Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
File: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft (raw, json)
Hash identifier: cL3UcCJL7IWxbrR4Gt71yjilqUpdFqZDn5115hWTaic=
Subject key identifier: 4E:FB:E7:68:57:01:05:E3:C3:DF:5E:95:CB:07:F0:01:2B:0B:2B:59
Authority key identifier: 41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
Certificate issuer: /CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Certificate serial: 0197542332DD879F7B04A0696A151DFB3C2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
Manifest number: 140A
Signing time: Mon 09 Jun 2025 10:01:22 +0000
Manifest this update: Mon 09 Jun 2025 10:01:22 +0000
Manifest next update: Tue 10 Jun 2025 10:01:22 +0000
Files and hashes: 1: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl (hash: N4g60H2E963hhZjZuLwcGPOPF0xw8Zk7rOhlRSu0cE0=)
2: tCKYdWD2hSQqFlBHMS87DdwFA_c.roa (hash: P2KIjX/YYHmksRirKKz2Fd1xnQFo0kzJQbDUVFG/Ics=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:23:32:dd:87:9f:7b:04:a0:69:6a:15:1d:fb:3c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Validity
Not Before: Jun 9 10:01:22 2025 GMT
Not After : Jun 10 10:01:22 2025 GMT
Subject: CN=4efbe768570105e3c3df5e95cb07f0012b0b2b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8c:11:bb:d4:a4:35:3c:dc:fe:0b:83:98:29:
89:9a:e1:04:5c:df:75:03:8e:ed:ab:ea:fd:fb:67:
cf:f5:7f:f3:4e:66:5b:bf:22:29:61:36:49:af:e2:
90:e6:51:43:f9:ed:49:25:64:da:76:e3:fb:d1:10:
e0:46:96:e0:02:55:d2:9f:8c:d7:0e:4e:73:c5:5b:
9e:cb:b9:c1:88:cf:f3:7f:0a:31:4b:ae:99:85:2c:
10:52:bb:6f:ad:0d:ac:de:ad:b7:8c:c3:38:73:e3:
73:2d:38:01:70:a5:92:f6:3c:b2:50:86:24:05:5e:
fb:b8:f4:9f:3e:18:9f:3d:cc:30:2f:77:0e:d5:fc:
a8:db:f1:a0:1d:c8:76:79:95:44:ee:fa:4d:cf:93:
a4:25:db:cb:49:ab:df:0c:54:b4:f2:ad:4a:9f:fa:
a7:1e:b9:d8:33:b4:fc:88:56:e1:51:e6:6e:9b:27:
51:d5:b8:28:4d:92:8c:2b:71:58:5e:80:9b:78:5e:
38:a7:d1:60:0c:e0:5f:56:ed:d1:58:71:43:a0:14:
8b:1a:ed:95:e4:2d:d9:f7:37:88:8c:9e:eb:46:c7:
ff:7c:c6:b6:b7:1f:34:e2:c2:59:88:a4:67:0e:53:
f6:7a:a9:85:32:65:55:78:cb:b6:2e:10:ac:db:e7:
b9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FB:E7:68:57:01:05:E3:C3:DF:5E:95:CB:07:F0:01:2B:0B:2B:59
X509v3 Authority Key Identifier:
keyid:41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:1a:4a:97:a4:c3:9f:bf:b1:85:12:89:dc:4a:b3:d2:08:37:
46:25:d9:82:77:5e:a1:6e:85:90:3e:cb:ed:d6:48:4b:89:72:
f9:b0:96:ad:32:40:99:36:ec:de:3c:c2:ac:0f:bd:ef:b0:0f:
0c:b3:82:db:a5:45:17:32:4b:68:21:ef:ea:dc:dc:59:89:89:
7e:97:1b:aa:9f:25:89:cb:11:4f:bc:0b:0e:4f:7d:ca:b5:a1:
b3:e7:48:ca:9c:79:18:b0:2d:08:5e:0f:77:a6:fa:7b:35:a8:
ec:bf:d8:a4:35:f2:24:79:82:8f:d1:b7:7b:c5:69:dc:85:fd:
91:d7:16:d8:40:6e:fb:dd:83:7c:15:38:c6:1a:cb:fc:82:3e:
ed:8d:b1:2d:08:ba:84:e2:19:0c:15:a5:38:13:4b:86:26:3d:
c3:d5:0d:a9:10:55:88:4a:08:ae:cb:6b:93:88:51:ef:60:1a:
8c:ed:01:41:1e:b1:b5:16:28:c7:66:99:cf:4b:05:5c:51:46:
01:83:0a:a5:27:13:d8:27:9e:54:74:ed:83:ae:b6:09:75:f5:
3a:a9:c5:29:94:93:a7:a0:a4:e3:ed:11:fd:9e:c7:de:0f:11:
6e:98:20:d5:b6:78:8b:e1:c2:92:0c:ef:37:1f:c2:48:59:90:
42:2b:e5:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:54:40 2025 by rpki-client