d9:dc:3d:05:e6:32:6e:4e:f3:9b:17:81:a0:0f:
a5:fd:9a:98:19:ae:b1:a7:44:73:e0:2c:9b:4d:2b:1a:ae:c8:
12:89:2e:ca:86:bc:18:1a:7a:73:6a:c4:a7:69:0d:25:a1:7b:
c7:9e:47:ff:b2:de:19:b2:66:a6:36:a7:c4:86:3d:e2:fb:c3:
05:a1:f1:63:34:7a:c3:4b:5c:22:ce:31:a5:ce:22:71:a0:3d:
4d:db:d8:28:80:53:a2:7c:e0:40:57:8e:0b:f9:85:74:fd:c1:
ec:8e:54:15:53:c1:6e:87:56:eb:3e:a9:98:49:1f:0e:93:d9:
49:03:93:4d:73:ef:c4:1e:8c:d8:fb:ae:00:a3:03:24:b0:34:
4a:57:02:b8:90:ff:5f:a1:c3:c8:df:3d:2b:1e:90:44:d7:4b:
1a:c4:51:d7:56:62:c4:16:43:5a:0d:22:96:ba:64:15:a4:f5:
a6:5e:50:0d:ed:d6:7d:6a:1c:45:a1:0f:14:e0:09:da:83:00:
ea:40:43:f3:a5:49:5f:1d:87:66:a9:19:d1:9a:9a:55:51:ec:
92:22:ec:13:3d:fb:c3:3c:6c:25:e9:44:7d:20:5d:4b:bd:17:
3e:4e:6a:25:fa:1f:91:bc:cb:cf:e9:69:c0:86:bb:59:e2:cd:
a0:7e:7c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:18:10 2025 by rpki-client