Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
File: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft (raw, json)
Hash identifier: sF3vdXOrUpb7EXfHLsI3QUaTYEsJfrq2McMNQnTLYH8=
Subject key identifier: E7:DD:56:B9:CF:C8:43:AE:F9:7C:85:DC:21:EB:38:BA:75:39:C2:DE
Authority key identifier: 40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7
Certificate issuer: /CN=40d933e82474650c6aa3e9cbf0574d27286592e7
Certificate serial: 019753472AFFC4173A1A7921BC2FF81D2669
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
Manifest number: 158D
Signing time: Mon 09 Jun 2025 06:01:02 +0000
Manifest this update: Mon 09 Jun 2025 06:01:02 +0000
Manifest next update: Tue 10 Jun 2025 06:01:02 +0000
Files and hashes: 1: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl (hash: Wux9o7xOBMC9sRZEh5XCjj3IVfrV47q0cNJh7icrdYg=)
2: ULw_e6rY6wER2z1dGFmp31jEgd0.roa (hash: MY5YBBTJCozx9Da4ab7Dr9d2mlZWfjLXtBL3DR2CzxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:47:2a:ff:c4:17:3a:1a:79:21:bc:2f:f8:1d:26:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d933e82474650c6aa3e9cbf0574d27286592e7
Validity
Not Before: Jun 9 06:01:02 2025 GMT
Not After : Jun 10 06:01:02 2025 GMT
Subject: CN=e7dd56b9cfc843aef97c85dc21eb38ba7539c2de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:b2:47:bf:84:54:45:3a:a8:45:59:d9:bc:f4:
3d:76:58:b5:50:03:35:1b:40:f8:a6:2a:a8:01:e0:
f8:a7:13:97:36:33:01:0d:7f:3a:33:0e:f4:b7:7a:
36:0b:74:34:25:58:2a:a6:65:24:bf:72:92:ee:11:
5e:51:e6:b0:41:42:c5:cf:5f:dc:38:af:0d:05:a2:
21:2b:fd:68:1d:ef:f7:b8:39:77:40:61:28:27:ba:
1b:b1:2b:82:c0:81:37:32:fc:95:22:d4:5c:f3:fe:
5a:d4:d9:43:7f:97:54:bb:48:fc:1c:e2:a7:2e:eb:
21:7f:3f:72:31:4c:46:b6:9c:9c:6f:45:d1:86:d5:
75:8d:d6:6b:cc:fb:7a:ff:c2:a6:bd:ff:9a:7f:02:
00:49:a8:68:ea:03:47:17:50:5a:e3:d9:fb:03:39:
9d:9b:1a:11:9f:4b:5b:5d:2b:9d:a9:91:be:17:07:
4c:f4:ad:49:1c:5d:42:75:ea:f3:ad:82:a1:7d:12:
5a:48:0a:3a:40:ef:5d:19:92:fc:36:8a:73:53:03:
c8:95:aa:11:5c:ca:22:0f:dc:c6:1e:ab:7b:78:a3:
0a:d3:3a:3f:15:17:da:20:d8:ba:e3:c7:07:ba:3c:
15:db:11:04:45:4c:a5:37:6e:48:99:35:4c:39:22:
a1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:DD:56:B9:CF:C8:43:AE:F9:7C:85:DC:21:EB:38:BA:75:39:C2:DE
X509v3 Authority Key Identifier:
keyid:40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:9c:59:a2:74:d5:c6:0f:2a:36:5f:0f:17:7a:d2:e9:e0:dd:
f7:a8:bd:d3:7d:d5:aa:c0:26:a4:33:84:15:36:c2:53:2c:09:
2d:b1:cd:9c:17:03:5a:f1:1a:39:9d:82:d5:69:a6:66:97:ae:
c4:3e:96:55:3a:19:3c:af:b7:c7:33:fc:ad:1c:bd:c8:eb:87:
04:66:e6:7b:6c:11:20:39:6c:9b:e2:e5:00:47:a8:76:c9:0c:
46:82:90:76:39:31:dd:43:5a:7e:d6:6e:b8:a7:4f:ca:5c:4e:
c2:03:96:8f:8d:90:cd:8b:f6:24:4f:06:a2:f2:ac:7f:32:ff:
ec:02:40:1c:ef:10:6c:8d:b6:38:8d:42:b0:98:cc:c2:79:b0:
ff:7e:d7:cf:c5:5b:26:fa:e5:1c:69:f5:6c:30:dc:5c:8e:28:
47:72:f2:7f:e7:20:50:5f:db:62:90:51:cf:b0:bb:80:ca:b1:
79:2b:de:0c:6d:d6:19:e8:84:71:55:dd:46:39:6a:b4:af:04:
dc:cb:23:cb:98:7b:c1:fb:2f:06:4a:ee:ca:81:e6:ec:0d:59:
a6:de:67:f3:a6:c5:46:44:e5:3b:16:34:87:02:5c:fe:60:a8:
5f:4b:d1:4b:2c:75:71:0c:d3:1a:a2:a1:45:c5:a2:ca:c0:05:
64:ce:53:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 17:50:31 2025 by rpki-client