Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
File: qlPNLFhKPcFiCLqTsNt0dzs_I74.mft (raw, json)
Hash identifier: vKQw3SwAUjuN/b2SapLwA6qOu2ayr9RA13zoa2uzA1k=
Subject key identifier: 13:74:C2:9D:58:67:EA:75:54:EA:CC:9B:4F:70:C1:C6:09:40:8F:D0
Authority key identifier: AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
Certificate issuer: /CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Certificate serial: 0197C614D21F3E87C6348905192F9A7DD2D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
Manifest number: 15BD
Signing time: Tue 01 Jul 2025 13:02:22 +0000
Manifest this update: Tue 01 Jul 2025 13:02:22 +0000
Manifest next update: Wed 02 Jul 2025 13:02:22 +0000
Files and hashes: 1: eIuvCKiUKqnjxChjtjEAvL7JvnI.roa (hash: wyV3lMaUUP7vVQqM6FlcaWTPKvU8kW+p1xMsgVv6OJA=)
2: qlPNLFhKPcFiCLqTsNt0dzs_I74.crl (hash: DclpZJZz1nqAYKVpqg/n0wBmESZevSQwg4z2k23B14k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 13:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:14:d2:1f:3e:87:c6:34:89:05:19:2f:9a:7d:d2:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Validity
Not Before: Jul 1 13:02:22 2025 GMT
Not After : Jul 2 13:02:22 2025 GMT
Subject: CN=1374c29d5867ea7554eacc9b4f70c1c609408fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:26:ae:ca:b7:dd:48:6f:89:af:40:a0:b2:c1:
c6:04:66:16:36:53:6b:29:2c:4f:7c:41:21:e9:23:
d6:e4:9b:3c:32:a9:11:3c:f7:82:31:6c:7a:e1:13:
a3:ce:8f:c1:e0:5d:7c:49:e3:4e:55:4c:c4:dc:1c:
cd:84:aa:d4:06:13:ea:00:10:9d:77:b7:a6:11:ab:
42:58:43:32:ff:c3:df:87:9f:5e:63:52:c7:4c:7a:
68:17:48:a2:a0:5a:b5:f9:60:05:4d:66:1f:27:0b:
75:2e:59:d3:c8:86:de:58:30:f6:92:96:bf:7f:be:
16:61:1f:a7:ee:09:94:5c:b6:b3:5c:6f:1e:39:ea:
83:fb:70:ea:03:05:7f:60:09:ac:79:28:97:a9:73:
72:7d:09:8a:fa:a8:6f:41:b9:5e:a9:59:6a:26:74:
e3:d7:ec:c8:94:76:75:30:78:21:d9:c5:d1:c7:1e:
cd:66:6d:93:36:e9:dd:41:7c:9c:b7:ff:c7:f8:e5:
09:46:51:55:0d:5a:c1:9a:f7:e2:35:b3:32:b7:c0:
db:5f:b2:4d:5b:6e:e3:b8:8e:5d:30:c0:b5:44:46:
3b:64:5c:68:be:f5:6d:45:69:0a:30:02:c3:98:0b:
74:7b:65:ce:63:72:06:49:dd:b3:1f:70:b1:e6:c3:
3d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:74:C2:9D:58:67:EA:75:54:EA:CC:9B:4F:70:C1:C6:09:40:8F:D0
X509v3 Authority Key Identifier:
keyid:AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:1a:8d:15:b2:b8:f5:a9:9e:b5:87:fd:b8:32:9e:ce:88:91:
d6:81:a6:34:ee:37:c8:64:03:14:29:b5:c6:18:c9:6b:1d:43:
41:2c:6a:05:f6:40:14:ec:98:2a:c2:54:2e:7d:c9:a9:89:1e:
8f:e7:8d:6c:5e:34:a1:84:85:90:f0:b5:3b:7e:63:c8:a1:dc:
02:02:86:ce:2b:27:18:1c:d9:7a:f3:0f:fc:3f:ab:25:cd:d3:
a7:50:d9:ce:48:5e:40:3b:ac:5b:2a:bd:8e:8d:83:c3:c3:e7:
be:0c:56:8e:95:d2:58:a9:a8:26:68:d8:d5:73:ab:db:e2:c6:
1d:a4:d7:5f:03:49:23:60:71:10:04:5d:0c:0c:ff:32:77:fe:
ff:e2:ea:45:fd:61:ec:3c:9a:51:11:c9:44:8d:fe:1f:97:15:
d7:a1:4b:29:f2:e1:69:d3:1e:ca:33:fe:0c:e8:af:2d:4e:0a:
e0:58:3e:96:ed:6d:21:28:72:05:fa:38:d1:6b:90:d6:87:8e:
b8:9b:22:0d:03:44:ac:43:ad:ed:a9:ee:76:eb:95:7a:3a:52:
83:1c:6e:4b:75:76:08:13:fe:b2:14:97:bd:f1:cf:e6:60:85:
93:7c:1e:5a:1a:b3:15:c6:2a:e4:67:c7:e2:b1:cb:43:76:5f:
24:76:44:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 22:49:20 2025 by rpki-client