Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
File: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft (raw, json)
Hash identifier: CblWSZm4soDggrB+Vmv6L3T9DWxq/Yd84F++rSjxoQs=
Subject key identifier: 7D:70:6E:60:D4:3C:41:16:DC:24:79:CD:B3:79:2F:FD:C4:EC:3C:3F
Authority key identifier: 43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
Certificate issuer: /CN=43d518d7307788fca3891878490e4f32d9aaf6af
Certificate serial: 01974AB1B1AC09BDC09FDA9F941FEF1D9833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
Manifest number: 0FC7
Signing time: Sat 07 Jun 2025 14:00:48 +0000
Manifest this update: Sat 07 Jun 2025 14:00:48 +0000
Manifest next update: Sun 08 Jun 2025 14:00:48 +0000
Files and hashes: 1: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl (hash: Ehp+h7t+Sr9B8l4W8J97jtRDoaNqZGYOk6VxzZuvP7Q=)
2: hOsUXVARCl8NqYdv3cI6OIcfqwU.roa (hash: w1gjvrKQRUt3hmiD9OYkOr05DsegCS6tRj5zStTTlPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:b1:ac:09:bd:c0:9f:da:9f:94:1f:ef:1d:98:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d518d7307788fca3891878490e4f32d9aaf6af
Validity
Not Before: Jun 7 14:00:48 2025 GMT
Not After : Jun 8 14:00:48 2025 GMT
Subject: CN=7d706e60d43c4116dc2479cdb3792ffdc4ec3c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ec:1a:bb:08:70:7a:62:35:34:72:7f:dd:74:
0b:99:75:f9:5a:45:b8:9d:ea:9c:18:63:85:59:80:
0b:68:f0:42:59:b7:5e:c0:d9:17:fd:45:8e:18:e0:
f8:1f:8a:19:8b:32:73:08:cb:87:b6:bc:57:75:b4:
0d:ba:f2:67:61:a2:c7:67:bb:9f:ff:23:4c:1d:95:
62:cc:51:98:10:e8:10:49:d9:43:c0:a9:40:f3:ec:
b7:64:0a:0a:29:13:79:3d:3a:a5:d5:d8:d2:54:3e:
0f:d7:92:9e:a7:e4:76:d2:dc:76:57:59:24:96:7f:
01:17:ef:52:03:71:ee:5b:f8:6b:21:71:5d:31:64:
16:c0:6a:2b:2f:cb:89:1a:5a:7d:aa:5c:8f:8d:99:
fb:eb:b1:ff:3f:62:fd:57:98:c7:d6:b5:6c:e6:90:
74:0b:63:10:df:f9:e1:74:c8:ab:77:e8:4b:b1:00:
1d:94:1b:46:b8:82:32:42:c4:a8:0d:fc:93:07:ca:
4c:bb:1a:e1:03:e9:9c:9a:8a:49:a1:39:bb:e0:0a:
2e:15:a7:cc:1c:b6:ec:15:38:d2:59:5e:a3:70:6b:
c1:dd:f0:ea:4a:9c:9f:7c:74:5f:0e:50:1d:aa:23:
e8:2e:eb:14:3b:e2:30:1d:e8:af:9d:f7:89:43:c1:
6c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:70:6E:60:D4:3C:41:16:DC:24:79:CD:B3:79:2F:FD:C4:EC:3C:3F
X509v3 Authority Key Identifier:
keyid:43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:cb:31:3e:dc:e6:27:70:fd:8b:9e:cb:cb:f5:f0:ab:c7:aa:
3f:0e:4c:11:82:f4:80:38:7c:2b:10:f2:23:26:53:00:c5:31:
08:f8:fa:40:96:6b:92:dd:8b:62:86:2a:a3:9f:c9:e9:ec:a1:
b9:76:c4:b9:72:d0:bf:8d:e6:ea:4c:4b:25:23:73:6f:3d:96:
c2:98:c9:9d:a5:0f:91:34:fa:ea:1a:d2:5d:1b:02:cb:82:f8:
d7:8b:6f:b4:b3:b6:58:c6:5d:b0:37:81:b9:51:9f:be:bb:c7:
f6:58:8f:2d:b6:c6:10:9a:7f:06:2a:16:f6:fa:24:ac:98:38:
97:5b:ba:29:65:ec:fe:db:69:5d:31:73:f9:63:27:39:82:22:
8d:3c:f6:a4:65:fa:a6:61:36:6b:f5:de:d9:2b:e3:c4:55:c6:
da:07:f6:15:e7:c0:23:f0:5b:ec:44:00:37:0f:4f:72:70:be:
c6:92:1b:52:83:b8:ca:f6:9c:b2:b0:1f:07:64:d8:22:ef:a8:
31:5d:28:4f:7e:81:71:34:24:f2:3d:0d:70:6b:e8:26:24:ab:
d7:be:62:99:e7:c0:0d:75:25:45:72:aa:a7:ab:05:16:5a:80:
35:4b:c0:5e:3b:cb:22:5a:e4:5b:46:6b:aa:f3:19:1c:b4:17:
82:32:f1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:12:17 2025 by rpki-client