Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
File: QM_TpJvHHnSg0L9-NGyomylZehI.mft (raw, json)
Hash identifier: A5Tim003ItNRTSXDOMMtMnKkklmF/ybHfh+b3ZgDk74=
Subject key identifier: A8:85:3F:57:3E:DC:5F:43:77:E4:CD:36:48:02:C8:F0:44:A8:BA:F1
Authority key identifier: 40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
Certificate issuer: /CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Certificate serial: 0197469EC1FDA57D76A22D3C5C20B66005F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 19:01:38 +0000
Manifest this update: Fri 06 Jun 2025 19:01:38 +0000
Manifest next update: Sat 07 Jun 2025 19:01:38 +0000
Files and hashes: 1: QM_TpJvHHnSg0L9-NGyomylZehI.crl (hash: z2o2M43s1XaoAhbbCPMU5t1EStJpOeCoIajlbPKji9Y=)
2: cOU0f1SCKSAnKUQtSDidcXUui3Y.roa (hash: SxetuqQIAbe3h1o0xhzW+JEeQWRKvCIOYuGwJHKjEXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:c1:fd:a5:7d:76:a2:2d:3c:5c:20:b6:60:05:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Validity
Not Before: Jun 6 19:01:38 2025 GMT
Not After : Jun 7 19:01:38 2025 GMT
Subject: CN=a8853f573edc5f4377e4cd364802c8f044a8baf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e7:08:ff:78:cb:b2:af:bf:b5:c7:1f:3f:d5:
a1:09:ef:c6:44:f4:b0:c3:55:8a:c4:d6:ae:53:2f:
ed:eb:f5:b5:01:c6:0c:ce:6b:3f:69:75:e3:3d:df:
4e:f0:4d:fc:89:b7:66:4b:05:f4:b5:3c:80:f6:3d:
b2:b7:c2:1a:69:03:87:eb:5f:21:71:88:cb:2c:5d:
c8:95:33:48:56:ce:eb:5c:0f:fb:cb:75:16:ad:30:
14:1a:fc:33:4b:ac:e0:86:96:e9:01:d8:19:73:77:
09:af:36:95:93:0c:6d:aa:34:ec:27:06:35:46:9a:
69:70:8e:94:0a:e7:c2:ee:c7:76:4d:10:9a:16:89:
38:66:13:80:fc:2f:84:90:a0:a8:d5:43:c1:d3:6a:
43:86:d3:e7:3c:c2:10:75:26:6a:2d:2e:64:1d:6f:
4e:eb:03:c9:b9:a1:8d:a3:e2:aa:22:fa:00:e6:30:
ba:0d:51:5e:98:32:fe:76:5f:20:1e:ad:80:77:b9:
d8:53:c1:3b:b1:58:5d:55:d1:af:d4:33:0e:18:16:
c9:17:b2:fd:fc:77:95:50:ad:8c:bc:01:07:20:45:
e3:c7:70:9d:af:78:2f:31:a3:d6:bd:17:b9:0c:04:
5e:04:79:1a:0a:b5:77:c6:9b:5a:b7:4b:a0:ba:30:
23:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:85:3F:57:3E:DC:5F:43:77:E4:CD:36:48:02:C8:F0:44:A8:BA:F1
X509v3 Authority Key Identifier:
keyid:40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:df:4d:00:20:37:c3:de:90:fb:a7:c0:91:6f:1e:a9:c8:b6:
23:c3:1e:0d:18:70:48:4e:f8:57:21:b5:53:d3:01:85:f4:2f:
8c:aa:77:a1:3c:7e:e3:e5:a5:0f:12:97:3f:f5:2b:39:0c:d5:
da:5e:37:16:cf:5b:00:3a:f0:72:86:47:87:0c:82:e9:9d:1e:
f8:ae:6f:a4:60:19:b7:5c:66:71:16:12:f6:f8:9b:2f:d9:21:
4a:db:47:48:be:18:3d:98:3e:49:dc:09:08:37:9d:70:40:dc:
09:5c:a4:aa:ab:c3:bd:89:dc:ec:8a:10:9d:68:40:c9:ef:44:
d8:3d:24:f6:82:5f:c9:7b:af:97:db:5f:9d:ec:7c:5e:8d:98:
34:87:30:77:77:33:8c:96:cf:de:4a:fa:35:a9:64:87:e7:bc:
1e:06:a9:07:51:2b:03:48:d6:e1:c2:5c:08:13:31:d8:a2:a7:
cd:65:aa:87:a3:09:2b:e3:83:5e:ca:c4:f3:c6:4b:68:f2:03:
fa:17:f3:8c:ed:04:95:bf:4b:ac:66:6a:75:17:6a:8c:5d:be:
31:93:8d:3c:4d:08:0d:25:5b:d6:96:f2:63:82:23:62:1c:de:
b5:aa:aa:29:2b:90:62:1a:24:9f:03:e2:8f:c0:b8:dd:43:5f:
54:92:ba:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:29:18 2025 by rpki-client