Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.mft
File: MN-QKoFpKFoeCclwPGOg89St7kg.mft (raw, json)
Hash identifier: DUXoeS2ET4jp6VSf3jgj/KpiMW5Ix1p/fyyWlNpLP98=
Subject key identifier: 38:24:68:A7:AF:34:E2:75:03:44:18:1D:EA:46:64:FE:CC:7D:50:A2
Authority key identifier: 30:DF:90:2A:81:69:28:5A:1E:09:C9:70:3C:63:A0:F3:D4:AD:EE:48
Certificate issuer: /CN=30df902a8169285a1e09c9703c63a0f3d4adee48
Certificate serial: 019748FA7A08D5CE1670E141900960330B53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MN-QKoFpKFoeCclwPGOg89St7kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.mft
Manifest number: 05C8
Signing time: Sat 07 Jun 2025 06:01:04 +0000
Manifest this update: Sat 07 Jun 2025 06:01:04 +0000
Manifest next update: Sun 08 Jun 2025 06:01:04 +0000
Files and hashes: 1: MN-QKoFpKFoeCclwPGOg89St7kg.crl (hash: FirJpIKhMc78Ek3RE1R3fauMxLdJyuxeA3wvSwPUnys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MN-QKoFpKFoeCclwPGOg89St7kg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:7a:08:d5:ce:16:70:e1:41:90:09:60:33:0b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30df902a8169285a1e09c9703c63a0f3d4adee48
Validity
Not Before: Jun 7 06:01:04 2025 GMT
Not After : Jun 8 06:01:04 2025 GMT
Subject: CN=382468a7af34e2750344181dea4664fecc7d50a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:dd:c9:c6:52:76:13:d2:58:cd:20:48:c1:bf:
44:17:99:6f:7a:fc:c4:ce:84:0a:e8:6a:a0:a3:76:
81:89:22:8c:bc:9f:34:06:a0:e8:16:4f:f5:47:d3:
ab:9f:68:1b:18:e0:8d:db:9b:b9:1a:94:79:65:1c:
fe:e4:34:18:ca:72:6e:01:f8:c3:2c:c1:4e:86:bf:
b0:23:ef:b4:8f:41:01:d6:b8:76:3e:6a:3f:dc:ce:
45:d1:70:3b:96:1e:79:2d:af:64:3d:3a:92:2a:3b:
c9:ee:af:08:e2:e2:8b:74:1c:9e:db:a5:91:1d:75:
00:3c:57:1a:62:14:eb:39:d4:0e:62:c4:a4:ec:20:
21:35:8d:d8:45:fc:18:57:97:a1:fb:33:18:36:88:
e4:d3:8a:56:00:e0:7e:98:3b:80:30:b4:47:56:4e:
81:c6:43:e6:9c:87:2c:71:fe:b0:34:39:dc:15:78:
89:f7:6c:59:e6:88:a5:d1:94:21:1a:de:c2:9e:ab:
bb:0a:cb:b1:65:92:45:3c:60:f3:7a:bd:1e:4e:54:
c1:33:36:06:ed:9f:73:55:ff:e8:e0:1c:d3:0c:29:
2f:c3:e1:aa:18:5a:93:ad:66:d1:41:b1:60:3e:91:
08:67:a1:0c:d4:ee:17:ac:8f:9e:87:2c:de:68:03:
b2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:24:68:A7:AF:34:E2:75:03:44:18:1D:EA:46:64:FE:CC:7D:50:A2
X509v3 Authority Key Identifier:
keyid:30:DF:90:2A:81:69:28:5A:1E:09:C9:70:3C:63:A0:F3:D4:AD:EE:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MN-QKoFpKFoeCclwPGOg89St7kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ba7a80-5d54-4e24-99f9-e2994534495a/1/MN-QKoFpKFoeCclwPGOg89St7kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:b6:8b:b4:f0:3f:8a:87:21:7e:7c:89:57:c7:b4:15:a4:f3:
7f:d9:7a:92:63:31:ba:aa:c9:9d:69:3f:83:aa:b5:db:9d:ec:
18:b2:9d:96:8b:cc:f0:cc:df:4e:5d:96:44:60:1f:5c:c9:f3:
c6:f6:a0:1f:0d:f1:52:b0:48:03:62:b5:77:2e:f0:73:8c:b3:
ab:8e:e6:94:55:55:7d:41:05:57:9f:82:ea:66:bf:3d:2e:ec:
de:0e:12:c9:ec:29:36:9e:02:f1:3a:e5:2f:5a:9e:1c:fc:93:
44:ca:31:fe:ef:d3:f6:01:97:88:c7:06:c2:17:2e:28:18:9c:
ed:b8:fe:93:09:cd:7b:84:91:69:b2:22:f4:77:8b:8a:26:de:
b8:06:d7:cb:a6:bf:e5:c6:59:ce:08:f7:01:6c:1c:dc:a6:c7:
7f:3a:67:3d:0a:0b:1f:81:fb:8b:84:b8:a0:b5:ff:89:be:b1:
55:3d:d6:1c:4c:3a:e2:a6:6e:bb:b7:8c:91:2a:69:10:22:18:
36:74:c1:d0:fc:9b:70:1c:c2:c6:d4:c1:d2:42:2d:5e:fb:a0:
17:d7:f9:5c:d6:e8:38:e3:8e:9a:3f:53:7a:6d:4e:98:ac:02:
23:6a:7d:a7:bf:7b:77:14:39:83:e4:d8:9e:d6:1e:d8:f9:4b:
58:ee:c2:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:40:05 2025 by rpki-client