Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
File: DQMTeXANNd0Akr0GHGA-bLJWGnU.mft (raw, json)
Hash identifier: hRWN2muakc3D2j5odaP33bplq3nHFomgRZK+eO8rFx4=
Subject key identifier: 84:9E:41:F4:0B:E3:9D:D4:C4:BC:C8:40:29:80:DF:E6:AE:2E:CE:A8
Authority key identifier: 0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
Certificate issuer: /CN=0d031379700d35dd0092bd061c603e6cb2561a75
Certificate serial: 0197504690514966D9743E379CD1BE758640
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
Manifest number: 0D
Signing time: Sun 08 Jun 2025 16:01:31 +0000
Manifest this update: Sun 08 Jun 2025 16:01:31 +0000
Manifest next update: Mon 09 Jun 2025 16:01:31 +0000
Files and hashes: 1: D-Sv3RHoonqEglWfBGhMZixXEaw.roa (hash: OljBu2o0/f6ocmc4agC6eNtgRidkm1ywXtlkR3uvBlE=)
2: DQMTeXANNd0Akr0GHGA-bLJWGnU.crl (hash: LkAQyp3u+lnTHxWGWStAbGyTY3kg/iYz8qacO54pOco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:90:51:49:66:d9:74:3e:37:9c:d1:be:75:86:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d031379700d35dd0092bd061c603e6cb2561a75
Validity
Not Before: Jun 8 16:01:31 2025 GMT
Not After : Jun 9 16:01:31 2025 GMT
Subject: CN=849e41f40be39dd4c4bcc8402980dfe6ae2ecea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4f:66:22:7a:b0:8e:d8:41:c5:52:7d:f8:66:
54:dc:b5:b0:85:07:13:de:6b:83:08:cb:8f:56:44:
ce:41:cc:58:10:9a:a3:fd:79:73:e4:34:49:5b:6a:
be:cd:fe:e5:05:54:4c:56:a2:20:d9:bb:bd:2f:de:
27:ae:48:ad:ea:9e:db:d6:fd:74:66:84:66:1d:26:
c6:fa:aa:2f:a5:90:a7:c3:da:db:95:5b:33:f1:c9:
ed:47:3d:6f:a5:cd:43:9c:78:0c:7b:07:6c:2d:d9:
9f:9b:eb:45:b2:34:5e:5a:d8:b9:c9:21:95:82:06:
3e:fd:2e:dc:54:4b:c4:26:82:ca:14:ec:1b:ad:cd:
fe:55:89:d6:4a:fd:65:e9:20:59:95:43:00:0a:1a:
3f:e9:5d:03:76:30:aa:d3:71:4d:57:99:78:67:60:
55:bc:05:ee:fe:c9:03:62:14:b0:ae:2c:7b:9f:d5:
3b:dc:5b:0f:7a:c6:60:35:16:07:f5:b1:b9:8d:64:
e1:13:d9:59:ff:e8:3c:ab:f7:b0:24:8d:5c:e7:94:
37:a2:a3:d7:4b:91:41:a3:76:e5:64:06:cb:ec:98:
87:57:64:52:2a:60:4f:e5:13:3b:46:af:84:05:bb:
b1:d8:f9:30:28:f7:cc:eb:d8:e3:05:44:c1:90:cb:
5f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9E:41:F4:0B:E3:9D:D4:C4:BC:C8:40:29:80:DF:E6:AE:2E:CE:A8
X509v3 Authority Key Identifier:
keyid:0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:85:19:f4:4a:6a:c0:42:83:5b:f2:e2:4a:3a:95:33:21:69:
44:1d:15:2d:79:ce:5a:93:7b:0d:de:4f:da:60:04:38:65:f2:
11:62:21:fd:58:95:40:0c:54:f7:f0:91:ce:8c:19:f8:7b:68:
31:c9:e2:54:27:d1:bf:b6:fb:fe:82:36:9a:29:06:88:8a:e9:
95:4e:e5:13:a8:34:3d:56:aa:3b:62:12:af:d8:24:a3:83:a1:
d8:83:4e:ce:02:a3:a0:bf:15:88:50:a6:57:3d:d3:3e:41:6b:
ec:ad:97:10:01:41:ca:a3:2e:e0:b1:82:2e:a6:c9:c1:7f:17:
e2:9e:d1:46:c7:fa:0d:51:a6:97:4a:28:32:11:68:92:a4:ed:
a0:6d:93:d3:65:35:e4:48:91:79:cd:b6:f2:fa:a6:51:b2:2d:
57:3e:3e:41:87:6c:07:b6:32:ae:84:05:e0:07:1f:89:cb:b5:
91:4e:a7:ca:23:af:85:a8:91:d0:09:18:4e:b6:a3:6e:c3:24:
6b:0e:ba:68:61:b6:d2:d0:e7:69:fe:70:0c:4c:1a:79:60:32:
3f:a5:a3:2d:2e:ed:10:3c:0f:75:4e:bd:f4:13:20:4b:98:6b:
3c:c2:69:d6:7a:2d:81:08:1b:09:2a:79:bf:57:84:b3:3a:6a:
c4:d7:d9:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:21:42 2025 by rpki-client