Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: 9cPQ+Lbp0VQfJLjXd+NP2fze+4fnRu1vRHprmodXp18=
Subject key identifier: 06:BB:C3:F7:12:50:19:13:75:B8:8F:DC:DA:09:3A:24:3B:F2:F3:FF
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 01974FD7E18911CDF96D1DA2AE785D652658
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 0904
Signing time: Sun 08 Jun 2025 14:00:37 +0000
Manifest this update: Sun 08 Jun 2025 14:00:37 +0000
Manifest next update: Mon 09 Jun 2025 14:00:37 +0000
Files and hashes: 1: PTvQgS1qnjLwo9s4LdFb_Ohs-14.roa (hash: ISrdGe09G63GrIhvFHUR6KGbQ/gtnJbbuoeTtm56a1E=)
2: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: I5OTuXZstyVGvK7uAvgeE9wUlhxMxswnKARm3UVymh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:e1:89:11:cd:f9:6d:1d:a2:ae:78:5d:65:26:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: Jun 8 14:00:37 2025 GMT
Not After : Jun 9 14:00:37 2025 GMT
Subject: CN=06bbc3f71250191375b88fdcda093a243bf2f3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f0:47:e6:8f:6c:ee:9b:54:28:34:ba:64:c9:
2f:1a:cb:47:70:25:35:62:40:f5:94:0b:f9:6e:fe:
d8:75:cc:8b:35:1a:64:a6:07:76:f4:96:63:d0:47:
9e:38:99:3b:29:4e:5a:8a:fb:d1:f4:82:44:1b:25:
48:ae:80:b2:5b:cc:5a:ef:61:b3:42:65:da:18:c1:
a7:e5:39:29:dc:18:ae:5a:3c:46:04:fa:be:9b:85:
c5:07:31:8f:f4:9c:bd:fd:cc:35:de:12:78:9c:78:
90:d2:27:8e:23:2f:e8:ef:ed:09:d1:ab:d7:ea:97:
a1:86:da:7a:3c:64:95:60:ec:ad:1d:1f:89:55:ca:
89:ad:15:4d:0d:45:cb:4e:04:35:c1:94:d8:8c:ef:
39:c0:80:f7:8d:0d:5e:f9:63:bf:55:34:1a:f6:3b:
e8:38:66:2f:17:1a:4e:da:1b:34:b1:ad:d0:6b:cd:
9c:23:a0:2f:d2:2f:22:11:13:04:c8:80:2e:1b:e8:
14:cf:ab:28:11:4d:2b:e4:fc:60:62:5e:ad:e1:33:
38:61:3a:12:95:5b:1b:20:81:52:81:38:db:46:fa:
3b:d4:6c:9d:07:13:9c:25:bf:15:c3:4a:98:e5:40:
d4:da:e1:89:50:7b:50:af:7e:e8:07:b4:f3:3b:7d:
75:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:BB:C3:F7:12:50:19:13:75:B8:8F:DC:DA:09:3A:24:3B:F2:F3:FF
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:e5:d6:c8:95:df:68:31:0f:2e:e9:15:a0:70:c0:d6:77:92:
65:c6:d7:c1:f8:ac:86:27:cf:3c:45:d7:41:13:ab:51:df:cd:
c9:7f:c5:92:a7:cd:c5:15:e5:c9:19:1b:a0:7d:66:dc:84:00:
53:ae:34:53:4f:cd:e0:bb:b8:09:62:76:91:95:3b:e9:3a:b0:
b4:1f:7b:7b:3f:7c:34:95:17:d4:66:83:c7:3c:dc:27:3d:0e:
09:22:99:6d:50:5b:9e:8f:c7:4e:75:fd:fe:74:9b:df:d1:b5:
4f:26:16:02:e2:67:6e:46:27:8e:64:3e:6a:5a:66:d6:3e:b1:
81:ce:33:53:1d:88:1b:a8:73:b6:ad:58:25:05:b1:71:78:66:
27:51:dc:98:f1:65:12:c5:4a:48:8d:36:56:f7:75:b6:c5:fb:
51:d6:09:5c:e0:66:31:e3:ca:1e:56:44:a1:36:81:c1:2c:3a:
63:32:36:87:02:8b:b7:dc:1f:97:8e:be:c4:43:c1:2c:da:10:
be:77:4a:ca:0e:04:c5:c4:b4:fe:5a:4d:9e:3b:5c:f0:9d:0b:
86:7c:c8:da:9f:41:29:64:d0:22:17:c3:f5:37:bd:83:b1:1d:
56:4c:f6:0c:a9:66:f8:68:9f:9b:f4:7b:d7:bd:2c:59:35:01:
e4:14:92:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:22:17 2025 by rpki-client