Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: hIkgDwg85DYL9OPVj8SaMe4oZow+t2U6dpluuQZ1bjo=
Subject key identifier: F3:D4:63:D9:BB:AE:8E:5D:6C:00:FF:C0:E7:09:D9:3D:2A:1F:38:22
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 019751218EDF397FFA9685B2332C238E6BCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 027B
Signing time: Sun 08 Jun 2025 20:00:43 +0000
Manifest this update: Sun 08 Jun 2025 20:00:43 +0000
Manifest next update: Mon 09 Jun 2025 20:00:43 +0000
Files and hashes: 1: Lh_NKL7D2mWFyhzHGugt5SgY5Oo.roa (hash: DjvsQWCGurUIzxMM5VASKrLIiSf6rVM8+QHojBeXG6I=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: 0D/6q3Gfr16rwaDKkSvfEN9iBIz9riVBeMFjDIBJybo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:8e:df:39:7f:fa:96:85:b2:33:2c:23:8e:6b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Jun 8 20:00:43 2025 GMT
Not After : Jun 9 20:00:43 2025 GMT
Subject: CN=f3d463d9bbae8e5d6c00ffc0e709d93d2a1f3822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:9c:08:b0:19:61:06:41:61:92:09:93:60:33:
b4:f5:74:eb:1f:47:9c:91:2d:99:4f:12:3b:6e:57:
f3:b7:df:bc:98:47:29:6c:cf:c1:2a:a8:40:90:da:
0b:03:79:ba:a9:92:bc:15:c0:eb:72:e5:a7:51:55:
e4:25:cb:bd:78:5c:4c:8e:61:5b:08:df:88:d0:75:
3c:f3:5c:43:7f:a3:02:e6:60:44:8a:16:68:cd:38:
70:61:81:f2:12:ef:f9:5e:64:a2:23:44:a5:ed:1b:
d3:a4:6d:cf:1d:02:53:a6:e0:71:ed:74:11:f2:b0:
e8:e0:b0:0c:bf:6b:2b:91:cd:3c:a0:5e:dd:12:7f:
82:38:a1:f3:2d:91:72:af:bf:99:77:05:26:4b:0e:
e1:f7:c5:60:37:0c:93:cb:7f:6c:4a:83:d5:6d:e1:
2b:25:e9:b8:5f:92:9a:99:5e:96:80:61:54:8e:ce:
1c:12:91:2c:65:f1:06:83:31:88:a6:3f:b5:ee:eb:
fd:bb:ec:46:81:6b:88:0a:6d:0d:65:d5:d9:b5:e7:
f2:73:2d:98:7d:47:36:7f:1d:01:15:0b:ea:7b:70:
03:95:01:16:e3:62:86:ea:ff:2e:c5:25:5f:a1:d5:
06:96:b4:1b:c2:47:45:29:fc:45:66:5c:4c:3e:2c:
b3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D4:63:D9:BB:AE:8E:5D:6C:00:FF:C0:E7:09:D9:3D:2A:1F:38:22
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:35:dd:57:65:16:0e:34:63:c8:93:1c:fe:1d:1b:90:40:3c:
a1:b8:88:49:96:ec:2c:15:b4:02:a2:99:5b:5e:85:90:e1:28:
34:c7:67:97:47:6d:f5:96:1e:95:46:98:86:b9:51:08:dd:12:
c4:86:74:65:04:ed:39:87:16:0c:f7:b8:0e:9b:89:68:fe:e7:
39:10:f8:99:ec:7a:9e:e1:10:d6:b6:ba:1f:e7:c4:05:03:ff:
19:61:41:0b:79:78:b8:58:5f:e2:4b:5a:0c:b3:38:f0:63:49:
27:4b:a0:27:90:c5:75:12:d3:5e:2c:a8:85:ff:35:9f:5a:8f:
03:c9:76:fd:08:27:b6:c1:10:77:fe:b6:b7:dc:cf:60:c8:1d:
b2:73:ac:2f:b0:f3:11:ac:94:3b:a6:ae:28:11:2e:4c:57:3c:
ab:bb:4e:de:75:3c:c8:73:1b:b0:19:9c:d7:c3:3b:19:36:f1:
c1:6a:24:8c:7e:c7:7b:86:dd:58:47:2c:9e:18:ac:17:89:91:
7f:19:86:01:35:d5:31:bf:6a:09:01:7f:9b:2a:df:4b:5e:45:
a3:4c:aa:38:4a:60:88:2d:3e:b0:fd:e0:84:1c:ae:2f:4c:2b:
62:17:91:1d:d3:04:ff:3c:6c:78:bf:86:4f:ba:9d:78:df:9a:
a5:e7:2e:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:20:44 2025 by rpki-client