Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
File: QclkksAECK1U1zDA62KeOgtQ2A8.mft (raw, json)
Hash identifier: 2oVyM6UMbKgh1yVGsHWQIhP3zhno1XNPQzGWSkDAJgg=
Subject key identifier: 21:BF:B2:27:6D:8A:81:1C:0B:C3:41:8B:B8:30:FF:D3:9D:F2:9F:F1
Authority key identifier: 41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
Certificate issuer: /CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Certificate serial: 0197B6A0D4E6E98CCD6383B1387E5C2AD502
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
Manifest number: 023F
Signing time: Sat 28 Jun 2025 13:01:22 +0000
Manifest this update: Sat 28 Jun 2025 13:01:22 +0000
Manifest next update: Sun 29 Jun 2025 13:01:22 +0000
Files and hashes: 1: EpeCh_PHvVwvR1jtfMGPQVrMsrQ.roa (hash: XKVWPCeZYhwf3z1v0hUSbNv7x/hm4cVMh5YcJnXqtvg=)
2: QclkksAECK1U1zDA62KeOgtQ2A8.crl (hash: mAPvwzDQcsV0E4bR6aqi5yFv9l3l8ZqEoAb80bejNDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:d4:e6:e9:8c:cd:63:83:b1:38:7e:5c:2a:d5:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Validity
Not Before: Jun 28 13:01:22 2025 GMT
Not After : Jun 29 13:01:22 2025 GMT
Subject: CN=21bfb2276d8a811c0bc3418bb830ffd39df29ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:58:de:e3:e0:62:4c:e5:5f:c8:19:7b:95:1d:
62:fd:85:5b:63:f5:3d:37:05:c4:77:b9:37:9c:b5:
9d:bf:66:dc:6e:1a:ad:00:85:7f:49:01:bb:a0:5f:
80:94:44:18:00:30:d2:43:32:0f:75:ee:49:16:1f:
22:5d:7e:ec:36:1d:5e:7d:61:d6:f3:3d:ea:45:84:
6a:9e:fb:12:93:6c:d5:af:d3:1b:bb:4f:a8:80:17:
09:70:55:c4:bd:d3:c7:b5:14:8c:a6:ae:86:16:28:
1c:5c:0c:17:f9:1e:96:09:17:81:55:f6:37:c1:34:
3d:62:32:a3:53:39:46:0e:59:3a:d2:ef:2b:d7:fc:
c7:4c:0c:07:d1:25:79:a4:7a:0f:74:10:a9:fc:1e:
88:f9:94:18:e9:a0:bd:39:fa:49:eb:8a:42:a4:db:
26:d0:fe:ed:68:52:9f:e0:6f:d9:65:c5:4e:bd:86:
43:f9:be:dc:44:d2:ea:f2:64:0b:af:c5:d4:be:50:
52:41:a1:53:34:b5:f2:35:3c:2e:da:90:fd:07:90:
83:34:bc:f1:bd:90:7d:88:17:f3:4a:e2:5c:ff:4b:
52:3f:04:40:c8:8c:09:81:b6:8e:11:94:b1:78:97:
5b:3c:79:ea:00:ff:26:c1:1f:8a:28:8d:80:3d:05:
13:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BF:B2:27:6D:8A:81:1C:0B:C3:41:8B:B8:30:FF:D3:9D:F2:9F:F1
X509v3 Authority Key Identifier:
keyid:41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:d3:18:e0:c1:5c:21:4e:16:c1:a5:50:dd:23:48:e8:7d:c4:
62:1e:5e:f1:5c:8e:da:94:08:71:66:37:71:14:fb:f4:88:aa:
9c:6d:1d:fe:79:db:a8:33:97:5e:b9:84:30:9d:77:cb:68:e0:
88:51:08:61:49:21:92:e9:f2:a8:69:5e:5a:ed:e7:e0:64:75:
c2:3e:ab:7c:5a:0a:35:e4:dd:ec:50:8b:95:73:5e:6b:bf:9f:
0c:9e:fc:2c:8a:6c:75:5a:b8:1b:43:f9:5c:28:6e:a8:eb:82:
cd:79:c5:a8:9d:b8:f6:d8:b5:66:32:0c:b3:bb:bd:58:07:b0:
f4:99:28:c1:9a:ff:75:5c:a9:3d:1e:24:3c:0c:24:93:e1:83:
d7:dd:58:e5:f4:1f:36:44:33:61:d4:ec:c7:26:34:da:d2:0b:
85:33:d8:93:1c:43:88:77:16:1b:69:2b:f1:dd:54:1d:ba:7f:
4b:22:63:52:4a:73:a0:55:ba:ee:ca:5b:d9:42:72:00:87:be:
75:31:c4:50:26:42:4d:7a:9e:46:39:f5:6a:90:c1:bc:a3:e8:
d4:ce:6c:37:5d:c9:be:fb:f9:55:6a:c5:9b:05:1a:d5:3c:32:
d5:69:e0:c3:00:f4:76:11:dd:ad:4e:41:1c:f7:a6:18:ef:c8:
45:4c:c0:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:48:42 2025 by rpki-client