Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
File: QPwHKZcRrfoiLiexKLdtHZdFBYI.mft (raw, json)
Hash identifier: lUWh5vszgziVavidYbPm33ngQAvZH+z0LT8AECw1gv0=
Subject key identifier: 59:86:82:04:CA:27:CE:24:09:7C:B6:2C:7F:AF:E8:F6:F1:3C:64:CF
Authority key identifier: 40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82
Certificate issuer: /CN=40fc07299711adfa222e27b128b76d1d97450582
Certificate serial: 0197C914A7B11AC81EE95A33ED7154E7561C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
Manifest number: 126C
Signing time: Wed 02 Jul 2025 03:01:03 +0000
Manifest this update: Wed 02 Jul 2025 03:01:03 +0000
Manifest next update: Thu 03 Jul 2025 03:01:03 +0000
Files and hashes: 1: 6KpfPRVUGyFsCkAEFBqf-wSXAyw.roa (hash: kWhiEuOzAfB/QvRqngqpda0Xfcej2KhLVFQbnAjy7tQ=)
2: QPwHKZcRrfoiLiexKLdtHZdFBYI.crl (hash: x3cGoJFswHV/b91Ty+Tug0diDcek/4/SF78/ZiYpat4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 03:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:14:a7:b1:1a:c8:1e:e9:5a:33:ed:71:54:e7:56:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40fc07299711adfa222e27b128b76d1d97450582
Validity
Not Before: Jul 2 03:01:03 2025 GMT
Not After : Jul 3 03:01:03 2025 GMT
Subject: CN=59868204ca27ce24097cb62c7fafe8f6f13c64cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c9:45:51:93:46:c8:00:48:8e:be:38:1c:df:
53:ed:6d:19:ed:86:4d:7c:a3:f9:a0:37:db:74:2d:
79:98:88:4f:98:4d:74:ae:e5:4a:a1:28:a1:b5:e9:
ef:14:45:0a:30:ff:7e:87:e5:e4:b2:24:6c:69:a7:
c6:1d:de:82:2f:f6:f6:d0:35:cd:f9:04:90:9e:ee:
b3:0e:c9:93:97:61:32:34:f7:51:4d:2e:44:f7:6d:
4f:5a:7d:5c:25:0c:60:06:98:48:0c:d4:67:19:ed:
54:3c:40:e0:3e:ff:de:e9:ca:01:9b:7f:42:43:26:
33:12:56:70:8a:0d:45:81:59:0a:ed:55:ea:35:43:
12:5b:19:58:f3:2c:d3:b3:1e:9d:5b:f0:15:f9:e4:
66:ab:e3:73:04:c7:44:de:2c:e5:ee:12:f6:c1:58:
86:0a:88:9d:e6:b5:eb:d9:82:1c:aa:fb:af:09:f7:
89:11:6e:e7:d1:81:76:4d:06:f2:21:1d:56:8a:f0:
15:52:67:af:97:ae:a6:7a:d4:a9:cf:ee:a4:21:fd:
e7:d9:42:4f:31:23:17:11:3c:82:30:1f:a0:37:37:
3b:51:b2:8b:1b:e9:dd:e2:7f:a3:46:51:79:2d:8e:
46:ca:6a:db:1d:9f:31:39:63:51:3f:d7:e8:5d:8b:
30:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:86:82:04:CA:27:CE:24:09:7C:B6:2C:7F:AF:E8:F6:F1:3C:64:CF
X509v3 Authority Key Identifier:
keyid:40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:9c:1b:b6:c6:7f:72:cd:f7:8b:4f:35:51:b8:23:02:cb:fc:
0f:5e:31:61:62:fe:14:56:dd:f5:83:96:7e:2b:27:34:43:50:
d2:22:d9:48:b8:36:72:96:5f:c2:90:15:03:4c:b7:ba:07:52:
79:ba:bb:2a:d6:db:9d:0c:4c:9d:a9:4c:d2:0f:57:83:4d:1b:
a9:3a:da:f8:a8:71:e3:d2:68:65:23:f3:bd:21:f2:9a:7f:ea:
bc:eb:9e:6d:6f:7c:03:11:4f:53:bf:9e:43:d2:66:fb:83:bf:
02:e2:9a:38:3c:23:1c:93:32:ea:34:af:eb:ca:9e:ae:6c:d9:
c6:2a:e1:3f:cf:6d:b5:1c:fe:8f:99:c8:f2:3d:42:1f:77:22:
83:d7:da:39:f8:a8:3f:aa:3b:be:f6:08:bd:49:ad:8b:0c:45:
11:14:8a:62:35:01:5a:00:f7:7d:6f:08:72:98:0a:c6:8d:e5:
83:72:a7:fe:c1:07:35:da:5e:61:15:95:af:92:88:c1:33:9f:
63:54:6d:67:42:01:b7:de:44:a7:f8:46:45:71:b8:b5:dd:3e:
a9:23:04:9c:69:63:0e:c8:30:56:02:eb:f5:ca:5d:6d:de:a6:
d9:fe:5f:4e:c3:d9:e2:81:89:5e:b6:9e:d5:21:48:05:06:57:
26:d1:49:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:11:25 2025 by rpki-client