Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
File: qklDGDthG-Ogd1OCUJSQBIsK1zg.mft (raw, json)
Hash identifier: 1ftLc4hlkGMxmTLFRmIjf6XIyQ5Z3yq8TTd9PA04T+8=
Subject key identifier: 06:43:D2:90:EE:ED:82:5A:DA:88:25:F1:30:32:2B:3C:E8:25:84:F7
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 0197499F3FB29565A19FA6BA7B5EE236962A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 09:01:02 +0000
Manifest this update: Sat 07 Jun 2025 09:01:02 +0000
Manifest next update: Sun 08 Jun 2025 09:01:02 +0000
Files and hashes: 1: _b9uzDBnaBhrr4RiKYd-HrjhIyY.roa (hash: zuVo5YCjE6oxIWEPlMV6dA4fTWapSfHiFlgPsUG/qhk=)
2: qklDGDthG-Ogd1OCUJSQBIsK1zg.crl (hash: 9Tx7xPDoammDHSekZSt+4O1H6WEIA3mNxxrRne4m5ss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:3f:b2:95:65:a1:9f:a6:ba:7b:5e:e2:36:96:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Jun 7 09:01:02 2025 GMT
Not After : Jun 8 09:01:02 2025 GMT
Subject: CN=0643d290eeed825ada8825f130322b3ce82584f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a0:64:73:87:5e:24:82:1b:5a:34:1b:9d:7c:
a2:a6:be:b0:36:81:53:1e:2c:a1:40:3c:1d:51:17:
ab:2c:f6:74:e7:2b:51:98:3e:44:61:7c:7c:2e:18:
30:6d:e9:1d:61:82:78:da:7e:23:a7:c8:12:0f:f8:
7a:33:92:55:2e:59:1d:f6:b1:de:3f:5b:67:fe:3b:
d6:7a:4c:77:29:3c:93:d6:62:75:fc:68:33:5a:fb:
b8:91:16:88:f3:cb:ea:39:e7:3b:47:16:79:c5:7d:
7c:b4:03:6c:f0:d6:a4:4a:fd:1e:c2:be:e9:1d:e2:
02:0c:35:6e:99:50:52:9f:09:4d:9a:5f:9e:d8:28:
38:43:1d:97:ab:93:5c:42:e1:86:82:fa:0a:5d:45:
90:97:9b:12:0d:69:fa:d5:4b:a0:50:4f:ff:cd:13:
67:90:dd:9e:18:8c:d0:4b:5e:07:35:b4:de:de:bb:
39:b9:2d:6e:72:c3:c4:a8:56:bd:04:73:92:da:91:
61:5f:61:86:1c:87:7e:72:69:ca:d8:6e:72:45:13:
fe:de:89:0e:6e:47:fd:d7:7e:94:a1:bf:48:16:e1:
78:d9:ea:cb:ee:68:bd:c0:45:df:19:68:2f:e7:46:
91:a4:f0:64:e5:3c:06:b3:59:68:e9:9f:9a:0b:6f:
1a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:43:D2:90:EE:ED:82:5A:DA:88:25:F1:30:32:2B:3C:E8:25:84:F7
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:85:18:f9:e7:ec:22:e0:10:3d:8d:79:62:fd:4d:fd:33:ff:
51:32:e0:1b:0f:60:a6:6d:58:54:58:a3:89:73:5b:53:35:c8:
78:34:2c:e2:b2:f1:85:fc:f9:bf:32:cd:30:cf:0a:a2:2a:7a:
df:a6:b1:05:10:dc:e9:6a:a0:c0:6b:77:6e:28:dc:34:63:91:
76:2a:46:f0:57:4d:58:d8:30:31:31:9f:4d:ad:7f:c6:85:da:
1b:37:70:00:69:79:4f:e9:fa:ba:c4:18:5d:2b:69:a2:d3:6b:
67:5f:92:73:ff:d0:be:c5:48:6b:d9:03:44:4f:c4:bc:a9:d2:
f2:b4:f3:ad:4e:d7:60:a1:88:25:0c:33:31:e5:47:2e:39:d0:
ae:59:1b:88:bf:12:ef:41:51:b8:20:71:ac:38:04:4e:0b:a1:
28:89:72:fb:3f:d6:80:cb:72:d6:93:35:71:a7:2f:82:8d:53:
b0:1d:de:c2:47:39:8c:8d:10:ff:e8:31:0b:48:e8:a5:b3:a8:
a8:00:54:42:95:2d:9c:83:70:37:d1:49:26:40:ee:b4:58:ff:
68:93:90:86:ba:61:a9:bd:b4:1f:52:dd:80:d8:65:9e:cf:8c:
d6:0c:aa:90:ac:f7:e6:fd:5e:ed:45:0b:f8:08:9b:bc:8e:5e:
98:40:b4:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:54:10 2025 by rpki-client