Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
File: 1-qe1orkHCRPTSTKBX-tH42Mf318.mft (raw, json)
Hash identifier: 6bVuT71YQWSiMCLeUjZ8O7CS/UIt56zPrJYlF+/mAno=
Subject key identifier: C7:41:6A:04:B8:D6:51:A3:90:F6:3C:3A:26:35:1B:96:CC:AB:22:B6
Authority key identifier: FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
Certificate issuer: /CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Certificate serial: 0197B70F2E821711048C5B7850AB7F9DFF1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
Manifest number: 1390
Signing time: Sat 28 Jun 2025 15:01:54 +0000
Manifest this update: Sat 28 Jun 2025 15:01:54 +0000
Manifest next update: Sun 29 Jun 2025 15:01:54 +0000
Files and hashes: 1: 1-qe1orkHCRPTSTKBX-tH42Mf318.crl (hash: q34Ft9R10p0c62IhNl5JE5qNRupHedyomp920dfTJUU=)
2: gHlRquCMx6iwfFhK1AbziJf-SOA.roa (hash: vGvXkm75uZ6w5eWBxSl4fiUVkztcBJ6xWRWL2h8kjfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:2e:82:17:11:04:8c:5b:78:50:ab:7f:9d:ff:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Validity
Not Before: Jun 28 15:01:54 2025 GMT
Not After : Jun 29 15:01:54 2025 GMT
Subject: CN=c7416a04b8d651a390f63c3a26351b96ccab22b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f0:71:f9:98:09:11:d9:10:13:2c:04:bf:f3:
f0:94:22:65:77:60:0e:1c:14:fc:39:1c:67:0f:27:
18:0b:1e:87:b7:39:86:48:21:d5:bf:d7:03:24:ec:
57:3f:cd:82:99:7e:99:43:d1:86:18:1d:f2:aa:c2:
e9:66:f2:9a:c5:04:8d:0a:40:62:d9:a9:bc:f8:44:
e3:c1:fe:c2:28:29:6b:a4:78:d0:19:d6:1a:d6:45:
73:99:48:e1:98:63:23:d2:7f:96:04:52:7d:12:a6:
19:57:1a:74:d7:e1:c7:20:0d:df:71:bc:44:30:a7:
69:d2:1d:e1:3e:e4:2c:7b:df:8a:f9:39:9e:05:8b:
2b:85:c3:a2:9a:d1:27:0f:45:08:14:1c:cf:85:61:
7c:d5:2f:a1:eb:70:47:93:91:39:a8:64:16:ca:bc:
2d:6e:ba:3b:5c:3e:d8:b8:d9:c6:e2:d9:fb:b6:d8:
fa:b0:56:7b:7d:91:a7:7a:cf:1a:6a:f9:ed:89:69:
b4:16:af:48:f7:3d:b9:b8:2d:64:91:30:0d:cd:4d:
5d:2d:4e:3e:b1:a8:52:5f:da:8b:2c:15:8e:15:47:
2b:59:ef:77:70:51:af:e2:eb:18:75:60:7d:44:f4:
2f:9e:73:91:02:e8:4e:45:d9:30:5e:4c:45:56:58:
26:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:41:6A:04:B8:D6:51:A3:90:F6:3C:3A:26:35:1B:96:CC:AB:22:B6
X509v3 Authority Key Identifier:
keyid:FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:bf:9d:c5:8c:2c:62:a0:ec:e4:0e:03:34:70:ba:bd:27:0a:
e1:17:17:46:d9:0a:16:50:72:22:f3:91:6c:b4:20:83:5f:56:
d6:ed:52:24:c9:e8:11:cd:a8:7a:d6:8e:cd:59:ba:c1:74:e4:
02:e4:60:e8:27:03:27:8a:4c:3b:3f:4a:14:61:01:dc:d0:37:
0f:d4:82:b7:16:98:05:bc:a2:47:96:86:25:e5:3c:0d:7d:d5:
8a:a2:f5:28:09:c9:1c:33:0e:26:90:f7:96:ae:e0:af:ca:5a:
1e:27:5e:57:a0:73:ea:4f:f4:92:c7:92:c9:6e:00:b5:c2:b2:
52:2b:82:19:09:3e:d8:4e:03:9a:3e:36:2c:11:ff:8e:87:af:
07:6c:eb:7f:99:7f:e6:18:bd:a9:bf:1d:4b:60:44:6a:43:3c:
98:ac:43:ce:e5:40:f6:8b:42:ac:62:95:55:6b:23:97:e8:0e:
58:90:15:f3:3f:a3:bb:6c:5c:35:da:90:fc:71:34:ba:3d:80:
72:73:f2:05:4f:a6:b9:39:93:8d:34:10:81:e4:27:b2:4e:c7:
a9:7b:72:0e:35:24:84:e9:cb:03:eb:d8:01:ec:5c:07:ce:98:
a8:f6:91:e1:cc:09:1b:87:4a:af:d0:d3:d3:87:4f:e0:4a:e3:
f5:b9:6c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:49:53 2025 by rpki-client