Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
File: Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft (raw, json)
Hash identifier: nVrVSQwkIo7Vk/3/aTArSS5RkEfjrf24MyNDFWNWPLE=
Subject key identifier: 67:F0:E1:A5:13:E0:C2:EA:43:C8:85:23:97:1D:94:4C:D2:71:26:2C
Authority key identifier: 43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD
Certificate issuer: /CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd
Certificate serial: 0197469E4E7375EC0DF6A59BB3787E29500A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
Manifest number: 058F
Signing time: Fri 06 Jun 2025 19:01:09 +0000
Manifest this update: Fri 06 Jun 2025 19:01:09 +0000
Manifest next update: Sat 07 Jun 2025 19:01:09 +0000
Files and hashes: 1: Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl (hash: WXK9Nhb9eMa3JKB/2OuwacHbnhC71k+rfxBHKrPo2Fg=)
2: VMxe0uGWpSo7MC38AuPyARm4ELw.roa (hash: tdke4bTnyhBCQowtj7hvI4mzPoyXG8N51jhjgyuQaj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:4e:73:75:ec:0d:f6:a5:9b:b3:78:7e:29:50:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd
Validity
Not Before: Jun 6 19:01:09 2025 GMT
Not After : Jun 7 19:01:09 2025 GMT
Subject: CN=67f0e1a513e0c2ea43c88523971d944cd271262c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:df:4a:01:b4:65:35:25:0d:9c:9e:a2:81:61:
07:7c:60:f6:f6:70:44:73:41:11:03:0b:e3:a0:98:
67:d8:b9:fc:1c:e8:27:94:74:6d:d2:f3:f4:96:e1:
0a:17:6e:d2:fa:9c:93:96:54:25:81:75:68:b1:cc:
9b:dd:cd:83:ee:85:4e:31:ff:06:59:e8:82:ef:2a:
ea:fa:f7:77:58:c2:b6:24:3b:43:a1:52:de:b4:59:
b2:b0:9e:0b:08:bb:44:04:be:9d:7d:04:ca:0f:6f:
bd:23:f4:26:f4:0c:1c:40:ee:ad:5a:8b:49:08:1e:
e0:ed:f9:29:7d:3a:81:c9:a5:79:b6:33:03:cf:5c:
cf:10:2d:f2:80:eb:21:36:6b:56:24:1f:95:f7:ae:
e1:75:99:f3:00:f5:7a:a5:9b:41:fa:0f:d5:70:98:
7d:86:69:ac:5e:d5:50:02:10:38:30:c0:21:54:37:
97:44:da:3b:80:90:21:44:1d:53:f9:90:c2:3e:98:
e5:1b:f8:ae:f5:73:10:2a:33:18:11:29:c7:61:31:
6a:38:70:e4:da:e9:ab:7f:7a:50:0f:46:29:e8:d1:
3d:9c:12:97:3f:c9:7e:bd:64:c0:a6:11:62:75:55:
a2:58:f3:bf:d9:1e:43:b4:9b:04:f6:bd:90:40:1f:
1e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F0:E1:A5:13:E0:C2:EA:43:C8:85:23:97:1D:94:4C:D2:71:26:2C
X509v3 Authority Key Identifier:
keyid:43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:79:7f:59:03:0a:91:dc:8c:39:3f:d6:75:ff:35:7c:34:5d:
01:dc:36:4c:25:56:87:81:a7:0b:24:e1:c7:6a:6d:1a:1e:4a:
e1:7f:81:af:15:1e:0f:2b:9f:6d:7e:b1:ee:0f:ce:f8:17:80:
8d:ca:de:0d:29:68:27:23:5e:74:86:bc:bb:30:66:42:55:b2:
02:1a:4e:7e:9a:12:44:2a:26:93:10:54:d6:46:76:92:97:7d:
96:b3:67:bf:57:a8:f2:59:d5:66:93:a6:14:1b:58:23:f9:50:
82:37:d1:c9:0d:64:9c:9e:dc:03:ab:d5:6b:2a:c7:ea:65:63:
db:72:ed:df:a4:66:82:c6:32:fe:5f:d9:46:82:d7:24:ba:09:
b2:9a:1f:f7:3a:6f:2a:64:f3:39:00:e8:a4:aa:01:25:43:14:
d9:7f:da:61:8f:39:78:7e:d3:8b:7b:d7:b5:90:af:bb:cb:bc:
8b:1b:66:55:87:10:eb:5b:7c:49:f8:6e:ba:ef:3d:d1:7f:c4:
bf:7b:04:34:4f:ed:4e:3a:a7:be:37:4a:64:5b:b7:4b:f7:8e:
b5:dc:f7:b7:29:be:c9:d8:90:15:00:66:ec:21:7d:d0:a9:48:
ec:a7:c5:13:c0:13:6c:45:8a:7e:f6:e1:ef:6d:1a:d6:f1:1a:
59:d8:5a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:14:49 2025 by rpki-client