Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
File: Q5i1d7IjtadjUSGadP2kRnBIkPc.mft (raw, json)
Hash identifier: xG3EAAO+e5YxtmB029YaLJhM2jCTD73DjqPJDW/Y5o4=
Subject key identifier: 40:14:BB:90:E3:11:40:88:C2:6C:62:04:33:EB:7F:0F:5B:19:58:41
Authority key identifier: 43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
Certificate issuer: /CN=4398b577b223b5a76351219a74fda446704890f7
Certificate serial: 0197B745B3877E5E9A426E108445B3D27D66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
Manifest number: 129D
Signing time: Sat 28 Jun 2025 16:01:27 +0000
Manifest this update: Sat 28 Jun 2025 16:01:27 +0000
Manifest next update: Sun 29 Jun 2025 16:01:27 +0000
Files and hashes: 1: KL5bIat3Yk7dpaHmhHBN9ywSikg.roa (hash: 2Dm1yDCv5S4uhPon+c/p0fcUA41+SmoP2uLFsPOLfB0=)
2: Q5i1d7IjtadjUSGadP2kRnBIkPc.crl (hash: f5Nz5PNGaUxTs8yMEJiLR0ZbDNMaMquzj6sYNAX/ZvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:b3:87:7e:5e:9a:42:6e:10:84:45:b3:d2:7d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4398b577b223b5a76351219a74fda446704890f7
Validity
Not Before: Jun 28 16:01:27 2025 GMT
Not After : Jun 29 16:01:27 2025 GMT
Subject: CN=4014bb90e3114088c26c620433eb7f0f5b195841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2b:cc:af:ef:e8:6c:b5:74:96:fb:8d:6c:1f:
09:b9:60:30:86:b4:c5:a6:19:dd:95:32:63:8d:5e:
ec:7d:aa:22:ca:10:18:08:6a:6e:58:b6:62:68:86:
14:d0:de:24:5a:f0:2d:48:4f:3d:01:ed:9d:56:ec:
87:c1:05:be:b6:c8:1d:70:cb:51:87:3f:b5:c0:88:
c0:63:9a:4d:c1:6e:c4:31:70:87:f9:8e:16:16:fa:
d0:6d:88:80:fb:a4:cd:c1:35:84:93:ca:ee:ca:7a:
3b:81:28:e8:da:34:f2:2c:ca:f7:7b:19:31:2d:5d:
98:cd:6c:38:d1:00:96:d6:d7:6a:cc:31:ef:00:46:
c3:7a:cc:34:7e:16:99:28:91:a1:9f:0a:56:23:1f:
26:d0:86:a5:dc:70:5e:38:c5:89:12:67:4a:40:fb:
11:1a:a4:2b:82:0a:d3:4d:84:9c:d2:3f:8c:00:2b:
2e:be:4a:37:7d:9c:c1:82:70:35:3b:1c:12:60:16:
a0:12:a3:65:12:68:e0:4d:65:8d:c1:c4:e3:9e:e0:
52:ea:3b:23:b3:39:b9:c1:f3:45:0a:bf:25:e9:39:
f6:e4:1f:96:1c:ca:3d:6e:8d:62:65:3e:d8:f7:4e:
f2:f0:96:fa:d3:7e:c2:3e:7b:04:2e:2f:e9:f2:ac:
c8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:14:BB:90:E3:11:40:88:C2:6C:62:04:33:EB:7F:0F:5B:19:58:41
X509v3 Authority Key Identifier:
keyid:43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:30:b4:8e:00:d1:e0:22:ae:b7:94:23:1d:0e:2d:72:bf:52:
2c:e5:41:44:82:8c:be:05:34:50:0b:2e:ac:ec:f1:dd:b7:b5:
02:96:62:98:0e:4a:75:eb:1b:72:84:20:e2:53:76:6e:67:28:
d8:5f:fc:0f:87:75:68:c3:35:64:e8:86:5e:76:a2:8e:65:42:
78:9e:d1:a3:b8:60:6b:e0:26:48:28:5f:f4:c3:36:07:27:ef:
8c:e8:a1:7f:5a:77:ca:f4:05:bc:f0:31:76:a6:89:9a:2d:ed:
3b:f5:77:ff:c7:a0:8e:50:f3:6a:65:28:1b:d6:b9:5a:af:e2:
c9:d6:8d:8e:e3:ad:93:0d:d3:4c:94:ab:cd:e2:ad:0c:2a:0d:
9c:8a:40:fe:c9:33:d4:f1:51:46:3e:7e:f8:08:49:2c:8e:88:
f2:e9:51:56:2d:aa:9e:e4:88:01:a8:d2:c9:f3:fa:07:51:33:
18:c8:1d:86:9b:db:84:12:7a:0b:1e:df:52:21:9e:be:da:c6:
e2:db:85:aa:ae:4e:fa:c3:82:f1:95:cf:ff:79:55:8e:8a:fd:
d2:59:fe:30:ae:a4:f6:0d:51:39:fa:14:be:44:bd:79:c8:02:
73:ec:d5:e2:20:13:1c:c3:75:85:b1:3c:8d:6a:c5:04:1e:aa:
5d:d5:cd:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:34:59 2025 by rpki-client