Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
File: QeODxYB-mzL1dtCluO53RMrPtxc.mft (raw, json)
Hash identifier: A4zpRPCanGTS5IuodjeGy4SJXFZk+34JLe9qz9Wjgos=
Subject key identifier: B1:70:12:2C:BC:0E:CA:32:4E:B1:EF:30:F8:96:1A:98:B1:10:A8:A1
Authority key identifier: 41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17
Certificate issuer: /CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717
Certificate serial: 0197398707BE028DB5EED84BEFC278BC7ABC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
Manifest number: 0443
Signing time: Wed 04 Jun 2025 06:00:39 +0000
Manifest this update: Wed 04 Jun 2025 06:00:39 +0000
Manifest next update: Thu 05 Jun 2025 06:00:39 +0000
Files and hashes: 1: 03enaQCGw_eqXqIAwZyG-7zrfRA.roa (hash: YhNG/6VofCuK7pQjtVrVurKsTSoyBGAKru+JjLAKpoo=)
2: DUyUlX3xTZHlVnLSKpECvt4NkYU.roa (hash: ZP6huwEf1pdyFLtyz+3lIcMnm1rz3bsZAcR3RQdU+KU=)
3: QeODxYB-mzL1dtCluO53RMrPtxc.crl (hash: c5vaxnncKr0yezUBlyaP7TNxIL3xxnABDtLdogUWPc4=)
4: bB3G3EZqBAqArfU6X5zzc1opBME.roa (hash: gPeixOKastqxOj7HlHBp8UwchVAjS4fsBzFCexJl5H8=)
5: lKGyjDcky_IoNZN6qvlaMVTqM58.roa (hash: IiBQAy+zcf79xQNY8RIQMsijGISjsQrLjaoVvIJA9t4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:39:87:07:be:02:8d:b5:ee:d8:4b:ef:c2:78:bc:7a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717
Validity
Not Before: Jun 4 06:00:39 2025 GMT
Not After : Jun 5 06:00:39 2025 GMT
Subject: CN=b170122cbc0eca324eb1ef30f8961a98b110a8a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bb:cb:89:99:d6:0b:26:02:1d:6d:6d:d1:47:
26:60:2c:c4:a4:13:c0:57:e9:fe:1d:97:b2:bc:fa:
98:2f:fb:5f:56:b6:82:80:3e:21:f6:eb:b9:f3:13:
ce:0f:df:af:84:7c:d0:79:b0:66:b1:3c:e7:0e:1d:
d2:31:d4:37:39:2a:f2:6d:b4:ff:67:d3:27:d7:2b:
55:78:37:88:0b:be:79:6d:ca:26:1b:13:50:ae:90:
1c:22:01:80:af:ad:e2:41:88:9f:e8:10:67:44:9f:
75:58:15:4e:2f:53:63:70:e6:87:2d:2c:71:86:de:
33:47:25:ba:a1:7c:64:be:9c:82:ed:15:aa:94:e0:
a3:c1:0b:1f:5f:66:14:85:07:f7:27:ba:7b:43:e7:
91:8f:af:ac:cd:28:34:3c:87:6c:b5:1e:1f:13:ef:
a4:54:3e:da:57:65:c0:d4:29:de:b7:79:b3:70:40:
68:8f:ee:40:63:2b:ce:5a:a5:cf:10:50:bb:53:82:
17:28:c7:d8:55:b9:c3:3a:93:68:52:14:8d:6e:b8:
c7:7c:41:55:b9:a1:39:e9:b9:5c:68:70:d1:90:e2:
42:7d:79:60:a3:a0:22:ae:8f:e1:f6:42:0d:da:46:
b1:3b:65:88:75:29:b9:2e:44:53:42:54:31:4a:0d:
cf:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:70:12:2C:BC:0E:CA:32:4E:B1:EF:30:F8:96:1A:98:B1:10:A8:A1
X509v3 Authority Key Identifier:
keyid:41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:dd:e0:61:ea:99:b9:45:75:84:57:3b:73:32:9b:7a:27:7c:
2d:b1:44:42:8a:f4:6e:b1:f3:6d:43:7e:3d:80:69:87:a6:24:
a9:35:fe:fc:98:9b:d7:fd:4f:84:f8:9c:7a:e7:d8:a2:04:c7:
42:26:38:c1:5c:16:71:c6:09:91:fb:a4:9e:c7:34:e7:1f:89:
21:7d:26:b7:10:54:6d:1b:03:13:af:89:b9:20:12:d6:23:48:
25:70:7e:a2:99:5c:bd:23:49:ee:b6:e5:34:86:16:45:42:a6:
3a:34:55:fe:25:27:9a:19:4e:e1:75:2d:07:4b:8d:5a:7d:6b:
d5:6a:60:5b:a2:b3:9f:72:c3:b4:cc:0d:53:59:1d:76:2c:a8:
2b:b3:5c:df:8b:51:97:de:15:1e:0e:f0:d8:23:7f:cb:60:2d:
27:b5:82:97:60:04:d6:29:db:9c:f2:ff:0d:50:9a:d2:49:64:
92:f3:75:52:03:37:7d:cd:70:7b:91:68:5e:66:49:15:ba:54:
ef:be:64:22:ed:df:01:4a:9f:21:a3:86:01:e7:db:7e:12:89:
46:00:ad:6b:bb:80:9b:5a:e2:01:c2:f2:a6:d7:07:f4:c0:af:
15:ea:21:5a:bf:03:a9:67:76:7a:c2:4e:ac:aa:35:f2:9b:5a:
f0:4f:83:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 11:40:22 2025 by rpki-client