Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: t7XJEITdCC6uPFXy0hxz+fT47tnf5MBZY9zm4kfKAWg=
Subject key identifier: 85:8D:00:AC:D9:7E:A2:E8:7F:EC:3D:A5:47:3C:E2:08:7B:C9:CA:70
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 0197651636AC1EB80EECE26D0387C932CE8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 158C
Signing time: Thu 12 Jun 2025 17:00:43 +0000
Manifest this update: Thu 12 Jun 2025 17:00:43 +0000
Manifest next update: Fri 13 Jun 2025 17:00:43 +0000
Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: 0pquX3Ql0ecI8Kj+tPfBT07I+BicWTK91Jp/XbppZQA=)
2: tBcUVtef6rZ0kSSzgGFNQ0aGmXk.roa (hash: axGcXX34atfoTeccVW4HcK4Aoj164U97BqMvxhWQBsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:65:16:36:ac:1e:b8:0e:ec:e2:6d:03:87:c9:32:ce:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Jun 12 17:00:43 2025 GMT
Not After : Jun 13 17:00:43 2025 GMT
Subject: CN=858d00acd97ea2e87fec3da5473ce2087bc9ca70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:57:00:ee:97:6b:6c:fa:c5:05:a4:76:57:1c:
3d:93:03:00:0b:61:0a:c9:61:17:fd:67:5b:aa:35:
30:d7:a9:17:20:0f:06:63:7b:fc:04:ad:28:f5:d6:
48:94:d3:54:ce:39:7b:57:c0:bc:a1:04:23:2d:bc:
85:89:4e:eb:40:f0:63:d9:ef:3c:3f:a6:57:32:8e:
35:76:9a:8d:be:9e:42:9f:22:4b:93:35:05:a6:f9:
da:1d:29:81:ec:dc:96:22:88:d8:ac:4e:81:20:e0:
16:ae:ff:f3:14:24:a6:33:c9:e1:e0:71:68:cc:fc:
91:a7:6c:e6:fe:8d:87:3c:6f:a8:bd:6d:cc:46:ea:
04:5f:06:d7:e4:bd:36:8b:9a:9b:25:2f:8c:24:6b:
6d:f4:f4:f5:3e:ed:c8:05:8e:dc:37:dc:89:cc:52:
be:13:5b:a2:21:fc:ce:9d:a1:0c:e0:25:b9:fb:fe:
25:64:dc:ad:b8:7e:d9:b0:ff:29:f8:52:3e:55:22:
69:21:a8:4f:24:0c:81:54:28:a7:f5:c4:7c:1c:98:
48:67:b0:5c:33:f0:b9:3e:4b:5a:71:2b:44:75:cc:
67:32:ca:2c:60:dd:9b:6c:25:a1:c6:fd:51:3e:7e:
f1:68:5e:51:25:28:45:36:5b:69:f6:67:7c:be:94:
07:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8D:00:AC:D9:7E:A2:E8:7F:EC:3D:A5:47:3C:E2:08:7B:C9:CA:70
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:9e:25:d9:a0:01:ee:32:7f:31:45:c9:28:db:d1:9a:a2:c8:
46:a5:1a:73:d4:13:d9:0e:32:ea:37:03:1d:11:bf:f1:9d:26:
d6:a8:0e:ed:1f:93:a9:1a:f7:ae:b9:af:d5:ae:e8:17:32:a0:
3b:72:02:39:cd:1b:78:ca:e4:5f:65:e8:1f:30:aa:3c:19:51:
39:52:f8:41:cc:da:f3:d8:d6:b2:7d:87:3d:5b:32:f0:5f:64:
0c:9e:62:82:e1:8d:f6:c6:25:d3:29:38:c1:27:32:09:57:fa:
e3:f1:71:df:99:f8:a8:6b:32:9c:54:40:32:43:1c:20:9a:f4:
01:b2:ec:e4:dd:fd:2d:8a:1f:02:b7:5d:fe:6c:ab:f0:59:84:
87:ab:56:d8:17:b6:36:12:7e:3b:94:39:89:b1:6c:1b:80:b4:
9d:3b:f8:cb:37:d5:49:7f:80:ba:19:1a:45:d4:df:5f:e3:f4:
11:76:fc:16:fb:20:66:32:e2:f9:fb:f4:48:30:76:e2:85:df:
79:a6:af:a2:a6:92:79:8e:cf:b4:22:76:7f:e3:2a:69:16:8f:
cd:a0:55:a4:01:bd:8f:87:77:fd:0f:ea:60:83:f8:ff:32:ba:
4e:a9:61:a3:a1:c5:bf:05:4b:70:e8:db:c4:c5:44:95:ab:ee:
b2:10:17:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:19:23 2025 by rpki-client