Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
File: qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft (raw, json)
Hash identifier: Z/Ett7523uL7PhPNSi/4+Ic0uqk2NK2jFvK1Y01XLrU=
Subject key identifier: E7:E1:55:2B:1D:B8:73:77:94:AB:D5:B0:A7:4C:6A:C6:72:89:B5:0A
Authority key identifier: AA:7C:64:35:A8:50:F0:C5:E9:9A:9C:E0:51:F3:4B:DB:53:22:2F:04
Certificate issuer: /CN=aa7c6435a850f0c5e99a9ce051f34bdb53222f04
Certificate serial: 0197488C7B5BBDE07E1B4BA5325CBC7F6331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
Manifest number: 0618
Signing time: Sat 07 Jun 2025 04:00:55 +0000
Manifest this update: Sat 07 Jun 2025 04:00:55 +0000
Manifest next update: Sun 08 Jun 2025 04:00:55 +0000
Files and hashes: 1: qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl (hash: UgIgDkA3Fxpl2Bd309kdNnWp/jigOXHD0s+dI2aQza0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:7b:5b:bd:e0:7e:1b:4b:a5:32:5c:bc:7f:63:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7c6435a850f0c5e99a9ce051f34bdb53222f04
Validity
Not Before: Jun 7 04:00:55 2025 GMT
Not After : Jun 8 04:00:55 2025 GMT
Subject: CN=e7e1552b1db8737794abd5b0a74c6ac67289b50a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5f:70:9a:38:a7:3f:93:7a:74:93:84:17:26:
bc:68:41:69:13:02:9c:1d:1c:03:4e:cd:23:d6:7f:
39:28:4f:2b:54:a4:eb:89:65:04:ec:0b:be:dd:eb:
30:f9:e4:c3:56:16:4d:b6:49:02:22:97:e4:d8:f5:
11:0e:8b:36:2d:a5:21:46:da:c6:6c:ae:b8:d3:3d:
42:00:cd:3c:ed:7c:d0:17:29:33:f8:69:65:e9:4a:
db:c1:07:2c:3e:93:c0:e4:36:9a:97:27:e6:85:72:
1c:ab:22:52:35:08:ec:5a:81:54:51:dc:a1:ea:df:
e3:01:24:bf:8a:b0:89:c1:79:58:50:73:87:9b:fb:
31:a0:76:74:7e:b3:d2:4c:ff:90:9b:f7:ae:ab:c3:
98:bf:26:fe:e1:f4:10:54:ec:62:8a:9d:b9:04:11:
53:d6:19:83:bb:01:29:f1:fe:36:a6:d3:7b:57:ed:
71:f0:7e:26:d6:2e:01:95:c9:21:a9:a5:9c:45:3e:
44:d0:25:a1:dc:dc:22:15:79:d9:62:60:8d:ec:54:
e5:d8:95:ef:ee:7f:ba:2f:a7:73:e2:df:21:1a:42:
78:7b:91:ef:59:dc:79:56:c8:d4:98:23:38:52:f8:
af:d8:93:9d:0a:2c:47:c4:53:6d:d1:ba:39:ac:76:
d7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E1:55:2B:1D:B8:73:77:94:AB:D5:B0:A7:4C:6A:C6:72:89:B5:0A
X509v3 Authority Key Identifier:
keyid:AA:7C:64:35:A8:50:F0:C5:E9:9A:9C:E0:51:F3:4B:DB:53:22:2F:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:16:8b:bb:19:7c:66:4a:21:89:04:11:eb:3b:ad:44:b1:80:
33:aa:51:d6:ab:39:04:88:d7:94:89:63:c2:8b:84:f9:01:d6:
72:66:76:00:08:89:a7:de:3d:e0:3f:ae:66:d3:ec:ac:b0:29:
fc:f9:fa:5e:e8:a6:3c:cc:8f:fc:e4:82:48:ba:07:36:a1:1b:
e7:fd:e5:96:dd:e0:1a:5a:63:a7:0b:8e:6b:9b:d8:98:dc:01:
13:cb:7c:83:40:65:0b:37:f5:01:6a:94:6f:65:fb:76:7c:0b:
0e:4b:0c:ff:94:a0:5c:4a:7c:d1:1b:72:93:66:24:8b:9f:4b:
55:7d:f8:ff:5a:cc:ab:17:be:25:5a:3e:13:22:d4:8d:20:22:
fa:33:74:87:ad:d9:e0:74:f6:b5:78:3b:de:b2:2b:b4:6a:7c:
1e:dd:ae:0e:8a:51:5d:e9:89:ec:78:8e:3f:84:1e:28:87:90:
6e:f9:b8:20:99:7e:91:3c:83:45:51:01:15:9c:6e:06:c9:02:
95:8c:fc:91:57:0f:69:0f:c5:5d:51:bf:4e:4e:64:c0:e4:dd:
d5:45:86:98:97:8f:cf:47:36:4c:6e:04:21:1a:8b:7d:62:a5:
22:4f:57:31:30:e3:23:56:61:5c:14:72:5f:9c:3a:00:ab:83:
58:74:f2:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:59:29 2025 by rpki-client