Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
File: QlbgyzjNYSXO4U5Jcii4SQodQOk.mft (raw, json)
Hash identifier: SyzCgdD9gsQ6Q9hnYHmPfK/SbfxBtz/KklhKAL5P6iA=
Subject key identifier: 66:EF:E3:1A:96:D9:68:ED:83:25:FA:B5:A0:B6:BD:BF:35:80:48:A4
Authority key identifier: 42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
Certificate issuer: /CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Certificate serial: 01974967CC947CD63C18AF16A73ADA509851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
Manifest number: 04D8
Signing time: Sat 07 Jun 2025 08:00:28 +0000
Manifest this update: Sat 07 Jun 2025 08:00:28 +0000
Manifest next update: Sun 08 Jun 2025 08:00:28 +0000
Files and hashes: 1: QlbgyzjNYSXO4U5Jcii4SQodQOk.crl (hash: hlzYgPDr+CEGG7pl2X5wr8NAIFp71Z9oS6amidj58qY=)
2: ekPIeumjzc0aQ-0qnlrmTiVhDJI.roa (hash: MI/BYhVlkTAuExjmOk0h+DG2/B/CqzwrvfdzA0OS10s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:cc:94:7c:d6:3c:18:af:16:a7:3a:da:50:98:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Validity
Not Before: Jun 7 08:00:28 2025 GMT
Not After : Jun 8 08:00:28 2025 GMT
Subject: CN=66efe31a96d968ed8325fab5a0b6bdbf358048a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:e7:07:c9:6f:80:c2:fd:f8:1f:9b:54:5d:
ca:48:f0:68:f3:dd:96:fa:6e:54:0d:51:f8:b4:30:
02:40:0d:19:9a:15:4d:8e:b8:b0:36:0b:6e:84:b3:
23:91:06:a4:ff:52:55:1f:78:81:2b:04:84:b9:a2:
8d:6d:fa:83:32:c8:0e:2a:8f:ff:85:55:4d:b0:9f:
45:21:ed:5e:f0:4d:46:fb:da:07:c6:b6:f0:c3:34:
2b:6a:c8:fe:1b:62:80:7b:45:8e:d0:6a:e5:8c:26:
77:61:97:e2:04:5d:e2:58:7e:4b:32:8c:87:d9:15:
5b:e9:ae:fb:d7:6f:85:fe:ce:f7:8c:a4:71:f5:b7:
09:a8:5a:cb:06:42:fc:5a:67:88:85:49:6c:89:6c:
43:0c:30:d4:f9:31:01:d5:f0:26:89:9f:c3:9b:71:
98:d3:2c:33:43:cb:84:dc:54:f5:2d:d4:02:10:54:
82:1b:98:88:9a:08:1f:8d:11:ed:15:1e:54:aa:67:
fa:c5:65:9e:81:c2:c0:c0:84:3d:98:53:5c:43:aa:
e2:f9:9b:40:14:e8:30:0d:3b:af:9b:2d:5b:d6:07:
5d:10:13:60:f5:11:63:86:85:62:14:ec:15:97:70:
96:dc:82:33:97:42:5b:17:57:14:a0:e2:27:6f:c8:
c6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:EF:E3:1A:96:D9:68:ED:83:25:FA:B5:A0:B6:BD:BF:35:80:48:A4
X509v3 Authority Key Identifier:
keyid:42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:ac:93:c8:44:56:f3:3c:44:e9:f4:ba:26:bd:d6:50:ac:ee:
ee:0f:c2:b0:83:f5:f1:20:65:f2:62:4c:41:c2:f6:f4:dd:a5:
e0:a4:6c:e5:08:cd:70:2e:a2:d3:90:12:e1:e8:04:a3:9d:92:
00:a2:e6:f3:00:a7:a7:4f:92:c3:48:05:18:c6:dc:2b:ec:14:
39:00:11:6c:aa:21:71:8a:f0:d2:8b:0d:c3:f4:96:8e:43:16:
6f:42:a7:2e:3b:46:b6:78:e4:99:18:2a:72:53:76:80:7a:08:
b8:bf:b8:72:97:f9:dc:26:8d:5b:48:b0:d4:65:77:46:bc:95:
5c:14:9e:f0:57:75:f9:18:24:7f:f5:e9:92:8a:61:a3:7a:57:
60:14:c6:da:e8:23:a4:c9:ee:0a:6b:2a:68:92:c5:fc:c5:a9:
f8:05:5a:5d:09:b9:ee:42:cc:e5:08:c3:f2:0b:c1:8b:0b:62:
3a:7b:bc:06:93:5a:f6:76:8b:2f:9d:f8:7b:fc:a2:5e:f9:fd:
7c:51:1b:b6:a0:bf:58:ce:76:20:3c:ce:a2:0b:e3:6b:b8:65:
e9:00:8b:e2:59:ca:0f:d3:fe:26:f6:e8:5c:ad:19:84:3d:b9:
1d:3b:17:cd:61:64:dd:44:00:9d:f5:75:c8:64:14:c0:42:ca:
e4:f8:97:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:36:46 2025 by rpki-client