Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
File: Q1w_GpeQPnlikqKsenjUGxwh24U.mft (raw, json)
Hash identifier: Em6h2BP14ac14R54Q+pH70B5YJlabShQP6FkhPZqQkk=
Subject key identifier: 26:07:B7:C8:C1:56:06:16:27:42:5B:23:C1:17:0C:F0:88:A3:67:C7
Authority key identifier: 43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
Certificate issuer: /CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Certificate serial: 01974BC47F6052FB2E303E977C1444B61CD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
Manifest number: 0EA6
Signing time: Sat 07 Jun 2025 19:00:58 +0000
Manifest this update: Sat 07 Jun 2025 19:00:58 +0000
Manifest next update: Sun 08 Jun 2025 19:00:58 +0000
Files and hashes: 1: IB6At0eMkw1jy1fdpcIgarxWKQ4.roa (hash: rOQggKg6yCYoTFHyozZzxf3+Jia2rL6WXiIW/P0HCuo=)
2: Q1w_GpeQPnlikqKsenjUGxwh24U.crl (hash: CQnSlmBXCrS5ATCGmfmDeYGjYsnOuo+IAC9ZhyWuL+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:7f:60:52:fb:2e:30:3e:97:7c:14:44:b6:1c:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Validity
Not Before: Jun 7 19:00:58 2025 GMT
Not After : Jun 8 19:00:58 2025 GMT
Subject: CN=2607b7c8c156061627425b23c1170cf088a367c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ae:32:5c:38:16:75:88:55:22:a0:e8:f4:eb:
08:8d:54:e4:db:dd:e7:2b:84:a2:40:41:3c:4e:e1:
75:a6:28:60:1a:1c:3a:bf:f8:50:a3:44:14:ab:94:
33:76:58:d8:22:bd:3b:3e:e2:14:93:c4:2f:37:be:
70:7f:39:5e:a6:83:6b:71:4f:14:44:06:a7:1f:93:
83:08:ca:d7:72:55:64:a7:fd:20:13:51:a5:b2:fd:
2c:56:ec:7b:1b:b3:f0:47:9f:44:9b:c6:1e:9f:a5:
09:6c:c1:4e:d6:8f:eb:38:6d:f9:9f:ed:92:ab:e2:
a7:c3:fe:95:ac:a6:62:97:00:d9:5f:8b:6d:71:ae:
5c:be:e4:ac:d6:8f:37:30:9f:b0:6f:91:a2:14:e7:
fa:8f:90:99:04:68:f5:78:56:13:b5:8c:9d:89:d9:
de:87:6e:56:c3:23:a7:df:2e:22:37:a4:35:95:c4:
ba:1b:07:d9:26:22:b2:af:a4:ea:56:54:ec:40:00:
e2:53:cc:90:d2:f9:1f:0e:94:fe:01:ff:40:47:72:
62:b5:3c:c3:cb:aa:aa:e2:44:eb:4f:ae:1e:0c:4a:
9f:2a:91:6a:ff:f6:3c:9e:72:a9:f3:9a:02:e7:1c:
a1:aa:41:08:17:b6:0c:11:b3:1b:a9:53:2a:f3:d0:
6f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:07:B7:C8:C1:56:06:16:27:42:5B:23:C1:17:0C:F0:88:A3:67:C7
X509v3 Authority Key Identifier:
keyid:43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:b6:5e:f6:43:e6:50:ce:0c:bb:29:c7:4b:9b:40:98:f8:77:
bd:a1:f5:1f:b9:b4:98:82:11:aa:93:c5:25:62:25:c3:30:4f:
da:ad:93:ae:f5:0a:19:e2:e6:25:d5:89:b4:25:5b:cb:c0:97:
12:d0:5e:3f:5c:e3:70:db:6c:f3:7f:da:08:a1:20:54:03:cd:
87:fa:52:e7:1b:15:81:6c:9f:28:53:b6:81:80:5e:2b:b7:54:
d0:9f:47:06:5f:55:23:67:15:71:89:79:df:53:27:e7:e2:57:
c3:03:a1:2b:10:2e:8b:61:94:1d:0c:ef:8a:75:68:20:98:1d:
1d:86:c7:70:34:4a:ea:8d:ae:13:31:56:19:ad:da:a3:9d:9f:
35:fe:b6:9a:71:02:68:09:27:9b:42:72:ff:cd:96:81:6f:2d:
62:81:9c:6c:7f:57:a3:6a:39:1f:79:a6:82:eb:a4:b2:c7:99:
e2:6f:79:97:20:f3:3f:bc:20:85:3e:90:9e:58:6d:0e:78:f5:
05:54:e7:cb:71:45:22:3f:81:0d:dd:e8:c7:28:04:a3:19:d3:
ef:53:30:76:c0:83:89:78:04:42:93:63:65:84:2b:5b:a9:ec:
48:a0:69:ce:be:e9:fa:60:06:6f:80:e7:6a:0f:28:8c:bc:fa:
6b:4f:9d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:22:46 2025 by rpki-client