Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: JY40OpTe1pLx/GyslvWypBF/PvfPuVzxoxk6IhCKzQw=
Subject key identifier: B6:47:99:08:B4:DE:08:C6:3E:53:69:8A:48:5B:ED:5C:35:EF:AB:02
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 01974D44D0D6FE0DB1E92525CB2BCEB0CFDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 1049
Signing time: Sun 08 Jun 2025 02:00:44 +0000
Manifest this update: Sun 08 Jun 2025 02:00:44 +0000
Manifest next update: Mon 09 Jun 2025 02:00:44 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: cgeT6vdUuyobiP0zRNot1+PLfjTMkVV1+OpCGilJBJo=)
2: fD4OezRM4UrasrKKJ10uGn5_Qug.roa (hash: +HiHjgUZa5Xei+THiDncnTXYzPCxqbbX0ahPYM7QsZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:44:d0:d6:fe:0d:b1:e9:25:25:cb:2b:ce:b0:cf:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Jun 8 02:00:44 2025 GMT
Not After : Jun 9 02:00:44 2025 GMT
Subject: CN=b6479908b4de08c63e53698a485bed5c35efab02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:5a:8d:d5:86:f9:38:24:58:69:02:a8:a6:51:
cc:43:8d:aa:17:37:38:47:ce:79:0f:a9:6c:11:c1:
f6:89:87:dd:d0:b4:45:87:3f:22:c0:84:c5:b0:7c:
98:39:1d:77:fa:00:4e:46:8d:bc:30:14:cd:7e:4f:
cb:d2:96:f4:9f:db:66:e4:18:68:fe:4d:5a:b2:a9:
a7:76:8c:66:07:80:4b:48:29:a8:64:46:5c:b5:2b:
b9:9f:f3:58:93:b9:e8:f0:22:15:63:4c:1a:2e:90:
37:eb:be:1c:79:71:b6:8d:81:c3:0c:6a:a8:d2:0e:
c8:35:ac:eb:79:93:ea:4f:7e:e6:bd:28:f2:3d:52:
f7:4f:d3:62:8e:21:b6:09:bd:65:45:9f:98:55:2b:
e5:df:ca:64:a6:f9:c2:0b:07:08:4c:3b:10:b3:f8:
d0:01:e4:f4:58:a6:ad:8e:84:41:ad:f9:7a:e7:1c:
37:1f:be:6c:82:60:b4:16:b5:a7:c8:c5:8d:5b:f1:
4a:ef:e3:ad:f7:e7:5e:10:15:78:32:bb:73:9a:61:
58:b2:b7:fa:87:c1:38:cb:ee:a7:45:8b:6e:bc:95:
8e:1c:d7:05:d2:bb:b3:a2:ab:f4:6a:d9:03:f7:bf:
78:c8:a0:b0:2c:58:76:c3:25:cf:93:c2:9a:50:ea:
2c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:47:99:08:B4:DE:08:C6:3E:53:69:8A:48:5B:ED:5C:35:EF:AB:02
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:e0:bc:9b:bf:5d:c7:28:eb:a2:75:a7:b0:6f:71:a7:41:c5:
a4:22:3e:40:7c:3d:7a:3e:db:bc:ba:67:06:2b:12:19:85:e0:
5e:71:87:1c:87:6c:a4:e4:0d:55:b6:ba:bf:00:27:f2:ac:25:
8d:ed:ad:3b:af:b2:24:45:b1:71:8c:76:91:fa:9d:18:ac:c4:
fd:95:22:88:64:d2:02:ba:88:9a:2b:90:56:e1:5d:b8:8e:ad:
c1:0a:2a:db:56:6b:6a:eb:8a:57:04:b5:f3:4d:7c:f7:38:01:
71:58:88:85:0a:76:f1:2d:40:86:6c:cb:16:68:2b:e2:6f:dc:
74:fa:f8:ef:73:99:60:0f:4a:34:19:2e:a9:75:94:bb:9e:7b:
10:75:60:64:52:72:a1:c0:a6:35:2c:c2:30:6a:09:91:f7:a6:
f6:1a:67:dc:0f:6c:73:64:b8:79:2d:ac:de:77:d7:68:6b:e9:
0d:24:21:46:6c:64:b6:21:f1:1c:c3:3e:22:38:ee:e4:40:38:
01:25:50:27:57:bd:02:82:74:dc:e2:96:0f:f0:4a:0d:e3:2e:
52:ab:dd:d9:95:63:44:33:53:73:1f:44:5f:59:59:ec:39:cb:
fd:2a:ce:1d:67:90:8f:df:f1:aa:3a:a2:b8:b1:9b:14:92:22:
93:d6:c4:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:01:32 2025 by rpki-client