Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: CwK2Hsx4+5u34+QXgxvsP1Vn3y+obItb4www7RzDEwo=
Subject key identifier: 3D:DD:01:FA:38:49:DE:63:4A:F2:06:15:75:A6:D9:04:09:89:D2:BE
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 01974EC521E64C24D7DDD6BEA74E2609F6B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 157D
Signing time: Sun 08 Jun 2025 09:00:31 +0000
Manifest this update: Sun 08 Jun 2025 09:00:31 +0000
Manifest next update: Mon 09 Jun 2025 09:00:31 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: eza4/MhwCGWwK5V+3CFkM4QIRGmX7wJak9Ej8c0Yxq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 09:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:21:e6:4c:24:d7:dd:d6:be:a7:4e:26:09:f6:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: Jun 8 09:00:31 2025 GMT
Not After : Jun 9 09:00:31 2025 GMT
Subject: CN=3ddd01fa3849de634af2061575a6d9040989d2be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ee:77:f7:68:91:f0:86:be:6c:5f:76:a2:2a:
38:3f:78:1d:ae:ce:d8:3b:54:cb:15:c6:6a:bd:db:
0f:9b:68:76:bb:15:9f:13:fc:3d:ac:d8:e3:5a:9a:
53:9a:80:ec:43:e3:76:81:7b:83:c8:0b:7e:9f:f3:
33:22:9a:e4:6b:16:94:f2:2b:f0:a0:cd:4b:41:f5:
37:03:81:5c:9b:32:c9:f2:11:66:43:d6:9e:36:e4:
f3:c4:80:52:06:33:64:ac:d1:7d:80:1c:87:6d:ce:
28:b3:5c:89:ea:97:88:4e:d5:6a:12:17:f4:19:40:
70:ff:ed:2a:e3:84:77:b6:09:4e:58:51:b7:e6:c1:
ff:9b:17:5b:0e:10:eb:42:9b:3c:46:30:6f:34:97:
24:08:cd:9d:ef:34:e4:e6:d6:29:a1:ec:cd:db:df:
af:d7:ca:0f:61:85:84:e6:01:d5:14:15:50:9d:06:
1c:ae:05:68:9c:21:76:bb:34:fd:ed:5d:db:c4:d3:
d7:00:fc:ef:92:7f:8a:ac:e4:65:0d:54:20:c1:f6:
24:34:e7:b2:c0:24:b6:b8:07:a0:fc:87:a2:d6:59:
77:92:36:5f:8c:c0:88:13:91:cc:7e:26:3c:22:34:
1b:79:8a:af:cf:9b:6f:ae:ef:7d:cc:18:98:53:23:
d2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:DD:01:FA:38:49:DE:63:4A:F2:06:15:75:A6:D9:04:09:89:D2:BE
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:de:0a:49:7b:e8:1e:20:d1:46:29:6d:fc:23:e0:a9:c5:30:
4b:c9:59:c5:f7:78:69:4f:3e:26:e9:25:c7:c4:f2:3b:32:0f:
a6:8d:d9:23:d9:e1:5f:0f:7f:18:49:c0:69:3f:36:b4:20:75:
fa:e1:7c:87:57:5d:2f:7f:14:f7:18:7f:7a:df:71:3e:dd:30:
70:3b:d4:a3:8a:d8:b1:17:35:5e:50:fd:60:60:27:9f:16:11:
ec:0e:6e:5d:14:ab:d7:ce:56:19:c7:17:f2:62:9a:5f:56:a8:
fb:b4:5f:56:49:ea:f6:8e:88:e3:70:3b:a0:5c:0e:b9:61:aa:
c4:68:2a:1c:2c:d7:5b:ef:e3:c9:db:ae:b3:bd:b8:66:ea:59:
bd:e0:f9:56:46:ba:23:ab:5d:2a:dc:87:2c:31:39:1c:24:67:
b8:b6:c5:ca:8f:fa:73:af:b9:50:42:45:28:fc:7b:ce:62:b5:
b7:ed:fc:2b:3a:ae:9b:9e:ec:ff:b8:45:06:f7:bf:f4:57:86:
2c:3f:07:a7:83:39:19:f1:45:4c:b7:73:a4:65:16:86:98:4a:
f2:9e:b0:35:52:a6:aa:c5:6b:7d:42:09:98:ed:61:10:60:92:
ff:a6:c8:2e:02:70:7d:63:75:3b:8c:e1:61:51:ed:0e:a8:2a:
55:c3:54:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 17:16:30 2025 by rpki-client