Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
File: qwJca7PczxsWUUnChzwEsabH2no.mft (raw, json)
Hash identifier: kt5lW1h3cu+9l2yeDp9WY8VuwdwnXHPKBW3ompXUwZk=
Subject key identifier: 01:94:F2:0E:BC:AB:41:77:84:3E:CA:F2:E1:7C:9E:02:FD:95:94:F2
Authority key identifier: AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
Certificate issuer: /CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Certificate serial: 0197488D33B9E7F604775667BA62D658D9E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
Manifest number: 0A38
Signing time: Sat 07 Jun 2025 04:01:42 +0000
Manifest this update: Sat 07 Jun 2025 04:01:42 +0000
Manifest next update: Sun 08 Jun 2025 04:01:42 +0000
Files and hashes: 1: qwJca7PczxsWUUnChzwEsabH2no.crl (hash: bUQJ0c9EymMlL/ZlYZfV+mjgP4vJpFZGBEKJn06IxLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:33:b9:e7:f6:04:77:56:67:ba:62:d6:58:d9:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Validity
Not Before: Jun 7 04:01:42 2025 GMT
Not After : Jun 8 04:01:42 2025 GMT
Subject: CN=0194f20ebcab4177843ecaf2e17c9e02fd9594f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b4:65:a6:91:19:32:ce:a6:40:88:02:ec:f6:
ce:78:74:fe:66:20:72:95:86:80:8e:60:28:d5:90:
71:0e:3e:98:d3:65:6b:80:7f:f7:42:67:5e:a3:0d:
d4:41:8d:df:9e:b7:c8:6b:9d:98:9f:4d:8d:97:8f:
a5:5e:77:ef:87:a6:ca:ce:f5:c7:f8:94:22:62:b9:
78:81:d5:4c:a8:7a:33:ed:14:d3:29:64:d7:51:d1:
ca:4b:a3:fe:44:79:a8:4c:51:0f:8f:70:de:fe:98:
58:17:4f:11:b4:56:be:00:f9:13:8f:75:c1:15:af:
e8:ac:4e:aa:f9:14:3f:1d:7f:59:b1:e2:98:2d:0a:
d4:ff:ed:8f:9e:ea:5c:50:74:06:da:3b:72:4c:72:
27:2d:f2:96:3f:b0:e2:6a:e1:62:33:24:40:ee:e2:
53:b7:e8:eb:58:a4:6a:1d:2b:de:87:e2:09:9c:99:
26:68:ae:2f:68:6a:fc:c5:01:0d:69:6a:a4:1c:61:
33:a8:26:60:00:e3:c9:24:a8:0a:dd:2d:e1:60:f4:
33:3b:da:07:0a:54:e8:5a:72:55:97:8c:ff:99:80:
2e:db:37:2a:ef:b1:7c:72:04:af:dd:b3:98:60:de:
f7:24:8f:ed:3e:5d:78:3e:f1:31:bf:1d:12:cc:83:
3e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:94:F2:0E:BC:AB:41:77:84:3E:CA:F2:E1:7C:9E:02:FD:95:94:F2
X509v3 Authority Key Identifier:
keyid:AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:1c:7c:d3:87:b1:ef:99:b8:1c:ea:83:e6:d2:64:d1:95:e1:
bf:b2:1e:46:7d:c4:07:06:93:18:aa:c1:d5:7b:06:6f:60:27:
3c:10:c2:7b:68:93:62:c1:0d:a6:1a:4c:4d:d4:e0:10:89:b5:
ce:23:70:77:a6:84:c1:a7:d1:06:e0:a3:29:89:d0:8c:b8:82:
fe:57:91:54:b6:45:d4:97:0b:32:a2:c2:ce:8c:69:80:08:81:
87:b1:74:9d:8a:63:ca:9e:79:45:98:47:e6:69:c6:4c:22:6a:
91:b5:b3:76:97:37:9c:f2:c1:51:b6:7a:0a:8a:4c:90:73:61:
5d:00:28:07:aa:45:0e:f8:ef:cf:72:24:8e:26:f2:40:63:71:
53:52:34:8b:11:be:91:4a:19:29:fc:7d:c2:a7:0c:c3:9e:34:
91:82:42:53:a5:57:1d:41:25:eb:68:41:fe:85:69:ef:51:18:
76:7d:2a:05:8f:0c:2d:ee:d6:b1:8e:93:7c:45:d4:52:60:1c:
13:79:70:06:da:13:19:25:9f:fb:92:70:ca:23:c7:6b:05:e9:
e9:c0:a8:8e:f9:13:10:82:aa:46:3f:3c:3f:b1:35:f9:97:92:
50:9e:20:20:e3:ce:e2:f5:0b:29:9f:a7:8d:95:ab:e0:da:98:
47:82:bc:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:48:36 2025 by rpki-client