Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: jg62wdPDNdG0bkPd5OCE0dKh/2ma3PXv1lEC7qUycwY=
Subject key identifier: A1:1C:69:AE:6A:88:87:07:9E:CC:F3:AE:EE:D3:51:EC:13:1F:53:18
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 01976471D04BF75B9D06879719DD6E8F2A14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 151A
Signing time: Thu 12 Jun 2025 14:01:09 +0000
Manifest this update: Thu 12 Jun 2025 14:01:09 +0000
Manifest next update: Fri 13 Jun 2025 14:01:09 +0000
Files and hashes: 1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: XpZLpdlTc+JES7h/jEm5Jdur9qeOUIYZEb0qDV3MepA=)
2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:71:d0:4b:f7:5b:9d:06:87:97:19:dd:6e:8f:2a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Jun 12 14:01:09 2025 GMT
Not After : Jun 13 14:01:09 2025 GMT
Subject: CN=a11c69ae6a8887079eccf3aeeed351ec131f5318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3f:05:44:fb:9a:95:03:a6:f4:31:26:14:4b:
5a:34:d1:c3:5a:db:a1:fd:a3:1c:9d:99:0e:c1:2d:
ba:ad:52:3b:94:a9:a0:ae:ed:cf:e8:fe:6c:ce:ca:
40:27:b5:8f:66:81:ff:9f:7f:a6:e4:e3:07:07:58:
3a:f3:23:68:57:97:15:63:8d:33:f8:d7:58:08:d1:
0f:0c:5a:30:3a:cc:fd:cf:aa:da:7e:4c:de:77:64:
38:54:69:eb:4c:94:ea:5f:ae:ef:82:b2:88:05:f2:
e2:4b:e7:8d:0f:5f:44:91:01:d9:99:14:cc:e5:d8:
4a:ed:a6:35:30:29:47:11:70:d2:45:7c:bf:39:34:
9c:63:cb:e2:f1:28:59:82:10:de:8f:67:0a:bb:a3:
e1:17:91:37:f3:6e:93:cf:90:d5:00:d3:2f:6d:4f:
e7:09:2e:8b:30:2e:69:3d:e4:d5:a1:00:7b:6d:d7:
a9:da:a6:91:5a:53:cb:9e:9c:8c:0b:44:a2:c0:bc:
fd:40:a0:4c:b1:da:1e:de:4c:e6:53:c3:12:0a:e2:
e8:7a:e3:73:7a:b1:26:a5:d1:61:7f:d8:3f:9f:3d:
ce:b8:fb:62:c5:5c:3a:b5:17:c2:bd:cd:6c:49:57:
3c:32:23:90:6c:d8:04:74:a5:03:42:44:77:87:6e:
ff:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:1C:69:AE:6A:88:87:07:9E:CC:F3:AE:EE:D3:51:EC:13:1F:53:18
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:68:96:45:22:15:36:f4:8d:c0:3c:89:86:aa:c4:7e:a0:e8:
15:2a:91:97:84:b6:26:75:ce:7b:37:a2:33:84:d9:99:4c:d5:
26:c8:b6:af:5e:4f:f6:6b:6b:73:fb:75:92:73:e7:5d:9f:4c:
c0:13:a7:ca:85:97:03:43:03:11:f5:94:b6:ff:25:1e:98:30:
81:4d:68:16:9f:28:76:a0:dd:37:32:46:b9:e4:fa:e0:23:51:
49:5b:d0:03:42:54:e7:35:59:23:53:6a:8f:0f:0d:85:f4:74:
52:ff:18:c5:c5:43:e8:4c:4b:29:fb:ed:b3:33:66:86:cf:2a:
a9:97:4a:c6:e0:48:5e:49:cb:3b:59:52:3f:21:2d:35:54:a5:
7c:37:0d:4c:26:d5:e3:02:35:df:bd:f9:af:39:05:55:9b:ad:
ed:8c:0f:df:16:df:c5:0d:26:99:0a:f4:de:77:59:6b:fd:50:
07:7b:99:7f:97:fc:57:0a:2a:9f:d1:1f:2c:03:06:e6:5f:61:
32:27:0b:2c:77:ed:f4:f7:e3:b9:b7:32:6f:5d:93:3e:35:5a:
6f:52:ba:93:35:e6:53:d6:8d:db:ee:29:96:f0:c8:57:c1:93:
f9:9a:79:b9:1d:58:c6:6d:ac:1c:65:db:93:27:25:63:07:e8:
bd:ef:6b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:04:32 2025 by rpki-client