Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
File: QucVYSpqaXFPXj8uTLxI_OhKb1I.mft (raw, json)
Hash identifier: IwOuFx629lEQdK6BMiUkLxGazDCK8JSViBJgnMAme3Y=
Subject key identifier: 23:B6:D4:0C:7E:32:EF:62:2E:0B:C0:B9:31:8F:ED:F2:A8:D8:C2:E6
Authority key identifier: 42:E7:15:61:2A:6A:69:71:4F:5E:3F:2E:4C:BC:48:FC:E8:4A:6F:52
Certificate issuer: /CN=42e715612a6a69714f5e3f2e4cbc48fce84a6f52
Certificate serial: 0197B70F1B2B2338748D1DB58A60C31BD337
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 15:01:49 +0000
Manifest this update: Sat 28 Jun 2025 15:01:49 +0000
Manifest next update: Sun 29 Jun 2025 15:01:49 +0000
Files and hashes: 1: QucVYSpqaXFPXj8uTLxI_OhKb1I.crl (hash: cDCM8a4Z3nMtuA2j+T5HvApkL7s+7v+vPHUTKYUNsZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:1b:2b:23:38:74:8d:1d:b5:8a:60:c3:1b:d3:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e715612a6a69714f5e3f2e4cbc48fce84a6f52
Validity
Not Before: Jun 28 15:01:49 2025 GMT
Not After : Jun 29 15:01:49 2025 GMT
Subject: CN=23b6d40c7e32ef622e0bc0b9318fedf2a8d8c2e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0d:71:ef:8d:34:5f:c8:54:9f:a3:15:b5:1c:
4a:15:18:f7:8c:6d:52:80:19:d7:9d:ba:3b:78:f6:
6a:aa:7d:0a:ae:db:66:f8:13:62:4a:21:6f:13:57:
dd:d2:58:a9:12:dd:13:6f:1d:eb:75:85:e8:5c:8f:
a6:4b:58:d1:79:21:15:6d:98:7d:dd:5c:42:fd:0c:
4d:1d:35:fc:8a:bd:ee:71:0f:7d:87:9a:1e:0d:d0:
72:0c:ab:50:c8:cd:7c:c5:9e:63:6f:34:bd:3b:a0:
76:41:ff:3c:82:aa:ce:8e:4e:6b:11:e7:3d:07:54:
82:30:4a:7a:b1:07:d5:30:f3:2d:a0:d1:f4:72:f7:
e2:1c:5c:fe:8d:3d:ae:fa:9b:97:6e:bb:36:6a:a6:
ee:6c:91:b4:8a:32:4e:8e:36:f2:8b:9c:89:94:f0:
d7:ac:fa:b9:89:e8:31:ff:03:c1:98:99:9b:64:5b:
a2:56:28:c9:57:72:fd:8a:07:d2:22:b7:d4:06:62:
ce:7f:24:bd:c4:0a:90:7a:e8:a1:fe:76:7f:da:54:
f5:c1:43:cc:5d:58:a4:10:d5:27:46:e8:9d:1c:f3:
22:4f:4e:b5:74:f2:61:c6:fb:2e:e8:d7:09:f3:8e:
5a:6e:a6:b2:cd:ae:c4:cd:ee:4f:5c:ac:90:f1:36:
a9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B6:D4:0C:7E:32:EF:62:2E:0B:C0:B9:31:8F:ED:F2:A8:D8:C2:E6
X509v3 Authority Key Identifier:
keyid:42:E7:15:61:2A:6A:69:71:4F:5E:3F:2E:4C:BC:48:FC:E8:4A:6F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:f7:8d:5b:c8:1b:b8:75:8b:15:00:12:91:24:df:e1:56:f1:
2b:cd:00:69:35:3e:a6:b6:34:c3:36:4d:7a:1c:61:20:c6:fa:
ee:92:7c:8c:59:77:9d:d0:e3:7b:8f:10:63:62:73:54:7d:fb:
55:be:55:be:83:e6:7c:e9:d1:40:9c:f0:95:87:41:13:ef:40:
0e:6a:91:05:51:3e:75:0e:ff:3d:a4:d5:44:89:fa:33:fa:db:
c7:09:4f:b0:0e:74:b6:d1:f6:8b:78:e9:95:31:eb:eb:76:5c:
14:ba:7e:fc:59:0b:76:c5:e3:18:3a:90:1f:52:82:6d:15:1f:
4e:ac:8f:b9:6c:9c:5b:ed:93:43:c0:01:cc:a4:c4:3c:29:57:
a0:0c:dd:68:2a:64:a0:f6:32:02:28:db:ec:9f:5c:ae:2d:57:
54:e7:52:a8:9c:6c:1b:fa:01:8a:2d:3f:f1:0e:ac:a0:c0:c8:
1e:c3:3f:c2:51:cb:a8:b5:d1:98:4e:e2:60:a9:6c:0c:0d:d1:
ae:0b:23:d1:cb:b1:1a:23:c7:d3:a8:2f:e9:68:f1:72:fd:91:
77:be:19:30:39:f8:e7:83:74:41:af:b9:8e:bf:c9:ed:a3:43:
da:22:3e:72:7e:bd:c7:ef:c9:23:09:cc:f4:9f:ca:d7:0e:e0:
5d:e0:e3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:26:19 2025 by rpki-client