Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
File: Q7iP8e37ZyBmAwJncaquyEuLHrg.mft (raw, json)
Hash identifier: xBIgUmqeXakIUhxJh1FgSaAmmEbl5D15LjV0fxVgUjA=
Subject key identifier: 30:87:52:B2:D8:8D:81:30:17:03:2D:F4:1C:8D:20:D7:25:FA:CA:21
Authority key identifier: 43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
Certificate issuer: /CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Certificate serial: 0197B77C52F45C6635B081AB736AFBB41224
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
Manifest number: 0D65
Signing time: Sat 28 Jun 2025 17:01:07 +0000
Manifest this update: Sat 28 Jun 2025 17:01:07 +0000
Manifest next update: Sun 29 Jun 2025 17:01:07 +0000
Files and hashes: 1: Q7iP8e37ZyBmAwJncaquyEuLHrg.crl (hash: YLjyW3zTYV6V+0xc5YeHnj4FmTkHnuQsj0dmez1pq64=)
2: gg-emnwJIGdBmpEHYh5OFvjnfmc.roa (hash: f0YF0XqFky78qYjbpn5730w15nHy84AldxyEdZxgOEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:52:f4:5c:66:35:b0:81:ab:73:6a:fb:b4:12:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Validity
Not Before: Jun 28 17:01:07 2025 GMT
Not After : Jun 29 17:01:07 2025 GMT
Subject: CN=308752b2d88d813017032df41c8d20d725faca21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ae:37:82:ba:9a:d2:59:3c:b0:d3:5b:5b:bf:
31:de:13:81:27:87:45:93:19:cb:09:c2:44:ac:47:
03:1d:0f:0a:f3:e3:17:2d:12:3d:43:23:d6:4c:86:
2d:cf:16:f4:bb:0a:40:9c:eb:f0:25:42:68:bf:f2:
d2:e2:90:19:d1:e6:9e:62:c9:2e:37:e2:5b:48:8a:
ab:05:72:2d:35:46:48:95:9a:f4:f9:8b:dd:4c:de:
c2:44:69:94:81:88:bb:3c:d5:a5:c0:2d:d4:23:36:
a8:77:4c:2b:43:2b:6f:1a:06:d8:a3:98:62:dc:5a:
49:3d:6f:12:41:18:9a:70:02:8f:c1:a1:d4:3b:fb:
2c:af:8c:f1:60:80:8d:64:bb:ae:55:b8:7d:c8:55:
10:da:9d:c8:9a:a3:9c:42:ff:99:50:d0:71:1d:9c:
f1:c2:5a:53:2b:06:5d:ab:76:55:4f:5d:eb:1b:3a:
8f:58:5e:7d:56:be:d0:fb:04:00:ec:29:bf:58:f2:
75:65:af:ab:b4:5d:5b:8b:41:f4:86:24:c0:00:a7:
dc:1d:44:05:6e:8d:ca:e9:35:0e:1d:ba:1d:dc:05:
95:3b:a8:2d:f6:bd:c1:3d:7f:6a:a0:d7:1a:70:27:
28:11:09:96:5b:7d:9a:60:5f:87:4e:b7:27:20:4b:
45:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:87:52:B2:D8:8D:81:30:17:03:2D:F4:1C:8D:20:D7:25:FA:CA:21
X509v3 Authority Key Identifier:
keyid:43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:b0:fc:e1:95:d4:2e:b8:c9:8f:b7:29:da:5e:03:59:df:15:
97:f6:49:ba:59:ab:be:f6:77:5e:0d:d9:4d:ba:15:ac:36:78:
8c:c7:b6:66:c0:4c:ef:4a:83:66:3a:4a:3e:d5:82:0b:11:b6:
30:ef:7a:86:3a:44:5d:f0:30:49:62:41:df:95:c9:a6:53:a5:
42:6f:d4:c7:50:1a:7a:24:28:0e:76:bf:f5:b7:93:45:1f:ca:
ea:10:d9:8e:ad:d8:4e:7c:87:26:de:7a:80:d0:43:8f:34:32:
22:79:e1:fb:c5:43:d6:b7:25:6d:ea:31:a2:0a:25:1b:da:57:
9f:c2:29:f7:e7:38:c7:27:b6:9a:14:b2:a4:0e:b7:39:2d:a6:
0f:87:fb:fc:5a:7e:0d:37:2c:16:ac:e8:b6:d1:62:3e:43:e3:
7d:ec:53:0e:69:57:b9:a4:1b:88:f1:d0:e2:77:6b:b9:b0:b6:
89:2d:13:4f:df:3f:0f:16:b3:76:d7:d7:43:8c:53:bd:36:de:
f2:9d:60:a7:f7:2b:03:58:81:2e:e1:5e:41:1b:bf:39:74:23:
96:8f:ed:8c:df:ff:93:08:7a:80:c7:81:54:9f:c0:d2:92:7c:
b3:71:5f:89:51:94:e5:ae:d9:19:89:bc:73:74:24:3d:d2:7d:
be:21:b2:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:28:32 2025 by rpki-client