Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
File: QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft (raw, json)
Hash identifier: J72B1u9XjcJx4Jt8zEYDBmGzSG8sITgMWDO/ZTC/VYY=
Subject key identifier: 33:2D:CF:13:E2:14:78:53:FE:CB:6F:B7:7C:0A:BC:09:7D:12:67:7C
Authority key identifier: 41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E
Certificate issuer: /CN=4148cbad1748205b4f4334bba638c64c2b21fc0e
Certificate serial: 01974AB1545FDD03A7A7B41CC0C77E1E8DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
Manifest number: 0FAB
Signing time: Sat 07 Jun 2025 14:00:24 +0000
Manifest this update: Sat 07 Jun 2025 14:00:24 +0000
Manifest next update: Sun 08 Jun 2025 14:00:24 +0000
Files and hashes: 1: 4ylLEVDeXKrfF8Se5wkM9llLd1w.roa (hash: 4hQQfVDyFUxXBSnxIrSQDsLfslrlkzzZ+2tzn4mkErM=)
2: QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl (hash: T7mfeuwchiIOZ0lmafLTajXgO3e4Rmz+dxxNa5GGmRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:54:5f:dd:03:a7:a7:b4:1c:c0:c7:7e:1e:8d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4148cbad1748205b4f4334bba638c64c2b21fc0e
Validity
Not Before: Jun 7 14:00:24 2025 GMT
Not After : Jun 8 14:00:24 2025 GMT
Subject: CN=332dcf13e2147853fecb6fb77c0abc097d12677c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1d:08:ed:c0:71:7a:74:ae:68:54:07:15:54:
52:e5:7d:d9:05:f2:df:07:d4:e9:99:aa:c5:31:35:
1e:e2:2d:82:02:01:dd:98:2c:b6:b4:bc:64:03:a8:
1b:d1:9c:fa:c9:87:f4:e5:6c:83:05:36:54:26:b7:
f3:c4:29:a3:a9:21:b2:db:05:5c:f1:55:1f:72:60:
27:76:19:8b:bb:71:04:f7:bb:06:6a:ba:8f:13:4a:
a7:fa:59:8c:7e:cc:cd:4c:bb:be:2a:bb:b8:3a:7b:
31:60:6e:77:86:85:9f:94:2a:86:59:c6:e0:13:3e:
c8:41:2f:ca:ab:c7:6b:4f:24:8b:7a:40:32:90:87:
7e:24:a5:a9:d7:4b:11:0e:c8:33:74:b6:1f:7d:75:
66:d6:ab:ca:e7:d4:ef:2f:c6:4b:eb:84:3f:94:8b:
69:77:15:0e:0b:94:cd:9b:f1:b6:e6:1a:c2:ef:36:
73:78:51:31:0a:c4:0c:eb:c8:8e:d9:b5:c2:10:d0:
92:e0:ea:76:4a:40:06:28:41:6b:91:f7:93:55:30:
c2:9b:7e:c3:4d:8b:bd:63:31:20:94:97:63:fd:79:
5a:56:52:74:b3:4d:fb:d6:23:08:61:00:b3:71:cd:
d7:23:00:ec:a8:1e:d6:38:59:8e:01:9a:28:ae:85:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:2D:CF:13:E2:14:78:53:FE:CB:6F:B7:7C:0A:BC:09:7D:12:67:7C
X509v3 Authority Key Identifier:
keyid:41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:ac:08:b0:3f:57:37:79:cf:26:23:cb:b7:70:0d:1a:5d:67:
13:41:dd:c8:b3:f5:c2:4b:69:ad:2e:c5:45:81:7c:f7:ee:0e:
82:f5:fa:45:d5:f6:83:e0:ad:c1:89:c3:b1:68:23:eb:1d:9d:
07:7f:c3:b7:be:20:69:a1:d3:72:ef:1d:60:25:3f:80:b9:02:
5f:8d:19:82:eb:c1:c5:34:2e:85:5b:1e:9c:ff:b4:a3:1a:70:
5e:6c:a2:a5:34:14:c5:d9:e3:9f:ea:9a:46:b8:98:4c:24:84:
16:30:38:70:b4:12:34:08:6a:78:57:e3:fa:4a:94:d7:e8:01:
01:36:03:bb:c1:ae:de:44:f2:47:35:97:15:2c:5d:f9:f9:1a:
47:f2:cb:51:cf:a1:8a:df:92:cc:a6:46:ac:27:35:84:cc:aa:
b3:c6:9a:8a:04:cf:1a:23:d1:c0:f2:6c:6b:4c:c7:91:28:b5:
31:45:bc:94:40:50:fc:4f:d0:bc:aa:80:8f:5e:34:64:48:b9:
84:10:3a:0f:38:b8:3d:55:25:a6:33:22:27:86:f5:b4:56:ba:
c7:34:0f:78:c0:95:f1:4b:1e:6c:cb:09:76:43:ca:34:36:f5:
fd:81:8f:7d:bf:14:8e:06:85:53:ed:72:18:a4:d3:7f:e7:95:
b8:8a:f0:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:59:41 2025 by rpki-client