Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
File: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft (raw, json)
Hash identifier: oR+SZpKgCFV+c6TDoUjMa+zcdu/8CxrCCNuGALyIhko=
Subject key identifier: 8B:DC:5C:4B:EA:D7:9E:7D:5D:FD:21:79:59:DC:CD:A7:04:37:E1:49
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 01974DE9BF2E555BEC64823CA90B8B49E950
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
Manifest number: 074B
Signing time: Sun 08 Jun 2025 05:00:53 +0000
Manifest this update: Sun 08 Jun 2025 05:00:53 +0000
Manifest next update: Mon 09 Jun 2025 05:00:53 +0000
Files and hashes: 1: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl (hash: Cn20391qN4cKbPRA1Tw8sFdLa7jVqGW1ggUgHjL+X50=)
2: Z5KDHzf527U1qRAIHwgcHaWLd8Y.roa (hash: 2FLC0+uc30V7W0I0O5nyFk8rgVmBx+XIWSxS6WsMyJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:bf:2e:55:5b:ec:64:82:3c:a9:0b:8b:49:e9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Jun 8 05:00:53 2025 GMT
Not After : Jun 9 05:00:53 2025 GMT
Subject: CN=8bdc5c4bead79e7d5dfd217959dccda70437e149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:dd:37:37:fa:02:3e:15:f8:8a:93:cd:6f:f7:
ae:ce:34:cf:dc:fa:ce:04:0c:13:a6:4d:84:34:15:
c2:f5:49:1f:47:0c:6a:0b:59:f5:54:a2:fa:8e:35:
fa:22:79:c7:3c:6f:60:66:08:4a:5b:6b:6b:fa:51:
f3:e4:2b:cd:8c:a7:77:80:6f:5e:fa:e2:d0:2a:fb:
90:65:c8:2d:b1:89:2a:2b:b1:88:41:61:60:5f:96:
eb:0b:57:af:9f:c0:14:2f:27:e2:50:8a:b3:cb:f1:
94:15:c1:54:18:20:94:97:ec:95:7c:ec:5c:53:db:
1f:e0:59:ae:ab:75:0a:e2:73:d9:8a:1a:01:39:6e:
74:62:70:ac:ed:5a:3e:d1:27:bb:82:3a:fa:72:c1:
a9:d9:f1:b0:13:df:13:2d:25:f1:76:6e:17:8f:ab:
e2:e4:e1:d6:5a:8c:05:5a:a3:44:e2:39:2a:7c:21:
0f:1c:d4:95:75:82:99:c1:43:da:93:92:bd:fa:51:
e9:fc:fe:e6:d4:ab:0a:bd:24:7b:50:b9:52:af:bd:
dd:0a:22:41:d4:d1:bb:12:d6:09:b0:5c:e9:12:b2:
26:37:16:e9:06:5c:d6:26:a1:63:3f:7c:33:12:9e:
8e:f8:3d:99:3b:1d:d1:b8:de:08:04:42:1c:08:be:
ef:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DC:5C:4B:EA:D7:9E:7D:5D:FD:21:79:59:DC:CD:A7:04:37:E1:49
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:17:f1:aa:db:75:be:f0:31:67:e2:65:54:67:5b:0a:dc:96:
fa:b6:e1:45:13:a8:bf:7b:22:13:66:df:f3:9e:e9:81:eb:9f:
3a:a0:b4:fe:c1:04:f2:9b:34:fb:d3:ce:84:35:70:6e:fa:2b:
43:48:68:7f:ad:29:e9:3f:8e:85:35:34:43:2f:e7:79:09:b4:
3e:b3:63:55:ea:88:6b:2d:a9:28:d6:31:15:86:57:03:16:b4:
75:36:5f:79:f6:83:3c:ee:72:59:64:d2:04:21:98:db:9e:4e:
52:af:c8:c4:92:05:b2:29:28:3b:3b:a5:57:d5:5f:de:42:59:
38:0c:78:60:2d:b0:d4:75:62:41:cb:96:e2:43:97:dc:0f:76:
e6:e5:a9:69:b1:d1:51:d0:42:9d:ca:5b:61:4d:16:cb:41:fc:
f3:c6:59:a3:a8:03:7e:c0:39:02:24:e2:36:d1:1f:90:19:f1:
02:1f:c4:84:a1:74:b2:5b:32:e1:01:ac:5b:0d:b1:05:3e:d4:
6b:d4:11:f0:2c:96:15:7f:16:16:be:3e:54:08:fb:07:44:0e:
77:f7:8c:e3:7f:a2:15:94:ab:2b:8b:09:f7:c8:13:26:fe:49:
29:4d:34:6f:79:9e:94:ce:29:e4:c7:5d:3a:35:f5:a3:ef:0c:
95:4e:98:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:18:51 2025 by rpki-client