Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
File: QA8uoVe7tTqwJgEazlzRNg7y930.mft (raw, json)
Hash identifier: MwCjLRbA900D1DlG+y/iyowfzlPBSquvahbMhvrT77E=
Subject key identifier: ED:2F:08:6D:9A:42:8A:AE:95:85:B9:FC:55:81:23:44:F0:E6:2E:25
Authority key identifier: 40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D
Certificate issuer: /CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d
Certificate serial: 0197B6A0723C5DFF4BFFFEA239C2C7AB2B82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
Manifest number: 1509
Signing time: Sat 28 Jun 2025 13:00:57 +0000
Manifest this update: Sat 28 Jun 2025 13:00:57 +0000
Manifest next update: Sun 29 Jun 2025 13:00:57 +0000
Files and hashes: 1: QA8uoVe7tTqwJgEazlzRNg7y930.crl (hash: zYjJovJO5qQYgD/AEQkxCJOSM0uLbQoVuRT5Y6IG1qk=)
2: XYTPsqrRjFt2AcvYCap2e2yz93s.roa (hash: Kn1lsHWRvXKbCBaB+H+cKPNwO5N2Gs/SXNbPpw2oiTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:72:3c:5d:ff:4b:ff:fe:a2:39:c2:c7:ab:2b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d
Validity
Not Before: Jun 28 13:00:57 2025 GMT
Not After : Jun 29 13:00:57 2025 GMT
Subject: CN=ed2f086d9a428aae9585b9fc55812344f0e62e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:0c:b8:28:83:55:0e:1a:94:0a:94:07:e7:45:
69:b8:63:0d:10:7a:f3:56:77:c7:66:7b:8d:95:53:
c0:2a:2d:d4:ca:b8:98:66:1b:9e:54:f6:cb:d7:5d:
3f:9c:e8:7b:32:be:4c:6d:42:55:cd:df:23:c2:d1:
ab:7b:78:ab:27:d6:dd:1b:3a:57:32:ae:ec:c7:53:
49:9a:5e:48:6b:c3:9b:7c:d9:39:c1:8b:af:2c:70:
c8:0a:b5:33:10:c9:c5:17:82:68:7d:a3:3c:65:79:
40:69:2f:6b:13:44:2a:ca:3e:c4:37:27:39:7b:40:
f4:95:33:0c:30:fb:35:8c:ad:fc:c0:b8:dd:a4:1f:
35:98:53:04:59:b3:6b:16:40:a5:de:69:80:4a:68:
f6:86:7d:3b:ac:f3:5d:27:2b:df:f7:88:13:61:77:
25:87:f1:52:30:ce:9b:fc:9f:4d:a8:15:a9:5e:11:
f6:a0:e0:b5:d2:82:be:5c:41:a8:db:b7:23:a2:b1:
44:51:8a:b7:96:30:75:e0:c9:6c:53:cf:6d:8a:30:
ea:64:f5:79:06:0c:a9:30:ee:0a:8b:61:5f:cb:70:
1e:f0:a3:a1:d6:4f:b0:da:97:d1:98:fc:46:a6:82:
80:a2:ea:bc:5c:55:a2:f5:f0:45:e7:cc:2a:71:1c:
b6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2F:08:6D:9A:42:8A:AE:95:85:B9:FC:55:81:23:44:F0:E6:2E:25
X509v3 Authority Key Identifier:
keyid:40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:a5:a0:44:ee:8b:17:39:ef:47:50:d8:4d:c0:b6:14:9b:a5:
68:3c:e0:3a:e1:e6:8c:96:6a:46:5a:7b:4f:01:f0:05:67:7e:
25:cc:28:57:f8:0f:63:3c:84:2b:60:08:ac:73:9c:89:25:a2:
33:5f:d5:8a:ad:b9:2d:55:e9:90:1b:96:47:9e:b1:db:de:a2:
69:7f:ac:8c:d6:ac:dd:90:b8:32:ed:00:d0:38:6f:72:95:4f:
9c:b8:e3:28:04:c7:ed:b5:6d:3d:22:fa:a8:28:bb:1d:28:ad:
17:4c:ac:0e:b5:c1:65:00:59:08:c1:13:34:45:21:dd:4f:8b:
0c:70:1a:ad:fa:a6:c5:16:7e:f2:c8:f3:93:57:93:30:9b:69:
95:21:e6:51:b6:48:eb:07:28:78:44:30:e4:59:00:fe:d6:79:
ee:eb:76:6f:29:28:ea:53:a4:4d:88:9c:0f:1d:f3:ff:68:d5:
74:f2:49:55:b5:51:4a:fb:cf:45:29:64:7b:32:1f:81:39:a4:
d9:73:df:1b:f2:a1:2c:2a:02:ed:13:21:f2:ae:68:d8:4d:d0:
54:03:4e:13:08:f7:2b:a8:99:27:d2:ac:1a:e1:36:d1:b9:f2:
72:02:53:ea:f5:1b:ad:1f:be:c0:2d:de:ba:4d:e5:b7:13:fa:
de:12:1a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:44:44 2025 by rpki-client