Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
File: Q34DDURmGkwgHroD3kUrBLjn2eU.mft (raw, json)
Hash identifier: m7souNqzUP5Ie1fPVwRpLahvh/p6CqErJ1a7+jTa+aM=
Subject key identifier: 13:3F:6E:01:3F:F3:93:B2:4F:33:6B:F9:DF:F2:F8:0A:E4:00:67:C3
Authority key identifier: 43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
Certificate issuer: /CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Certificate serial: 01974FD80BF58886CD148E5F60E7F6574394
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
Manifest number: 14C5
Signing time: Sun 08 Jun 2025 14:00:48 +0000
Manifest this update: Sun 08 Jun 2025 14:00:48 +0000
Manifest next update: Mon 09 Jun 2025 14:00:48 +0000
Files and hashes: 1: Q34DDURmGkwgHroD3kUrBLjn2eU.crl (hash: EkQXCWkKHlCA+/YjVQSb38EV8y3ugCy3rPLzEskEvzY=)
2: aTnDDG7156iJH1B7VtXl45Lxz4c.roa (hash: uqmE7u3SyyyiP9Dvg82dGi927wLVOacs75i5/YZ4Qho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d8:0b:f5:88:86:cd:14:8e:5f:60:e7:f6:57:43:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Validity
Not Before: Jun 8 14:00:48 2025 GMT
Not After : Jun 9 14:00:48 2025 GMT
Subject: CN=133f6e013ff393b24f336bf9dff2f80ae40067c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e9:05:db:dc:37:f7:9c:67:ab:84:99:b5:bb:
5b:c2:78:a2:0e:bf:41:91:2d:f2:fc:0a:95:f3:49:
d3:d1:b8:61:d5:9e:a2:78:f5:81:2f:25:4b:a2:25:
b7:b8:36:9e:35:94:e5:0e:16:1c:c7:81:57:41:c1:
1a:f9:a3:31:3a:90:d7:59:48:5b:f9:95:80:53:cb:
e9:d9:5a:44:4c:da:59:9e:93:a2:60:b0:09:2e:ea:
3e:91:bd:58:7d:ed:98:77:df:93:cf:fa:fa:bd:5b:
54:c5:1f:8d:5b:20:61:86:48:af:00:5e:69:47:9e:
63:cf:d6:e0:b1:e4:94:12:60:c4:a9:02:ba:75:3f:
a2:c7:ab:8f:9d:10:2d:85:8a:af:3e:c4:03:d6:11:
ec:7e:f5:e0:8d:aa:4c:d5:6b:12:23:dd:67:19:c2:
89:14:fb:22:3c:06:57:b9:30:63:46:c4:d9:5d:e6:
dc:2b:57:d0:cb:32:58:93:2e:e6:0a:d1:ac:7e:78:
61:04:fb:0e:11:67:97:da:31:41:8d:e6:e1:a3:7a:
2f:fe:99:83:88:41:be:c6:94:89:90:13:a9:d1:0b:
6e:dd:5c:fe:f5:76:f0:31:2a:2f:f4:92:11:78:d4:
8f:06:88:61:5c:78:e8:99:20:90:75:15:24:a9:45:
66:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3F:6E:01:3F:F3:93:B2:4F:33:6B:F9:DF:F2:F8:0A:E4:00:67:C3
X509v3 Authority Key Identifier:
keyid:43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:b6:dc:bd:ef:7f:b0:b0:9d:8d:38:54:6d:53:6d:c6:0a:db:
9f:87:46:90:c7:72:55:96:56:73:c6:e7:1a:21:8c:c0:93:06:
18:e6:7e:59:75:7f:0f:3a:af:6d:54:75:d0:c6:28:3d:67:a1:
a1:c4:dd:33:97:c8:0c:4f:0c:b8:70:70:48:54:e3:f9:b2:35:
ab:85:eb:58:75:13:99:12:a6:1d:c1:dd:05:4d:75:c9:ff:00:
85:0b:0a:72:9d:cf:8a:ea:3f:00:fd:40:66:eb:7a:fe:dc:10:
cf:8b:0d:65:95:ee:ad:d9:77:60:b8:8c:0b:55:67:2a:b3:75:
fd:fc:29:14:70:df:9a:d3:35:e9:04:fd:4f:95:51:7f:ad:f3:
92:1f:e5:95:d2:08:e7:76:5a:0e:27:19:f4:4f:fe:10:d3:9d:
86:8c:68:f9:da:9c:c6:cb:5f:98:27:a8:44:0f:9e:bc:05:bb:
9e:96:b0:e1:c0:3c:2f:e6:40:55:96:85:00:20:75:6c:5c:11:
4a:9b:b1:e5:c6:54:9c:64:dc:e7:bb:59:ab:b3:28:ad:48:98:
ba:37:ef:a5:d7:14:b0:ba:4b:6e:9a:47:90:f1:b6:2c:7b:dd:
2e:3e:92:da:68:96:e1:38:5b:4c:cb:aa:93:35:44:6a:0f:6b:
32:6e:d5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 22:06:03 2025 by rpki-client