Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.mft
File: QA3igTHHO19TIPUdrmwb1Hq4L5I.mft (raw, json)
Hash identifier: 3y6jk93dRvb49hgieAflpHkNlilfN6pEdjLJx9W5lnk=
Subject key identifier: AE:5A:9D:99:63:1B:CD:F5:41:E5:79:DE:B0:40:90:19:FE:A0:47:4E
Authority key identifier: 40:0D:E2:81:31:C7:3B:5F:53:20:F5:1D:AE:6C:1B:D4:7A:B8:2F:92
Certificate issuer: /CN=400de28131c73b5f5320f51dae6c1bd47ab82f92
Certificate serial: 01974D7C2B43D09F20CA9FEE175778A19E2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA3igTHHO19TIPUdrmwb1Hq4L5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.mft
Manifest number: 0284
Signing time: Sun 08 Jun 2025 03:01:12 +0000
Manifest this update: Sun 08 Jun 2025 03:01:12 +0000
Manifest next update: Mon 09 Jun 2025 03:01:12 +0000
Files and hashes: 1: QA3igTHHO19TIPUdrmwb1Hq4L5I.crl (hash: nvMp4ovH3QkDYvZWJKIy4cQ3PxAOyYaCkwvsfO35MIU=)
2: YPXVOgtlv47MULpqvQ2eiJqw0s0.roa (hash: 1U3YQJEvDPze+SY3FCaghiXBlRWFSFhPdqgWDRzyuw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA3igTHHO19TIPUdrmwb1Hq4L5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7c:2b:43:d0:9f:20:ca:9f:ee:17:57:78:a1:9e:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400de28131c73b5f5320f51dae6c1bd47ab82f92
Validity
Not Before: Jun 8 03:01:12 2025 GMT
Not After : Jun 9 03:01:12 2025 GMT
Subject: CN=ae5a9d99631bcdf541e579deb0409019fea0474e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:03:f1:5c:5f:05:81:9d:e2:e6:ec:0f:29:9a:
76:24:9c:82:fa:1e:77:e4:17:58:06:45:68:89:07:
ee:0a:fa:8e:62:92:c8:88:dd:ca:b4:d2:a6:dd:d9:
40:4a:3c:c3:4e:ae:d9:3d:0c:04:c7:4a:60:24:02:
ad:9c:07:5c:6e:31:dd:46:b3:1d:2e:d8:4c:64:98:
37:c6:87:63:82:2b:2d:91:e4:f0:d9:ab:15:bd:c2:
76:40:05:d7:51:28:a9:45:a7:a5:a2:f3:8b:ad:ae:
f7:c2:c0:5c:c7:00:90:60:02:30:62:d6:9e:1d:c4:
18:a1:58:74:55:38:2a:af:9e:26:27:9f:8c:05:9e:
e9:08:41:6a:77:df:fc:f3:3c:87:ab:f2:02:d8:03:
ff:ba:06:23:03:fd:fc:d2:89:fc:6b:27:2a:54:4a:
77:4f:63:6f:24:b3:5a:a4:a1:df:97:84:7b:17:92:
ae:26:2e:3d:c4:00:dd:59:03:04:74:e1:3c:0f:e8:
f6:ca:2a:fe:8f:35:40:a6:97:a4:4e:5f:5b:f4:46:
da:a8:c3:36:78:02:3b:0f:69:8d:f7:fc:91:77:8e:
fa:55:60:8f:46:c2:77:74:e0:43:63:42:32:de:31:
87:04:25:a8:e8:ef:94:5a:fb:e3:3b:6a:40:eb:d4:
89:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:5A:9D:99:63:1B:CD:F5:41:E5:79:DE:B0:40:90:19:FE:A0:47:4E
X509v3 Authority Key Identifier:
keyid:40:0D:E2:81:31:C7:3B:5F:53:20:F5:1D:AE:6C:1B:D4:7A:B8:2F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA3igTHHO19TIPUdrmwb1Hq4L5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:b6:a4:9c:9b:36:bc:5d:02:8c:0b:96:63:14:9e:6c:3a:3d:
b1:e3:b3:ad:0d:a1:16:a7:d5:09:3e:1e:22:15:0f:bc:76:37:
68:39:34:6d:b3:27:75:03:3b:fc:c9:27:c1:96:ee:20:ba:82:
df:d8:3a:6e:d4:a4:83:03:b7:74:9b:0d:88:66:1d:50:d6:94:
da:e8:e7:3d:85:69:e1:b9:c0:f9:82:b7:d4:d5:3b:71:0c:33:
3a:0b:f8:e2:dd:7a:94:49:ac:86:97:90:27:80:de:c1:aa:f3:
d6:7c:7d:67:9c:52:3a:3b:4e:be:17:1b:fd:81:b3:4d:f5:9e:
0e:b9:fd:a6:9b:30:87:0c:49:c5:54:d3:97:f1:8a:08:5d:cf:
3f:b8:82:00:b3:1e:74:a6:3e:7b:a6:cb:01:61:0d:ca:6b:c8:
74:7c:09:7c:52:af:84:88:8c:91:55:0f:e8:26:8f:e5:09:49:
b2:10:a1:3c:0c:c4:55:24:77:5a:5d:73:2d:34:a5:5a:5f:54:
55:fe:0d:ca:2d:19:cf:d0:aa:fc:63:fa:14:2b:d5:01:2d:c3:
d0:a6:2b:4c:4b:11:07:a9:8b:00:9f:5c:bb:e8:2f:04:e9:f5:
dd:48:7f:99:d9:98:04:65:13:b4:2f:e0:1e:54:5e:a7:7a:14:
c5:25:62:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:47:44 2025 by rpki-client