Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
File: QHSniVh1zyxnhUT2zm9LI59JKfs.mft (raw, json)
Hash identifier: IZgpkPiuxVORBh4keDnfA2McDHicgZcuUxF9Qb0VFXs=
Subject key identifier: 33:B2:92:DD:72:0A:DF:17:0F:77:0A:48:A7:97:0B:A8:C5:23:D2:55
Authority key identifier: 40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
Certificate issuer: /CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Certificate serial: 01974C31C396B7978271BD5FA79CB794BC30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 21:00:18 +0000
Manifest this update: Sat 07 Jun 2025 21:00:18 +0000
Manifest next update: Sun 08 Jun 2025 21:00:18 +0000
Files and hashes: 1: QHSniVh1zyxnhUT2zm9LI59JKfs.crl (hash: 4dl+rRobtmd0fHLB5BlEKfO6YEBkyiGlKLrCdPmgO78=)
2: wQqY6GzbDftcPzXJa8kVYZmeUUk.roa (hash: JDvmaY6VGQlVNt+ZPlklOrTqgJ6a+KsUqH/Pcr7SIcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:c3:96:b7:97:82:71:bd:5f:a7:9c:b7:94:bc:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Validity
Not Before: Jun 7 21:00:18 2025 GMT
Not After : Jun 8 21:00:18 2025 GMT
Subject: CN=33b292dd720adf170f770a48a7970ba8c523d255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f4:05:98:0f:4b:b2:17:c3:ef:e8:90:ad:ed:
25:d7:70:bb:a2:cd:45:f1:b9:2e:b8:f1:08:52:2b:
e3:43:43:30:c0:b6:ee:e0:4e:04:fc:0b:29:f7:ac:
d9:c5:a5:df:37:f1:2e:82:bc:64:4f:5f:f5:55:29:
d0:d8:8c:65:9f:b0:a8:0f:11:a2:6c:df:d7:d5:71:
11:2b:28:f2:1d:74:1e:39:3a:b6:38:38:ab:18:f2:
10:da:45:14:fe:11:b4:28:36:48:e0:9c:20:71:42:
ee:17:3f:c3:6c:57:b3:60:24:21:2f:33:e7:ee:99:
a4:e4:f2:3d:38:7e:8f:c2:56:b7:bd:7f:9e:95:dc:
7b:22:4a:c2:b1:6c:8e:1e:19:9a:1c:52:90:0a:ea:
f3:e5:c5:d9:df:5c:07:2c:a7:c9:9f:5b:1a:f3:b8:
97:e7:9d:65:a2:95:c5:33:dd:15:23:a5:7f:e4:41:
b5:1d:50:d6:bf:fa:80:7f:81:95:04:13:9d:dd:b7:
64:e9:ec:f4:fe:35:f0:a8:5a:6f:f2:4d:cf:49:8f:
93:8c:e8:f7:fb:93:b5:77:e6:d4:0e:89:eb:d1:6e:
db:58:2b:07:76:a8:6a:14:ee:32:88:a8:84:c5:52:
45:ce:90:19:46:c7:af:f7:b6:a3:02:bb:a0:19:e5:
b4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B2:92:DD:72:0A:DF:17:0F:77:0A:48:A7:97:0B:A8:C5:23:D2:55
X509v3 Authority Key Identifier:
keyid:40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:2a:be:3e:46:76:26:2d:ea:81:4d:fa:89:6e:51:a1:db:2d:
c6:c2:bc:fe:79:b7:69:c5:5c:1d:1d:3c:5c:f0:c1:18:e8:88:
9f:85:a8:3a:27:f9:50:40:e0:15:ac:36:59:c8:c1:40:af:1a:
5c:cd:2a:ca:96:d6:df:3b:5e:32:fb:80:55:91:bd:61:37:34:
b5:00:a7:6e:d6:3b:35:3d:5d:a1:fc:d2:93:8f:dd:2d:5b:b0:
85:6f:5c:c9:80:a9:5a:ee:d4:af:98:60:63:ae:f1:09:82:6c:
23:01:d9:79:95:01:14:d7:ff:d7:8d:83:f5:b2:e0:0c:d8:88:
b7:32:a3:4f:bd:e1:32:33:0e:ac:8b:d8:17:f7:8a:0a:f8:3b:
ef:4c:61:67:f7:7c:09:a7:8a:5e:9e:7e:2a:12:1c:d5:6d:c6:
43:1f:52:50:f2:da:9a:25:a9:c8:19:6d:9d:c4:3f:f1:8f:58:
c8:73:c6:83:40:8f:8d:9c:44:54:c4:43:8f:39:cb:10:9f:f7:
61:ce:4a:82:f6:b0:f9:e2:09:9f:52:9e:eb:eb:ae:c8:0a:43:
92:b7:3e:f5:78:86:f8:a6:b8:09:a9:00:e1:be:ab:d6:df:6c:
10:9f:f7:ee:b4:b6:ad:e2:24:b3:b4:08:91:28:0e:af:ca:1e:
76:4f:2b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:39:03 2025 by rpki-client