Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.mft
File: MN-QKoFpKFoeCclwPGOg89St7kg.mft (raw, json)
Hash identifier: AZEaKpMm21pYfWSW0azc8MFWs9Lzf6Cn9hk5Zz03J34=
Subject key identifier: 7E:BB:60:33:B0:71:94:42:7A:B7:A6:40:60:76:9A:93:3F:6A:FD:D3
Authority key identifier: 30:DF:90:2A:81:69:28:5A:1E:09:C9:70:3C:63:A0:F3:D4:AD:EE:48
Certificate issuer: /CN=30df902a8169285a1e09c9703c63a0f3d4adee48
Certificate serial: 0197B70F0FCA0EDE68C7EECB73B9BB8F8A43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MN-QKoFpKFoeCclwPGOg89St7kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.mft
Manifest number: 0601
Signing time: Sat 28 Jun 2025 15:01:46 +0000
Manifest this update: Sat 28 Jun 2025 15:01:46 +0000
Manifest next update: Sun 29 Jun 2025 15:01:46 +0000
Files and hashes: 1: MN-QKoFpKFoeCclwPGOg89St7kg.crl (hash: O+l3zUUMXZNqn932Nq/uO8jI1yHjHgxYlaFG1oqUxMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MN-QKoFpKFoeCclwPGOg89St7kg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:0f:ca:0e:de:68:c7:ee:cb:73:b9:bb:8f:8a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30df902a8169285a1e09c9703c63a0f3d4adee48
Validity
Not Before: Jun 28 15:01:46 2025 GMT
Not After : Jun 29 15:01:46 2025 GMT
Subject: CN=7ebb6033b07194427ab7a64060769a933f6afdd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a1:dd:5c:49:3b:ed:76:a5:90:24:84:22:0e:
8a:02:17:09:78:9e:a0:ca:0d:f9:08:f9:4e:aa:70:
39:55:d9:8f:20:79:7c:82:e5:60:7d:95:4f:c4:8e:
6d:1b:b2:78:68:f0:72:e5:ef:0c:34:7b:5a:60:44:
69:b7:3a:0e:cd:18:36:b8:9b:33:d4:f4:10:d5:2e:
00:80:09:c1:7b:9d:49:e4:54:c5:ea:4a:81:98:1a:
e2:23:af:5f:22:24:3e:77:db:5d:54:95:f8:41:4a:
b8:f5:7e:6b:41:b1:74:54:9a:be:16:1a:20:88:3b:
26:38:76:09:96:5c:bb:16:52:94:b4:ad:43:6d:d5:
20:67:27:ac:61:d5:19:14:9a:9e:06:31:55:b3:ea:
90:9a:17:95:77:f6:d6:1e:b2:6d:3b:51:6c:cf:7f:
dc:bd:55:28:6a:f7:21:7a:c5:f8:a0:df:a2:e9:f0:
bb:81:f5:ca:9f:32:60:ae:34:de:7f:18:ba:f6:1b:
89:5d:f9:27:41:62:a5:ec:1a:98:97:80:1d:1e:e8:
26:be:52:fe:3f:d7:69:71:54:57:21:ab:25:d1:72:
43:19:71:9a:0a:94:3d:df:38:05:32:a5:68:a1:bf:
b6:a3:37:d5:62:67:47:8b:07:50:05:e0:ba:74:8d:
8e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:BB:60:33:B0:71:94:42:7A:B7:A6:40:60:76:9A:93:3F:6A:FD:D3
X509v3 Authority Key Identifier:
keyid:30:DF:90:2A:81:69:28:5A:1E:09:C9:70:3C:63:A0:F3:D4:AD:EE:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MN-QKoFpKFoeCclwPGOg89St7kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:8c:f2:41:5e:b5:e8:27:f4:64:a2:ed:cf:7e:9c:a1:90:ea:
ee:02:56:01:a1:8f:f6:4d:cf:ea:2e:ec:c4:e6:34:4e:d7:d2:
a1:85:7b:58:17:25:08:b3:06:e9:3c:3d:7e:1c:bf:59:53:90:
12:c1:1f:f2:f1:c4:31:0c:fd:56:a4:b5:d0:01:b9:48:10:52:
34:c6:d3:6e:9e:66:8d:c9:b5:88:4c:a3:67:ac:c6:67:87:1d:
2a:40:91:fe:1d:25:38:33:1e:09:70:ee:3e:38:37:39:19:23:
fb:42:b5:25:0e:0b:77:52:bd:15:8c:f5:51:57:4e:4d:b5:26:
13:51:ec:28:92:28:55:ef:1b:70:3d:28:94:35:56:34:7c:74:
bd:6d:7f:ef:b0:fa:c7:d1:a3:09:19:09:ec:d5:aa:d6:42:c5:
14:c9:8b:14:93:9b:8e:02:0d:16:fa:a3:e1:a0:08:9f:8d:c2:
b1:9e:91:08:d4:81:7e:4f:f8:69:96:f5:bf:40:2a:ec:65:77:
74:23:5c:f9:81:3a:15:49:21:fb:c6:7b:59:af:58:7b:9d:02:
8b:b1:df:2e:14:d6:d6:82:78:d6:26:9e:9c:37:63:0f:1a:b0:
48:50:12:33:8f:72:d1:b6:fe:62:b9:26:eb:d0:79:01:44:2a:
dc:f0:fd:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:53 2025 by rpki-client