Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
File: qWpTYQ2O9mShJ1txquq7KFEEwk8.mft (raw, json)
Hash identifier: cWU1d2sVNd7pyVrVxUjYp0cN2wgcSQw8dDFKResJafo=
Subject key identifier: A9:DB:80:48:1E:AD:8C:47:70:52:BD:F5:4C:AC:BE:90:D9:FA:A7:AB
Authority key identifier: A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
Certificate issuer: /CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Certificate serial: 0197488C8E124F7C1329425CA85FA84D097A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
Manifest number: 1578
Signing time: Sat 07 Jun 2025 04:01:00 +0000
Manifest this update: Sat 07 Jun 2025 04:01:00 +0000
Manifest next update: Sun 08 Jun 2025 04:01:00 +0000
Files and hashes: 1: qWpTYQ2O9mShJ1txquq7KFEEwk8.crl (hash: OVxC+UUuDJACWzmLbHc4WE93kVjnmzKDZOGM/PjrR34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:8e:12:4f:7c:13:29:42:5c:a8:5f:a8:4d:09:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Validity
Not Before: Jun 7 04:01:00 2025 GMT
Not After : Jun 8 04:01:00 2025 GMT
Subject: CN=a9db80481ead8c477052bdf54cacbe90d9faa7ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:71:1c:33:bc:2b:45:80:9e:aa:c6:cb:60:25:
14:0d:e9:a6:8a:bf:04:67:3d:33:3f:cf:e9:e0:8e:
31:6d:e0:a0:90:fe:1a:b4:96:86:d5:a9:ea:b3:1a:
f2:80:50:62:83:ba:ed:a3:35:69:21:4d:95:1a:8e:
17:87:e4:2d:9d:ea:3d:6a:12:6a:74:26:fd:8b:6c:
79:53:bd:12:5d:8d:14:83:03:5e:ba:e0:4e:12:f1:
f6:5c:90:35:56:cf:b1:76:a9:c9:63:f2:41:4f:f0:
49:31:ae:f1:23:a7:f6:8a:1c:a0:d3:ae:95:e7:70:
0f:7e:be:0a:63:04:ac:79:9e:d1:5e:d5:34:5f:7e:
2c:39:fe:42:ec:81:f7:6f:82:43:e3:f7:a1:34:d7:
ce:eb:e9:e2:af:96:f1:ca:b6:a9:c0:b6:7e:0f:04:
8a:9f:b7:19:85:3e:ec:ac:0c:06:f3:56:76:5a:98:
31:89:7e:1a:54:d9:9f:b3:bc:a8:4e:ca:f6:af:8b:
a9:44:aa:c1:46:85:ba:fb:f9:ef:b9:fc:12:97:09:
21:e4:1f:c8:ce:f7:97:a1:91:b2:cb:cb:53:c3:c7:
28:db:ac:9d:19:7a:43:c2:56:42:4d:7a:4f:dc:8e:
47:a0:14:30:6c:0f:d9:61:27:4d:1f:b1:8c:d6:fe:
36:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:DB:80:48:1E:AD:8C:47:70:52:BD:F5:4C:AC:BE:90:D9:FA:A7:AB
X509v3 Authority Key Identifier:
keyid:A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:43:14:1f:6e:19:4c:ef:dd:41:78:c1:54:87:9f:35:7b:79:
25:e4:f5:64:d1:2e:63:bd:b8:b2:39:86:4a:96:75:31:46:27:
c7:95:4e:d3:5d:69:90:d9:13:48:e2:37:f7:09:75:1c:3b:bb:
b2:96:ee:dd:fb:3b:d4:7d:8b:c7:94:51:e4:d2:71:1f:04:c4:
3b:ce:6e:94:f2:6e:60:13:71:fd:3c:31:e2:d7:7a:c1:4b:32:
5e:ba:b5:fa:c5:74:7e:8a:f5:8f:b0:a1:65:e8:b7:06:52:a2:
f5:48:3d:4d:f3:05:b1:3a:00:8d:23:73:67:2a:88:73:25:6d:
57:e9:0f:d1:83:fc:2f:a1:54:8f:a1:84:d2:2f:39:e8:1e:0f:
5d:3c:5b:36:ce:c2:4e:d6:10:7e:d3:a8:5e:df:51:f5:7b:ae:
67:70:d0:fa:fd:fa:36:ec:8e:cb:f3:d9:d3:26:cd:3c:3e:db:
57:b0:6e:9d:bb:46:ce:7e:ae:44:e6:4c:bb:9b:0a:09:2e:e5:
15:e0:03:e1:eb:74:80:8c:c3:9f:44:d7:ab:65:16:32:02:f0:
e4:5e:e0:3b:9e:12:58:db:75:fd:c2:dd:e9:b8:5f:17:3c:be:
44:73:e2:48:f6:fc:6b:2a:9c:06:2d:60:96:76:50:6b:1c:2b:
33:9c:5b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:56:49 2025 by rpki-client