Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
File: Q8FllZZq-wus8deTfyRdagUiIaM.mft (raw, json)
Hash identifier: wA5btXp68TFdeXbWt5LZbVQgtZeRF+aHY5aUlKaD/A4=
Subject key identifier: C4:1B:5F:D6:71:28:73:8F:D7:D6:45:AA:9D:01:A7:5A:C2:DE:BB:46
Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3
Certificate serial: 0197499EE3BB022DA66DC7B554BDA9812F59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 09:00:38 +0000
Manifest this update: Sat 07 Jun 2025 09:00:38 +0000
Manifest next update: Sun 08 Jun 2025 09:00:38 +0000
Files and hashes: 1: 52v68hN6UT4PPJjjqq1uuE_KUSs.roa (hash: /ZapQrg7UEXSt0NcWwZ+kj+0zgSiaiRBd7g+qhPDHBg=)
2: 8S9ibO6esCTeLY2sD14WhmMZOvI.roa (hash: bmTNDF41Sq+c7Se/EWf8YA8iGIHNg20TI2zfC/lGrO0=)
3: Q8FllZZq-wus8deTfyRdagUiIaM.crl (hash: ryJX9Jv4syXNuQiHBzZT/Lyh1VX6DAFmcrVHkZCn/m8=)
4: WvCj9VbsFj7fqJOx6tk2wit_WpE.roa (hash: /cLe2CDT0v+6sDR4E14KbBpNPCZZWPI/9CgtItdZn+0=)
5: a5Civ4TQY8vU2rue9PuRjdGc5Mc.roa (hash: QP4yk7Jx/AL7wrs9Y5ybfTghTEkjk/U3Nsn5OFbBsqk=)
6: gqvKWohVcj0Z7jlOtSMQwdCwp3g.roa (hash: hvyUYeos7vf6+TZ2NgvLPFstgzyNO3xqXZO7/gB/Dow=)
7: i6WUIDE1FurqyNNZ1EYEHsIVqvc.roa (hash: n8PwD1+DrWnTVld/M9MqGCrSY8HTEouEds18pHnIKJc=)
8: ih3tlDmlbrDwbuabWdJCxXWHffo.roa (hash: 80OP5bzoyzQkUOxJ3u7VzQr4QzoK9uZZaNU7fzcue8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:e3:bb:02:2d:a6:6d:c7:b5:54:bd:a9:81:2f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3
Validity
Not Before: Jun 7 09:00:38 2025 GMT
Not After : Jun 8 09:00:38 2025 GMT
Subject: CN=c41b5fd67128738fd7d645aa9d01a75ac2debb46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:34:2a:d3:f4:09:28:0e:2f:9f:3d:d2:90:39:
8a:fc:4f:e3:c9:f4:1d:ed:97:e4:e9:22:5f:e0:d4:
5f:ba:5d:fe:f5:90:47:a9:de:e2:dc:ac:5e:13:a9:
39:d5:2c:7a:90:03:8c:c9:c9:34:d9:98:9f:99:3d:
ee:bf:61:38:44:35:19:ba:24:18:26:ce:be:80:8d:
31:ff:e8:ff:05:05:b0:e1:01:1e:a8:f0:92:01:1d:
14:65:8e:aa:95:cc:b9:29:c3:e8:7e:93:12:b1:cf:
b8:4f:eb:d1:f5:d8:ac:35:9f:42:41:e1:b3:5a:c1:
e2:58:16:18:5d:1f:02:94:8f:40:00:82:43:4c:50:
20:25:ec:8a:76:bc:eb:09:9d:c3:8f:b0:b8:de:47:
9e:ed:08:6f:ea:30:5c:2d:35:da:41:ef:5d:f1:b3:
b3:d1:d1:8b:75:33:66:9c:06:7e:a6:9f:82:f0:a8:
91:ab:83:e9:39:34:b2:88:70:f1:32:f6:d8:9b:4c:
4a:9f:31:1c:3a:14:00:22:91:5d:11:38:7f:f4:eb:
1d:b5:c2:2f:d7:00:9d:cf:f6:2d:ef:75:bc:5c:83:
8e:4e:c0:59:a2:07:4e:25:c5:98:e6:ba:0f:f9:4c:
ab:a4:fa:ff:bb:08:a4:94:c2:eb:a6:ba:72:28:7a:
4d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1B:5F:D6:71:28:73:8F:D7:D6:45:AA:9D:01:A7:5A:C2:DE:BB:46
X509v3 Authority Key Identifier:
keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:f5:76:4e:ff:57:82:46:08:d1:e5:c6:89:dc:39:8f:8b:1c:
6e:04:54:95:64:ff:fb:48:5d:a2:5e:a2:53:90:ff:b0:b1:ca:
ce:25:24:5f:bc:85:65:71:aa:bb:9c:81:3c:55:4b:e5:b7:13:
15:d0:02:f2:2b:08:b7:8a:46:b2:64:db:3b:77:50:f4:62:cd:
1a:75:c0:5e:e2:92:42:ae:73:b1:e0:53:23:de:3c:5e:cc:af:
35:b9:e1:0c:19:df:23:0c:f3:8c:df:50:cb:3b:5a:55:38:16:
b4:51:38:e1:64:a0:6e:68:5d:c1:a6:11:db:69:5a:f1:d2:fa:
23:4a:93:57:83:b4:27:ab:f7:8c:04:d9:8e:03:f5:de:9a:e2:
e7:2d:ed:24:99:9e:49:e8:61:44:50:06:52:6a:50:5b:62:06:
c5:2c:3e:07:1f:ee:f4:54:76:66:4f:5f:bf:1b:8b:45:b0:11:
a7:7f:3a:b5:2d:cc:13:9c:8d:71:7c:59:42:48:00:25:1b:75:
02:db:81:87:23:01:41:b2:8c:ac:b6:e0:68:61:84:18:3b:f8:
74:0f:87:a5:92:70:04:a2:da:73:a6:2b:7b:50:1f:9f:72:ae:
88:af:8a:14:8e:3c:5d:9f:a2:4c:14:be:9a:8b:96:8e:25:9f:
ed:94:56:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:04:12 2025 by rpki-client