Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json)
Hash identifier: GzvmzUfhONRA+G2XaMDGpfTrB7A3amGWL4rgbel1gqE=
Subject key identifier: DD:3C:A3:19:E8:28:A1:F6:99:A8:B6:DB:41:8B:64:F8:35:63:7A:56
Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Certificate serial: 019749D5A210DE142333872F4393055B1311
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
Manifest number: 12A8
Signing time: Sat 07 Jun 2025 10:00:26 +0000
Manifest this update: Sat 07 Jun 2025 10:00:26 +0000
Manifest next update: Sun 08 Jun 2025 10:00:26 +0000
Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: 9+Vqo/tGn5Pbc/a+bK9DGnTEZ4wPcJrPhZfdEAF58gw=)
2: rz-RdiM9IWT3IB5wGzMs1ZBSN0Y.roa (hash: o6qyEqxDzSGkgBN+te6/IqxauC6oKPYhjWorkJVF6Cw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:a2:10:de:14:23:33:87:2f:43:93:05:5b:13:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Validity
Not Before: Jun 7 10:00:26 2025 GMT
Not After : Jun 8 10:00:26 2025 GMT
Subject: CN=dd3ca319e828a1f699a8b6db418b64f835637a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:80:68:45:72:ac:61:21:d9:97:c9:fb:16:fb:
5a:e1:30:5f:d9:53:03:32:6a:f0:1b:ee:4f:d0:32:
71:cf:17:d1:4f:a3:d6:a0:e2:db:c6:c3:15:73:cd:
6a:51:6c:c3:d0:99:d2:61:e5:54:01:8c:a2:f0:07:
4f:16:28:da:8f:44:5f:c4:70:e0:8b:0f:6c:f6:85:
02:e8:8d:a0:e8:d0:29:58:9c:f6:c6:24:38:ff:73:
0b:04:ee:f7:b2:c1:9b:72:4c:3e:0d:b7:e8:0e:a8:
53:9f:48:53:95:2d:35:af:b8:e6:64:16:94:80:14:
eb:b8:ca:36:8a:b3:28:ad:da:f9:a1:d9:06:f7:a4:
48:0f:ac:26:5f:3f:b6:8d:34:12:dc:df:1c:cb:84:
6d:e2:3f:19:35:0d:e2:3d:56:6d:cf:d1:bd:b2:9d:
2b:f8:96:15:ee:89:03:ef:cf:44:6f:37:19:00:b8:
a3:23:82:4d:08:00:54:c4:e8:a4:44:59:3c:f5:42:
37:0a:57:c0:e4:b7:66:43:94:ac:b4:26:ea:e4:5b:
5e:fb:2e:5a:19:dc:a4:2b:3e:55:03:1f:e2:11:77:
4a:4d:a5:3e:a6:23:59:36:d3:20:97:d5:b9:e8:fa:
a7:5f:56:93:17:8b:a2:45:db:82:d0:3f:fb:1c:be:
e1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:3C:A3:19:E8:28:A1:F6:99:A8:B6:DB:41:8B:64:F8:35:63:7A:56
X509v3 Authority Key Identifier:
keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:29:ad:ca:19:32:06:ce:6d:53:8e:98:84:3d:aa:9b:86:74:
d9:3f:4f:bd:87:e3:cf:34:df:f7:81:dc:10:94:1a:2d:06:5f:
5d:a5:9b:5b:fa:30:c8:2e:18:c7:3a:80:ba:81:1f:38:3d:ea:
e1:58:7f:62:76:1d:b1:fd:cd:0f:0d:c7:54:e8:92:c6:5d:42:
69:3f:f7:c6:bb:53:a2:c9:4e:5a:da:46:ca:30:45:c6:84:ce:
d0:ee:58:23:35:9d:05:84:59:ab:d3:d4:33:51:a7:ab:be:4d:
b7:34:46:c5:34:36:58:31:e2:00:9c:79:b8:bd:99:4c:9f:1d:
df:5d:70:34:5a:bf:52:3f:13:06:4a:80:80:0f:c2:ea:81:18:
51:6f:f3:4c:f6:e0:ab:80:9b:b7:fb:ad:4b:ff:7c:48:7e:43:
e0:38:90:c4:6c:3a:22:e8:3a:ee:e4:dc:bf:0a:89:9d:29:d1:
77:53:38:99:d1:06:cb:03:c3:78:68:8d:f0:db:a4:bf:ac:46:
a7:ab:b0:7e:bd:a4:70:38:84:00:75:7a:78:ea:13:14:d9:a7:
9e:01:12:19:45:9d:e0:a1:4f:6e:f7:5b:bf:e1:5a:05:a0:91:
1c:11:1c:b8:4b:ec:a6:bc:15:76:4d:8f:f2:1a:bc:15:03:f1:
ed:b1:63:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:21:02 2025 by rpki-client