Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json)
Hash identifier: /6KyuWU0/gGgDcB3ahYazKND9/xH90vXUkvwoSgT8nU=
Subject key identifier: 67:FC:2E:85:6C:2C:41:82:06:74:E8:77:0C:EC:4E:7D:C7:0C:EA:AF
Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Certificate serial: 0197500ED74083E4E98C641423DAF6F3463D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
Manifest number: 0BD2
Signing time: Sun 08 Jun 2025 15:00:39 +0000
Manifest this update: Sun 08 Jun 2025 15:00:39 +0000
Manifest next update: Mon 09 Jun 2025 15:00:39 +0000
Files and hashes: 1: 2K6387yyM5gxakFjGUcn1KUMQ58.roa (hash: KwEJI06hkpRX+nj9eXMKKI3vC9xa4ElKQ9FhYTbVyds=)
2: VNd90Fl0tWahsmhhQvhoAAT8f5U.roa (hash: U+zi8hpH0S9lksZLxaBLhZX/Hg0tdOzYwVmTSHbyaHY=)
3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: BdkEXKSM4JG/W5+mSCMHqTIyEir1PDHtrv0RflR6gic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:0e:d7:40:83:e4:e9:8c:64:14:23:da:f6:f3:46:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Validity
Not Before: Jun 8 15:00:39 2025 GMT
Not After : Jun 9 15:00:39 2025 GMT
Subject: CN=67fc2e856c2c41820674e8770cec4e7dc70ceaaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7e:1a:7e:64:21:32:16:d5:66:a7:cc:e2:c6:
7b:36:82:24:b3:b2:45:d7:49:c8:61:b2:10:19:e7:
c2:f1:5d:0e:5e:b2:bf:34:ad:c3:93:8f:13:93:15:
c2:53:2f:bd:f9:63:f5:b0:43:d0:42:35:d5:9f:9b:
7e:a8:bf:1d:96:ab:9e:12:ce:bd:3b:75:4b:dc:e3:
10:48:15:0f:9d:49:d4:60:c9:83:e9:50:a6:67:8c:
ba:ce:01:5e:48:71:0c:bd:bd:c5:ab:e4:ba:a1:09:
e0:77:7a:72:ec:e5:90:a1:26:c1:2c:0e:b3:d7:5c:
33:c4:35:9a:79:75:fa:31:8b:d9:21:53:32:3c:ba:
9f:41:54:12:02:c1:71:c7:1d:30:80:9b:33:57:13:
b0:5d:68:67:73:5d:c2:a5:2f:e0:6b:b4:50:30:9d:
cc:a9:a1:69:9d:5d:df:09:0b:78:7a:a4:12:07:47:
ba:91:26:75:87:72:f3:46:3e:32:d7:b2:36:d8:d6:
aa:60:4f:c9:b9:46:4e:eb:80:04:72:4f:57:a7:3e:
a4:8d:99:10:e4:02:b8:15:40:75:fa:45:57:65:34:
40:fa:7c:1f:cf:dc:9f:54:f3:fb:3c:c1:63:f4:86:
8b:db:08:56:39:e5:0d:c2:39:d1:4d:fb:4f:71:e2:
30:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:FC:2E:85:6C:2C:41:82:06:74:E8:77:0C:EC:4E:7D:C7:0C:EA:AF
X509v3 Authority Key Identifier:
keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:06:15:c3:5a:cf:0d:78:ca:77:9d:c9:25:b4:b3:1a:53:c8:
e6:90:26:37:62:18:ca:20:62:cb:e1:20:a5:98:eb:2e:7b:83:
e2:11:a8:13:d2:85:b7:3c:ec:7a:e2:8c:83:85:7c:2e:92:f2:
b9:de:c2:a6:34:8b:f5:6e:09:68:e0:a0:10:1f:f6:55:01:03:
89:23:dc:09:1d:8a:9a:47:0d:76:ba:ee:22:e2:7f:67:a7:cf:
99:e3:19:f1:2c:65:91:80:e5:9a:a8:b8:e2:71:10:b6:a3:12:
cc:c0:26:3a:9a:40:f9:71:27:60:d4:83:67:74:b5:14:aa:58:
f7:11:5b:74:40:69:9e:6f:e3:39:4f:be:0e:08:ce:4d:38:cb:
8c:2e:11:c7:6e:c7:4c:7e:94:bf:f8:20:8a:d1:9a:49:76:35:
37:46:f5:19:bc:ce:9b:49:7b:ae:cf:7d:a4:15:23:0a:93:9e:
5b:a7:b2:2b:c0:83:d9:a4:bc:fb:44:65:32:cf:96:27:b6:5b:
68:76:59:bf:89:02:10:3e:a6:01:22:35:df:9a:91:40:69:fe:
cc:97:6c:46:10:3f:13:25:ef:89:90:6d:f5:29:d9:20:92:d1:
6d:62:d5:24:79:25:35:35:76:81:b4:eb:ac:2b:27:cb:0a:0e:
a5:95:aa:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 20:45:03 2025 by rpki-client