Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: w5KuT9SF9RQ3k+PZRNPn9tyaFf+VTHkeeAfw7qBrtRE=
Subject key identifier: 83:39:8E:4A:0E:FF:CC:1F:5D:51:94:56:FE:7C:B8:AA:28:59:D3:99
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 019753B473BE538BE39C26B35C9038DE958E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 1583
Signing time: Mon 09 Jun 2025 08:00:24 +0000
Manifest this update: Mon 09 Jun 2025 08:00:24 +0000
Manifest next update: Tue 10 Jun 2025 08:00:24 +0000
Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: VnMZYctVsgTWHpVDcIh6/AjLjH6hV8XYMFutRBFFOIg=)
2: tBcUVtef6rZ0kSSzgGFNQ0aGmXk.roa (hash: axGcXX34atfoTeccVW4HcK4Aoj164U97BqMvxhWQBsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:b4:73:be:53:8b:e3:9c:26:b3:5c:90:38:de:95:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Jun 9 08:00:24 2025 GMT
Not After : Jun 10 08:00:24 2025 GMT
Subject: CN=83398e4a0effcc1f5d519456fe7cb8aa2859d399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:32:11:a9:99:c0:1f:25:a0:5b:79:48:84:79:
18:1f:a4:82:42:0f:08:49:b5:91:56:98:d8:37:d8:
be:15:5d:e2:cc:96:56:83:e2:f2:52:d2:bc:d9:dc:
26:30:4b:c8:70:22:13:43:69:68:40:6a:ed:6b:fc:
7a:c2:29:f5:ae:49:79:52:ea:a0:28:cf:6c:be:2f:
44:95:ae:fb:2a:33:a2:57:f5:27:18:96:64:c2:a2:
90:bd:bc:d6:69:cf:0b:37:aa:4f:66:6a:68:fd:44:
6c:bf:00:91:5f:c2:2d:8e:82:f7:18:cc:da:3c:df:
b4:eb:c8:df:18:a9:28:90:da:e4:f8:1b:44:4c:2a:
c8:cd:7e:59:ad:fd:a2:56:fd:8b:dd:e2:7f:40:c8:
b2:71:a3:d1:91:1d:56:1f:0c:19:8d:94:5f:0f:5a:
a5:41:b4:a6:2d:3b:31:13:90:10:b4:f3:07:dd:67:
8e:e4:de:d9:af:d4:fe:61:6f:10:33:55:fb:6d:91:
83:18:b1:26:e4:26:39:e0:1c:87:f4:87:25:8f:9b:
c7:83:d1:6d:2e:83:5d:d8:db:ec:38:57:54:ef:a5:
e0:d2:2b:e7:1e:23:14:b0:fb:d7:0a:db:5b:bf:58:
53:40:9c:bb:43:92:82:6c:ce:24:2c:27:89:18:b3:
1d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:39:8E:4A:0E:FF:CC:1F:5D:51:94:56:FE:7C:B8:AA:28:59:D3:99
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:71:9e:e7:d8:fe:c2:9b:e4:63:9f:4d:26:62:bf:d9:c7:f9:
55:7a:03:40:a3:f8:d0:0e:90:16:33:33:a1:ff:d4:42:e0:ea:
48:b4:22:af:c9:cc:5d:30:78:95:81:70:e8:7e:60:01:24:42:
7a:98:21:b7:ce:20:d9:cb:3a:51:ad:27:46:42:04:93:2f:55:
3b:50:a4:6a:9a:b8:fc:91:f2:e3:5a:a7:06:c6:c2:21:ac:26:
62:01:1d:90:0b:9a:9d:0c:f4:2e:3d:f6:36:4f:2f:d9:06:15:
48:0c:1d:58:10:85:a6:cf:63:6d:a2:2f:03:f5:d7:16:9b:a0:
02:ba:5f:36:de:be:77:5b:2b:49:cc:d9:3b:a1:46:cd:20:42:
57:c0:29:3a:f3:0f:58:fe:99:32:84:3b:28:6d:a5:1f:fd:09:
25:bb:a9:b8:b7:8b:18:e3:67:1e:ad:5f:42:c6:49:7e:6c:c6:
ae:ca:d1:1d:31:7a:3a:0c:2d:9f:5b:95:87:4b:4f:f5:fb:8c:
47:70:f5:89:28:28:a6:d3:3e:e6:5c:40:18:3a:fa:13:06:a2:
3d:18:0d:d9:6d:ac:77:65:59:55:57:15:34:03:32:3b:62:72:
c0:6f:6f:d8:b4:19:fb:c0:97:a0:cf:a8:01:85:74:be:f7:e6:
14:64:e4:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:43:46 2025 by rpki-client