Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
File: QGYnM7yHPRPh-fZujf91yCDV0vc.mft (raw, json)
Hash identifier: Qtiq+SX8OnySqC1IbO29GKyK+NUIZjKP/T3f9b1VjxU=
Subject key identifier: 1C:EC:2D:0F:A8:36:D4:FC:69:11:40:01:BF:D2:E0:F9:BC:80:DD:B1
Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Certificate serial: 01974968717E10A807DBDA083E8BCD85EAA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
Manifest number: 0D7F
Signing time: Sat 07 Jun 2025 08:01:10 +0000
Manifest this update: Sat 07 Jun 2025 08:01:10 +0000
Manifest next update: Sun 08 Jun 2025 08:01:10 +0000
Files and hashes: 1: NiWsr1aAeWW2oN08xcS5Irqnn3Q.roa (hash: 2xUbIvKWWmEdUess43urc5rTq8I0ZstZadOhJMax4HI=)
2: QGYnM7yHPRPh-fZujf91yCDV0vc.crl (hash: jSwU5vxAJ2D6m16U+SJ6w9pzfpQOMJh2RamBlDp9eaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:71:7e:10:a8:07:db:da:08:3e:8b:cd:85:ea:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Validity
Not Before: Jun 7 08:01:10 2025 GMT
Not After : Jun 8 08:01:10 2025 GMT
Subject: CN=1cec2d0fa836d4fc69114001bfd2e0f9bc80ddb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b4:40:c8:f0:ee:b8:af:b7:1a:ff:9c:3c:7c:
df:dd:01:4a:31:ad:9d:f1:a9:cc:1e:34:2b:98:12:
ea:9b:b5:b4:0a:b6:64:78:ca:78:d3:81:5e:e5:b4:
15:bd:bf:97:6b:bd:ec:d8:e9:2b:05:8c:05:c6:0b:
10:16:0a:d7:14:c1:ab:94:71:90:51:34:64:20:c9:
1a:89:6a:19:9e:43:53:c0:2f:d7:a8:5a:b6:ce:c4:
8c:9d:91:9b:34:c1:0a:3b:2a:4d:d9:f3:0d:f4:e9:
c5:7b:f5:48:0b:98:97:82:8e:5a:54:ef:68:b0:8e:
d2:48:1d:95:3b:31:d4:f4:7c:37:1e:4e:f2:1b:98:
48:5d:65:23:0b:72:e8:63:ff:f2:14:fe:08:13:14:
67:42:dd:77:32:6d:c6:d4:4a:bc:5a:5d:f2:f5:18:
0d:ee:82:f1:0f:9b:17:1e:80:86:57:2a:21:f2:57:
58:38:2d:60:79:2a:35:2b:c5:5a:ab:f8:2b:49:b3:
44:1a:f4:c8:d7:8d:6a:ec:db:f1:66:f0:4b:eb:cf:
a2:3a:92:1d:b4:52:60:75:dc:63:30:34:8c:50:ed:
8f:76:14:cd:1e:a9:b3:48:ce:8f:dc:d2:db:29:d7:
5f:84:73:bb:1b:fd:8e:4c:36:0b:69:17:76:7b:4d:
30:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EC:2D:0F:A8:36:D4:FC:69:11:40:01:BF:D2:E0:F9:BC:80:DD:B1
X509v3 Authority Key Identifier:
keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:2f:b0:5c:d0:d4:79:1a:35:ef:eb:10:ca:77:d3:5e:59:41:
9f:c7:7c:88:c6:26:5b:55:0d:d3:8d:d7:e6:b0:b2:21:d2:b2:
34:18:14:01:13:2a:12:1e:f4:56:81:c0:8b:6e:3d:c6:99:c2:
ad:4a:33:53:6e:8a:4d:eb:e5:62:53:cc:c4:ff:ef:07:c9:01:
e0:2c:93:2c:14:c1:c0:81:4f:ba:da:85:a9:93:e7:d4:55:cf:
84:49:d0:9a:74:7a:af:2b:f4:3f:b1:f1:ee:9a:60:e1:48:03:
6d:06:6c:2e:a2:46:ee:93:17:08:d4:1e:32:f9:25:05:a5:15:
46:44:c9:62:32:bf:5e:53:13:7c:0f:e4:7c:9d:f4:8b:58:4c:
2b:56:69:fb:c4:38:b0:ad:96:03:92:6a:4c:31:95:0f:17:d0:
a0:5a:a2:a4:e9:d9:6a:1b:56:1a:de:95:ca:2e:0e:bc:4f:0b:
f6:54:36:1d:03:91:86:c9:c4:03:3a:d6:12:d4:9d:28:c4:ac:
dd:54:f5:e9:d9:5f:b9:d3:c4:44:80:dd:9d:36:38:8b:59:7d:
c3:47:8d:8e:a3:05:0e:a9:fe:f6:2d:58:f3:38:e5:8d:a8:f8:
6f:89:ac:78:d2:df:9d:a4:34:73:11:e5:9d:0a:9c:39:e3:e7:
ed:d2:c4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:04:37 2025 by rpki-client