Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: 3g7DT84tRlrpJBy+YXAkFQBNrHYdyT0DUlKNeLTmwxA=
Subject key identifier: AF:B4:83:6A:B5:F6:8B:04:80:B6:14:AE:5B:39:97:FE:0C:2A:65:51
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 019746D4C4CEF9DD1B602C574ADCD615509C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 157D
Signing time: Fri 06 Jun 2025 20:00:38 +0000
Manifest this update: Fri 06 Jun 2025 20:00:38 +0000
Manifest next update: Sat 07 Jun 2025 20:00:38 +0000
Files and hashes: 1: Diq6O5ga68_B8MEC7x3IDqn6lbc.roa (hash: r+Ep1MU6KZ691K575NCgrIa7fSiICzMjhV/0OlU71vU=)
2: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: tdCS9FbJfzW7g8CjeDNIa0MbHMTfWvHxszIEcSXegys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:c4:ce:f9:dd:1b:60:2c:57:4a:dc:d6:15:50:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Jun 6 20:00:38 2025 GMT
Not After : Jun 7 20:00:38 2025 GMT
Subject: CN=afb4836ab5f68b0480b614ae5b3997fe0c2a6551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a1:59:ea:77:41:d3:e9:20:c7:c0:d3:87:57:
53:5e:dc:92:d2:6b:d1:ac:7b:1f:dc:3e:a0:9b:69:
7b:fc:14:77:53:d9:d2:78:6c:79:87:e7:5b:34:d2:
15:e2:b3:80:81:0d:55:de:f2:3d:2f:59:c6:fd:8a:
d4:89:d1:3a:8f:76:a5:7f:57:da:07:5e:cf:1f:54:
26:39:fc:7e:45:33:f9:ea:78:98:f7:0a:6b:21:f4:
ae:ca:a7:ec:b6:5f:f7:2b:11:c3:08:bc:a7:92:b0:
8e:d0:9a:6c:0e:80:fe:58:3e:f4:2e:04:3e:46:21:
f7:1b:3f:ff:11:25:ab:6f:b3:66:58:ab:b4:3c:ef:
b3:b2:f8:2e:cc:4e:d2:5c:55:d2:f4:bc:91:fd:7a:
19:0b:52:0b:17:31:8c:6b:47:14:db:7b:ca:1e:02:
29:37:24:36:f8:46:6a:bf:5f:19:b3:19:8a:15:f4:
61:24:1c:fe:7b:ee:86:a2:b4:42:d2:c7:0c:32:dd:
9c:c2:c7:10:0f:20:c7:3f:a1:a1:20:a8:65:0d:84:
d1:0e:6b:ac:4e:ff:6a:bc:81:b7:38:4c:58:9f:8b:
a3:bb:e6:63:ba:14:65:6c:1b:b4:e0:c1:7f:2d:e8:
f3:0b:1e:13:9d:ec:9e:0f:c6:df:fc:01:12:8c:9a:
fb:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B4:83:6A:B5:F6:8B:04:80:B6:14:AE:5B:39:97:FE:0C:2A:65:51
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:86:2f:89:9e:34:d5:4a:cd:af:06:76:6d:a8:57:08:e8:02:
40:5d:83:85:ba:5b:c5:6f:cd:c2:b1:19:ae:3a:d2:94:9c:1a:
a5:31:64:25:3d:51:8e:4c:9e:39:9e:b2:46:80:aa:ef:e5:e9:
b9:44:95:fd:0a:83:4b:dd:b9:07:7f:60:e5:f8:d3:db:e2:01:
e1:0f:1a:0f:cb:f9:a1:b7:8e:7d:f0:1e:65:41:df:71:4a:f5:
bb:c9:d5:40:f8:b5:61:e9:8e:1a:fa:20:46:f2:e9:22:3d:32:
ed:22:42:7c:fd:35:c9:f7:e5:fa:e7:28:65:1b:17:b8:c4:82:
eb:51:95:e7:c3:8c:47:f5:03:d1:c1:07:68:72:56:92:f9:17:
2a:b3:2a:4d:f2:3d:eb:3d:0a:48:30:a8:48:95:e9:25:95:77:
63:3e:69:63:f3:6c:a6:ed:8a:35:a9:2b:99:67:f6:dd:28:06:
61:27:e0:c3:8d:da:a5:8e:1a:0a:95:c5:c5:6e:59:fd:eb:67:
be:f3:3e:72:fa:b2:eb:42:12:25:25:96:5e:b0:7b:3e:3d:5b:
fc:07:82:9c:b6:87:38:5e:a9:9a:d7:d4:e4:ba:0d:71:ce:ee:
99:20:01:2f:82:9a:c2:de:47:c2:6f:ac:a6:95:2d:63:57:0d:
e1:6f:60:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:00:21 2025 by rpki-client