Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
File: 2QrRERMYMAumeOiOBQKx_FHjU3k.mft (raw, json)
Hash identifier: c+kP+YSpp71VE83n//S0tIh6Og/6FVTEHF4+4/5v7V8=
Subject key identifier: 9A:A4:97:BF:6B:77:AB:DB:D6:0E:7A:B6:5B:40:0D:41:48:A0:C0:7F
Authority key identifier: D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
Certificate issuer: /CN=d90ad1111318300ba678e88e0502b1fc51e35379
Certificate serial: 019748C312BDED1B74D4FC3F1F9AE897F954
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
Manifest number: 0186
Signing time: Sat 07 Jun 2025 05:00:33 +0000
Manifest this update: Sat 07 Jun 2025 05:00:33 +0000
Manifest next update: Sun 08 Jun 2025 05:00:33 +0000
Files and hashes: 1: 2QrRERMYMAumeOiOBQKx_FHjU3k.crl (hash: yXqcoOYutsbFpgvb83H9QoqqM3AUyP5Ky5xzDGrRWj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:12:bd:ed:1b:74:d4:fc:3f:1f:9a:e8:97:f9:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90ad1111318300ba678e88e0502b1fc51e35379
Validity
Not Before: Jun 7 05:00:33 2025 GMT
Not After : Jun 8 05:00:33 2025 GMT
Subject: CN=9aa497bf6b77abdbd60e7ab65b400d4148a0c07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5e:b6:b6:1b:97:16:31:5e:2c:3b:12:a5:57:
7b:1c:66:ca:bc:ef:8c:b7:36:ca:41:9b:12:8a:09:
27:80:df:01:bd:78:69:84:7f:7b:f7:bb:ed:79:eb:
eb:52:95:a4:31:6e:55:8a:36:80:94:7e:e6:d8:7b:
97:10:22:26:99:e0:91:3b:3c:d6:aa:fb:45:7b:e3:
06:bf:5f:70:4a:0b:6d:e5:b0:4e:0b:c4:4b:1d:29:
25:0c:ea:f0:5e:e6:4d:bb:42:c1:a5:31:36:0f:e2:
ec:5d:53:ba:fe:81:fe:30:a0:96:6e:b6:88:30:40:
9d:8f:30:e8:09:67:4a:df:b4:3c:44:55:0d:d0:e2:
bc:0d:c4:92:db:51:4f:d2:e4:f6:df:41:c8:7f:17:
0b:6d:bd:0f:64:5a:84:54:e3:87:74:36:29:8d:37:
f5:ea:5e:b2:d1:7e:cd:7b:2e:dd:96:f7:55:d6:2e:
1b:1f:85:7b:4d:6d:73:58:ea:c1:5f:14:1e:ce:77:
df:aa:4b:4f:f4:9d:ab:6e:b4:d2:c8:a2:8c:93:25:
59:59:3c:95:06:65:99:66:0a:a2:18:9b:c1:93:2c:
2c:5a:04:db:9a:52:d8:9a:97:ea:25:ae:b1:79:8d:
e7:e6:82:bc:e1:f0:3a:7e:4d:8d:92:36:74:b2:48:
62:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A4:97:BF:6B:77:AB:DB:D6:0E:7A:B6:5B:40:0D:41:48:A0:C0:7F
X509v3 Authority Key Identifier:
keyid:D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:53:b0:28:7b:3d:ae:68:72:d0:8e:15:ec:fa:49:79:ed:d2:
d7:c4:8e:e9:ef:55:ac:51:80:65:36:50:34:10:82:7d:92:d6:
2d:31:f1:76:53:fe:9a:15:fc:52:00:b9:dc:bb:dc:f5:3f:c7:
9d:08:4a:12:93:b2:ba:88:0d:f7:15:20:3a:c3:9f:1f:a2:84:
bc:9d:1a:51:30:e6:13:af:12:8c:53:84:12:b0:82:f4:0b:3b:
59:45:d2:50:fc:2a:4f:9f:59:dc:38:05:3a:0d:9c:78:6a:8f:
44:b5:ce:3f:2d:8a:6c:bc:32:81:fe:1f:33:60:a6:c5:b2:96:
04:e0:b7:d3:6f:ea:b3:0f:b9:98:88:d7:f7:96:8f:a8:db:70:
4b:4d:c5:c6:8d:46:e1:a4:95:73:9f:4e:d7:ae:af:6d:16:7d:
d6:2f:22:3c:f2:3d:4a:9b:d0:d0:bb:36:f8:7f:6f:7e:01:48:
53:97:12:b3:cc:1c:23:fe:c9:a9:f6:10:9d:80:ce:fe:75:33:
38:7f:0d:2b:92:c7:06:30:a0:d7:d6:61:f5:1a:53:cc:ad:df:
00:0c:17:f2:70:02:f5:7b:b9:22:a0:93:5b:eb:10:84:ff:c0:
6c:46:81:b2:3d:4f:cf:4d:56:50:a3:06:c6:4b:8f:94:48:58:
3f:84:c5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:50:34 2025 by rpki-client