Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json)
Hash identifier: 9WWF4Q05hsTjqsiLftoq/gqtkBw6NbYiKpK5ws+NAQA=
Subject key identifier: 0C:B7:D8:CA:37:44:BB:C1:87:C9:20:3F:2C:03:D1:FB:E4:89:A9:F6
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 01974BFB8815A17A7AFE6B811336DB892A88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 20:01:04 +0000
Manifest this update: Sat 07 Jun 2025 20:01:04 +0000
Manifest next update: Sun 08 Jun 2025 20:01:04 +0000
Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: Phw4j1pqphM8dnhogrUNXefVEYRuG+9vM4of79eUucI=)
2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:88:15:a1:7a:7a:fe:6b:81:13:36:db:89:2a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: Jun 7 20:01:04 2025 GMT
Not After : Jun 8 20:01:04 2025 GMT
Subject: CN=0cb7d8ca3744bbc187c9203f2c03d1fbe489a9f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a8:99:5c:1e:5d:ef:c9:29:d2:32:8e:9c:5e:
3b:29:a1:0b:e5:d4:15:84:02:36:b9:83:84:bf:ca:
42:92:36:37:63:5f:0d:2d:41:81:37:49:52:83:93:
5d:62:bb:68:e1:6a:c3:8f:c3:d0:71:06:88:80:aa:
69:01:2a:2b:c6:5b:a3:23:24:5f:3c:2a:87:9e:dc:
e1:77:d3:fb:43:e1:04:9d:19:f6:09:4f:b4:a7:cc:
21:f6:b3:38:92:57:88:6c:51:97:e7:ae:0a:82:a4:
d5:92:3b:17:cd:99:db:0a:bb:9e:db:2e:03:65:2c:
0a:7c:1e:79:41:50:34:51:1d:59:b6:25:2a:19:da:
d3:51:44:e1:dd:cc:d3:5f:04:c3:01:4b:88:a7:69:
3c:34:25:bd:24:9e:2f:c6:89:9b:28:0f:eb:6e:74:
31:e6:f2:61:96:11:d7:ae:9a:1a:63:1c:67:a2:30:
29:71:8b:a5:4e:9d:74:f5:08:1a:24:81:6d:2c:38:
87:31:35:5a:8d:d0:43:fa:0f:5b:2c:b1:db:f0:59:
c2:7b:ff:63:58:05:f2:6a:09:19:31:db:16:15:32:
69:a1:9c:8b:05:1a:95:e0:7d:ce:72:ce:91:0e:54:
0e:61:5d:58:80:f3:ca:e2:58:57:20:81:fb:55:e6:
b3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B7:D8:CA:37:44:BB:C1:87:C9:20:3F:2C:03:D1:FB:E4:89:A9:F6
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:28:89:10:2d:5a:7f:29:22:b7:a5:5d:f3:00:0c:ff:5a:7f:
e0:e5:32:cf:d0:51:db:e0:2a:12:1f:72:3f:9d:42:ed:c2:2c:
96:18:ee:f1:ae:ce:f2:1c:e1:21:c9:45:98:bd:b2:40:1b:58:
f1:05:3b:f7:2c:29:be:9b:12:64:95:af:6b:0e:fa:0b:d3:a4:
d6:f4:b6:f5:c6:80:df:53:5e:e1:07:e6:79:d2:0b:ee:1e:b4:
3a:71:b7:b0:9b:86:f8:5f:a8:f7:60:1a:4f:de:b9:fb:12:95:
a5:6e:24:8b:c2:4a:e6:4f:d9:45:27:db:2e:4b:ac:73:af:c2:
3c:06:a6:1c:35:50:59:bf:c6:54:d0:e3:d4:a1:0b:89:dd:c9:
15:d7:4e:85:35:79:40:1a:5e:c9:97:52:7b:af:e3:f3:9f:02:
72:4d:d5:7d:5e:bf:f7:7c:ea:eb:e1:8d:d6:1e:28:44:63:d6:
7f:21:24:f6:36:16:3e:23:c4:bd:be:95:79:29:ef:94:5b:a9:
85:97:a2:74:55:49:42:e1:58:b8:21:ab:06:39:7b:ab:1b:ff:
f5:4a:04:91:cb:91:08:80:8e:95:d2:a6:f8:21:0d:4d:1d:b4:
bb:89:15:05:97:2d:8f:dd:fd:33:91:28:bb:ac:a9:18:13:46:
c0:ff:1c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:32:21 2025 by rpki-client