Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: gc1HZV9Y3rblEzpi1ZSJ8IlQjXk1cA2ouey1vRmKfnY=
Subject key identifier: 37:DD:76:73:D0:78:FD:00:B3:CF:1D:4B:4C:A7:20:1A:E6:07:A2:D0
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 019758DABCC2A4E669B0B2034D07AF201E2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 1514
Signing time: Tue 10 Jun 2025 08:00:19 +0000
Manifest this update: Tue 10 Jun 2025 08:00:19 +0000
Manifest next update: Wed 11 Jun 2025 08:00:19 +0000
Files and hashes: 1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: bKcndDmTT4v2380faZCZXtFuCELjflkqS061HEm0eEw=)
2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:da:bc:c2:a4:e6:69:b0:b2:03:4d:07:af:20:1e:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Jun 10 08:00:19 2025 GMT
Not After : Jun 11 08:00:19 2025 GMT
Subject: CN=37dd7673d078fd00b3cf1d4b4ca7201ae607a2d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:66:11:0d:eb:f2:14:c1:b3:f5:be:c1:ea:c3:
5b:76:1c:98:ee:b7:b0:f9:e2:79:d5:2e:85:0d:22:
88:ae:af:b8:d5:a0:d1:54:de:9b:9a:18:75:72:40:
56:fc:d7:00:6d:5b:f2:47:9b:b7:a0:0e:56:92:f1:
b7:d4:e7:46:1c:77:6f:be:75:d0:53:2d:50:c9:30:
0f:d2:be:a5:68:40:a1:01:bd:94:28:e6:ce:a6:27:
80:16:6f:9f:be:e5:73:d4:36:8a:32:2b:f6:5c:6e:
65:48:9f:83:97:48:28:58:3e:72:2f:4a:ce:44:00:
e2:56:69:a2:0f:60:6b:48:3b:56:39:a1:f4:5d:20:
dc:34:05:d1:bf:88:6a:d3:12:db:b3:de:4a:75:bc:
17:7c:28:db:b1:ae:90:96:37:c9:0d:df:c9:da:a7:
6a:84:b9:e7:ff:f9:4f:81:6d:54:96:71:bb:39:d6:
ef:fe:b5:ac:6f:e8:c1:5b:0c:f1:0a:76:9c:db:3c:
cb:ce:b8:22:6d:6c:3d:5b:10:4a:03:9a:ff:5a:fb:
d0:c0:27:b5:c9:a1:cb:96:fb:b7:a8:fb:73:8f:f4:
0f:46:37:c0:f4:37:1e:ff:ef:56:74:2b:52:0c:aa:
22:26:ac:c3:98:6b:9e:55:06:58:84:b7:96:01:a0:
f6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DD:76:73:D0:78:FD:00:B3:CF:1D:4B:4C:A7:20:1A:E6:07:A2:D0
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:2d:b2:d5:52:c7:28:1d:de:0a:a8:4e:65:6d:ed:1d:33:8b:
d4:c4:99:cc:2e:dd:f0:7a:7a:99:ee:a4:ae:af:8b:2e:0e:b0:
44:0f:32:b8:2f:f6:b3:a3:04:e5:24:ab:0a:a6:43:c0:1f:52:
bf:e1:2b:b3:3d:f5:6d:ae:89:eb:1f:53:c0:c6:78:8f:50:05:
ac:2d:d8:e9:f4:ba:f5:14:7c:a2:9c:1b:09:dd:a1:51:75:f6:
51:43:bb:66:ab:01:4c:b1:05:85:6b:33:13:35:82:e3:61:c3:
97:40:95:32:ed:f4:5f:59:c0:58:9a:1d:2e:06:66:f8:e8:d3:
ab:e9:18:89:28:b7:ae:e7:bc:e7:72:f6:9c:02:55:21:52:89:
7a:66:95:e3:13:6d:4f:a6:05:19:fd:15:5a:99:6d:2a:9d:2c:
95:25:92:77:11:42:9c:6e:c5:bd:e4:56:9f:70:03:1b:3a:c4:
78:86:1b:a8:13:0b:eb:ba:ad:ca:8e:96:a6:9e:7b:08:06:8e:
ae:39:ee:d7:aa:99:ab:25:16:8b:31:2c:01:4e:bc:b3:0d:03:
53:88:65:e7:8d:ee:39:12:02:fe:10:86:fc:e8:ce:e2:db:1c:
ea:05:9e:5f:e7:ec:4e:0a:50:f0:eb:9a:81:f6:ba:95:fa:44:
3b:19:2c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 12:23:23 2025 by rpki-client