Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: 9WwtLJt3y7wOiTz0dTQh+4d41wYzT6Xmo3I1nQxMKic=
Subject key identifier: 5D:A7:41:B8:DE:6A:13:A9:DF:24:75:E5:6A:3E:73:D6:E8:E4:D9:C1
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 01974C691DF0F2BB8B32C7862365CFB5486A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0C9F
Signing time: Sat 07 Jun 2025 22:00:46 +0000
Manifest this update: Sat 07 Jun 2025 22:00:46 +0000
Manifest next update: Sun 08 Jun 2025 22:00:46 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: YuHXjTwf71i4wUrydSjM0meghrQSATvNCA8kmXA0K98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 22:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:1d:f0:f2:bb:8b:32:c7:86:23:65:cf:b5:48:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Jun 7 22:00:46 2025 GMT
Not After : Jun 8 22:00:46 2025 GMT
Subject: CN=5da741b8de6a13a9df2475e56a3e73d6e8e4d9c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:60:32:74:f1:59:c3:29:b0:ba:ae:be:71:99:
bb:a0:3a:07:1d:17:40:9b:e6:bd:86:f6:aa:91:39:
c1:ec:bb:d7:17:b2:32:04:9b:d9:d5:fe:06:7a:c3:
2a:5e:93:3f:9a:65:27:35:66:7c:ab:5b:08:16:ef:
95:c9:60:be:2d:47:a2:a6:ac:d0:52:96:06:f3:41:
62:81:17:3d:b8:77:21:68:64:e2:46:58:d3:ea:87:
b5:90:48:69:4d:12:01:54:b1:64:4e:ab:62:14:ec:
e4:3e:03:93:4c:b8:9b:29:88:57:84:32:a5:51:c3:
22:0d:20:f7:50:e4:16:f6:7c:51:e5:4f:47:e5:da:
12:15:b3:5d:0e:01:f2:a0:fd:9c:d3:9d:9d:bf:95:
58:c6:50:5d:0e:f5:50:d7:7d:43:4f:8d:2d:24:50:
53:b1:54:5e:81:ca:82:4e:e1:98:68:f1:eb:86:4c:
37:33:90:03:0c:d0:3b:68:18:a3:d3:44:3e:af:65:
b2:44:97:8d:01:04:5b:cc:90:7d:8c:e0:81:bd:7b:
8d:36:71:07:26:82:43:e2:a1:c3:82:bb:c1:96:44:
9c:3d:b9:e0:fb:34:b7:32:b8:0e:98:49:f2:b6:0d:
d0:ef:75:c8:25:d3:00:0e:d2:52:0a:db:31:1d:d9:
f5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A7:41:B8:DE:6A:13:A9:DF:24:75:E5:6A:3E:73:D6:E8:E4:D9:C1
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:d0:b2:c7:8d:3f:1b:55:f6:96:5f:13:f7:83:2e:a4:f5:f9:
7b:ff:cf:e3:9e:29:ef:58:f7:1b:2d:ee:3e:bc:2b:c5:e3:b5:
21:9f:bf:7b:ce:47:a1:ba:1e:0b:3f:1c:34:6a:c8:66:c9:ad:
48:35:2e:21:49:73:e2:45:09:14:ac:5f:4c:e2:1c:7e:e2:c0:
0c:13:46:93:56:2c:70:d8:e3:0e:1b:89:ac:bc:1c:f7:40:32:
e6:ef:1a:88:0a:e4:88:b1:d5:fe:1b:dd:3a:29:5f:77:8a:da:
4c:bb:84:fb:f1:a7:7c:cc:af:b3:a3:15:a9:57:0a:ac:58:b7:
f7:62:c6:c0:c3:a2:3f:f2:0f:30:4e:79:04:79:ed:3f:3d:14:
cd:3e:ee:b5:b1:f5:ef:9b:b0:4e:03:d6:53:df:f3:ef:e5:aa:
e7:28:64:5f:52:0f:64:1a:7b:61:04:58:f1:00:ce:74:d7:5f:
d3:4f:3f:0c:dd:19:5d:f0:b4:b9:c5:31:43:f4:5b:82:30:0a:
9b:9d:f1:e1:a4:cd:26:72:64:ee:00:e7:e7:59:62:1e:47:af:
63:8e:47:5a:cd:18:0d:05:17:a0:6f:1c:37:3a:08:57:10:28:
1f:6b:27:cc:31:5c:e3:d5:99:d5:3d:46:65:cb:c9:82:05:28:
e1:76:71:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:20:27 2025 by rpki-client