Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: yc1kFsltAdonBZy3p9AIeSsaFVVCuO8sMqJ6W78XPRI=
Subject key identifier: 68:8F:65:C0:A3:A6:BD:FE:E3:ED:A6:A6:0B:75:73:AF:07:3A:65:83
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 019749314470EB4E73DE72CA1F75747301FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0D70
Signing time: Sat 07 Jun 2025 07:00:54 +0000
Manifest this update: Sat 07 Jun 2025 07:00:54 +0000
Manifest next update: Sun 08 Jun 2025 07:00:54 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: HRdokolV660IMy0smS8Tv0TD+5oI4Q/HIS2fssP5F4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:44:70:eb:4e:73:de:72:ca:1f:75:74:73:01:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Jun 7 07:00:54 2025 GMT
Not After : Jun 8 07:00:54 2025 GMT
Subject: CN=688f65c0a3a6bdfee3eda6a60b7573af073a6583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e4:d5:17:27:e1:6f:30:a4:f8:3c:e9:10:cb:
c4:65:8e:28:b7:cb:d1:84:5d:88:3b:8d:ad:75:29:
76:4a:12:80:cb:4e:ce:c1:e6:68:21:28:d2:82:b4:
45:58:18:4d:5b:7f:48:51:12:3c:b9:d9:48:7b:f7:
87:7c:5b:95:86:3b:49:4f:06:79:3e:84:9c:91:f8:
28:72:27:ab:de:b6:20:02:3d:40:d8:a1:12:0f:3d:
b6:11:d1:ea:0b:9e:08:0c:4a:32:20:e3:0d:5a:db:
d1:b8:19:3c:06:31:34:ac:36:14:43:00:22:fc:53:
75:57:bf:78:d9:00:dd:a5:0f:ee:95:60:82:c8:74:
03:7d:e7:16:8b:c7:84:06:ed:da:f1:63:a3:27:09:
b2:c0:3d:1f:b9:1b:5f:61:93:cb:8e:ee:63:65:f9:
ce:13:04:d5:39:89:97:c8:37:9c:da:37:56:d6:97:
60:2a:ae:ed:61:27:82:62:0b:69:a0:b1:e8:1a:0e:
8f:97:99:5c:6f:b0:4e:bd:f5:90:09:a3:e5:f9:8f:
71:13:f4:99:14:fd:6b:7d:6f:ee:6f:3a:ad:4e:53:
15:4c:7e:1f:26:2f:8e:35:01:2a:5d:74:87:a3:7f:
f5:10:50:92:16:20:2c:a3:47:fd:92:d4:60:58:24:
85:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8F:65:C0:A3:A6:BD:FE:E3:ED:A6:A6:0B:75:73:AF:07:3A:65:83
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:95:30:10:18:a6:72:66:2d:21:e8:7f:86:2c:a9:4e:44:14:
d6:96:41:51:2a:60:60:97:0b:ee:74:5d:c9:04:05:61:1e:b1:
87:a1:e7:47:41:92:11:53:54:ad:96:9e:b2:03:e1:16:d6:de:
2d:cb:44:ab:90:38:97:c1:50:36:53:b1:04:ce:1d:2b:3b:5e:
80:24:b1:2f:70:9a:96:a7:c2:51:46:9e:ff:05:80:8a:b8:74:
c5:d6:25:43:41:aa:7e:ac:73:49:c4:fd:6b:ab:4c:37:04:b8:
ef:31:41:e3:9c:97:34:ba:48:27:a8:59:8b:ad:9f:05:eb:8a:
85:77:12:b4:f5:db:9e:55:a9:4a:e6:00:85:e6:2c:52:7e:96:
c7:dd:e6:bb:39:aa:7a:e8:bc:52:68:bb:5e:2a:d3:82:5a:a5:
31:6b:d1:4d:32:8f:b4:ce:52:3b:75:4e:4b:14:16:0c:75:60:
82:f5:ba:71:f9:54:27:66:d6:a7:fb:81:7a:b3:08:b6:93:e2:
f2:29:eb:5b:76:77:0d:75:4d:59:f5:ef:57:5c:bc:c8:c4:c2:
f7:5a:f2:d6:49:5a:47:9a:9d:0a:59:6c:47:e2:87:05:fa:79:
89:c8:a2:ef:08:31:40:e9:2c:da:99:8d:f0:4c:45:c1:40:b0:
fd:69:fd:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:47:41 2025 by rpki-client