Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json)
Hash identifier: d5WtOooO2Krp/JmA6aXJcOOlJRqnWeCTy8IGUlFy11U=
Subject key identifier: 6D:8A:87:B2:1F:EF:FB:A0:C8:08:E9:0A:2E:25:13:94:86:75:D1:0B
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 0197488BE84078CB41728AB517C588176A03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 04:00:17 +0000
Manifest this update: Sat 07 Jun 2025 04:00:17 +0000
Manifest next update: Sun 08 Jun 2025 04:00:17 +0000
Files and hashes: 1: JDPCHXAUbfBXZ-JAE6cFE-tGXMI.roa (hash: bOxTgT+7J9XF4HocPumdm4M3ak6meIWnJq5cg5Hpmfs=)
2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: RzF6bHkzZV3rbvpbBhWcVBcjiGh3fGOl+w/QgFJeDmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8b:e8:40:78:cb:41:72:8a:b5:17:c5:88:17:6a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Jun 7 04:00:17 2025 GMT
Not After : Jun 8 04:00:17 2025 GMT
Subject: CN=6d8a87b21feffba0c808e90a2e2513948675d10b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9e:b9:69:c7:c4:5f:d6:80:64:29:2f:bb:73:
4d:60:b8:6f:59:d8:14:62:3c:46:20:7d:35:78:df:
b1:19:df:25:0f:14:89:cd:cd:60:aa:1a:bd:95:76:
34:2e:d7:15:62:e7:03:70:e0:a1:25:9f:75:f3:7b:
eb:ec:69:54:3f:8a:8f:bb:f9:72:7c:e8:a6:c7:ba:
4e:13:1e:93:06:78:3c:85:33:13:9a:f0:eb:b4:4e:
86:23:26:43:3a:6e:0d:85:64:ed:42:60:4a:00:f6:
9d:10:6e:48:a8:d9:e3:d1:bb:76:e8:83:99:6d:11:
f3:9b:57:70:a1:e4:50:4f:6b:f9:a5:55:fe:8f:9b:
e0:db:ef:87:8a:16:9d:fa:2b:23:ec:e1:00:ff:75:
53:24:52:c1:15:66:82:92:df:b1:bb:eb:f1:94:dc:
a8:52:ee:75:d6:0b:1e:6b:b6:55:1a:50:7c:f5:99:
44:c3:6c:33:df:d3:0b:a8:30:ea:4b:e2:c1:3c:67:
5c:25:5d:4b:e0:b6:af:d1:cb:c0:81:c4:94:e2:cf:
f4:99:cb:12:c7:6b:f3:65:07:f9:4f:c2:01:8b:d5:
08:b9:2f:f4:59:28:50:9b:c4:12:cf:3d:ca:94:7a:
e6:b4:c4:12:a4:7b:23:dc:69:4d:d7:da:4a:f8:b5:
77:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:8A:87:B2:1F:EF:FB:A0:C8:08:E9:0A:2E:25:13:94:86:75:D1:0B
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:78:17:ec:48:db:78:cc:b1:8f:f0:01:e1:02:07:b4:3a:f9:
37:26:b8:a7:92:25:bf:1d:d4:45:72:3c:30:93:ff:81:25:6d:
1f:e4:e8:47:a4:6b:3b:44:33:d1:d6:6c:5a:c0:93:c0:ae:53:
b1:c0:1f:65:d0:98:18:db:a7:05:40:06:a1:5c:95:9d:68:3e:
24:8b:d1:f0:68:44:dd:5a:89:c1:73:c0:3f:6e:d1:74:11:e2:
29:2e:88:86:6b:a7:f0:ad:f9:e0:09:86:24:a6:8c:57:13:47:
86:fa:b8:13:e8:c0:a9:a2:0d:91:1c:34:97:e5:97:ec:18:70:
09:30:7a:66:71:3a:f3:3d:f7:69:0b:c7:be:6d:94:3d:f7:31:
43:5b:e3:9b:6f:08:8c:1a:a3:02:ea:37:04:e5:58:d3:8d:bc:
44:3c:71:35:ab:8b:90:24:b6:a4:b9:1a:45:f5:01:3b:39:2d:
4b:37:7e:33:25:cb:df:78:0c:ca:53:27:b1:39:12:86:d5:3e:
8c:a8:12:6f:04:65:f6:cb:a1:68:ee:86:8e:d7:46:ec:76:7b:
6e:1e:66:2b:81:c2:29:30:3d:52:c9:37:7a:cd:b7:da:19:e6:
35:19:93:e9:8b:45:15:39:8d:15:a3:3b:36:d3:36:04:36:c5:
c7:1b:23:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:57:34 2025 by rpki-client