Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
File: QpBWwzjRbJLN_aHlXQk2givFDNI.mft (raw, json)
Hash identifier: RRsLZyFP0OjJjO5wJxOmH7VEtdjFptss/WIpXut9c90=
Subject key identifier: B5:13:EE:18:E2:35:73:5C:D3:7D:2B:1C:BB:9F:CD:8C:9A:15:6D:D9
Authority key identifier: 42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2
Certificate issuer: /CN=429056c338d16c92cdfda1e55d0936822bc50cd2
Certificate serial: 01974B1F46F71A99BCBBE3F53536D4EF21B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
Manifest number: 0412
Signing time: Sat 07 Jun 2025 16:00:30 +0000
Manifest this update: Sat 07 Jun 2025 16:00:30 +0000
Manifest next update: Sun 08 Jun 2025 16:00:30 +0000
Files and hashes: 1: QpBWwzjRbJLN_aHlXQk2givFDNI.crl (hash: 4U1yCkamsJ10t4fxMneMWxwC3QkDkSYjAbu4ZGGVcTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:46:f7:1a:99:bc:bb:e3:f5:35:36:d4:ef:21:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429056c338d16c92cdfda1e55d0936822bc50cd2
Validity
Not Before: Jun 7 16:00:30 2025 GMT
Not After : Jun 8 16:00:30 2025 GMT
Subject: CN=b513ee18e235735cd37d2b1cbb9fcd8c9a156dd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e1:7f:f3:f2:03:a7:af:6b:7b:26:ba:ad:49:
0b:51:1d:3f:fa:33:f1:d2:30:09:96:20:70:23:08:
0f:26:c5:03:2f:3e:eb:8b:20:31:1b:5d:ba:d2:56:
c4:c5:8e:e1:86:0a:bc:87:90:8c:07:87:0a:08:21:
68:45:71:f3:87:46:21:48:45:fa:30:cd:4e:9c:d1:
b9:e5:dd:96:19:77:46:63:c2:83:8b:39:30:94:9b:
9d:6e:2d:b3:ba:f4:3b:8c:f0:0f:bb:19:7d:ed:23:
c0:b8:ba:98:5b:c7:c9:f3:a3:d8:6d:a0:4b:05:c7:
54:84:57:31:c7:5d:71:ab:da:4c:41:8e:8f:00:e6:
df:0c:0b:e1:80:dc:38:f5:ac:64:4a:b1:49:91:ab:
8f:cc:fa:de:52:0f:6c:08:9b:cc:39:1d:da:55:78:
b3:6e:91:e4:1d:8d:eb:31:df:9e:fa:6e:e1:e7:f9:
83:b6:05:d7:59:e5:e5:ac:e9:2a:cc:cc:89:80:3f:
f9:7b:cb:53:82:e2:0b:c4:84:bd:53:9c:d9:0e:8a:
92:3a:bf:7c:a6:0b:f8:b1:56:84:56:af:05:d3:96:
3f:1c:0f:2c:fd:d8:19:31:6f:42:5b:4d:1d:53:8f:
7c:a5:47:df:f4:b1:af:cf:14:26:c4:d6:66:6d:70:
f5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:13:EE:18:E2:35:73:5C:D3:7D:2B:1C:BB:9F:CD:8C:9A:15:6D:D9
X509v3 Authority Key Identifier:
keyid:42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:f6:03:75:b0:f4:d9:53:23:e0:30:71:e1:68:ee:f9:ce:a6:
fd:ac:2a:b8:74:b1:35:ee:ed:7c:f3:66:e0:22:ee:e0:35:a9:
a0:38:50:bc:47:47:59:90:92:84:e7:d4:53:8b:a8:fb:ad:7f:
1e:ad:e0:47:b0:11:0f:b9:d8:c2:69:8b:b7:12:e0:4a:8a:15:
a6:67:e3:14:b7:25:f9:23:33:0e:3c:f3:c8:20:40:d3:6f:d4:
5c:7d:99:3f:44:3f:28:bd:af:5e:f0:d3:f9:17:d4:17:34:13:
34:75:cf:15:3c:80:0c:be:93:09:1f:bd:1c:a1:2d:a2:22:32:
70:ea:76:47:05:ec:78:87:b3:fe:e7:7a:09:60:5c:2c:89:4c:
cf:6f:77:ef:8f:3d:f5:36:96:3d:7a:2b:4c:ea:a1:53:97:29:
8c:9f:28:fa:b7:78:e1:00:8c:f6:ac:47:3a:b6:d6:00:15:0e:
9c:df:2b:ea:51:a5:f8:b3:5c:12:65:72:2e:f0:a4:dc:80:34:
5d:ec:ec:76:27:92:78:8e:b1:02:46:dd:2f:80:54:20:98:3e:
3e:91:bd:52:f6:92:e3:3c:2a:4e:f5:62:c9:c8:e0:3a:63:a1:
54:b0:8a:60:24:c7:20:a4:48:99:1c:4e:ef:f9:5c:83:e3:94:
2a:2f:8c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:43:33 2025 by rpki-client