Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft
File: QO5hC9zSO60rEZK9RcqKl204Vdo.mft (raw, json)
Hash identifier: H+sThdVO65NBrPyHk2l1stoslo8zj3E3+u6HR/zi+Jw=
Subject key identifier: B7:B2:A1:BC:83:C3:20:1E:3D:CD:B5:7D:B4:B1:E2:90:45:16:D8:30
Authority key identifier: 40:EE:61:0B:DC:D2:3B:AD:2B:11:92:BD:45:CA:8A:97:6D:38:55:DA
Certificate issuer: /CN=40ee610bdcd23bad2b1192bd45ca8a976d3855da
Certificate serial: 01974A7A680DE6132F92377D3C0AE3683726
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft
Manifest number: 1417
Signing time: Sat 07 Jun 2025 13:00:25 +0000
Manifest this update: Sat 07 Jun 2025 13:00:25 +0000
Manifest next update: Sun 08 Jun 2025 13:00:25 +0000
Files and hashes: 1: QO5hC9zSO60rEZK9RcqKl204Vdo.crl (hash: 24RFqCbg92M/0aKgHeYOeeEAEUZzZaH1TL/Q6Y3Pj6A=)
2: WXzwl6dDgLLRTGjEWsJa-Mt4DFY.roa (hash: AsvwbpP9IRPmxXb+scTtlP8HJBrFwXPs3woICGrCIxY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:68:0d:e6:13:2f:92:37:7d:3c:0a:e3:68:37:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ee610bdcd23bad2b1192bd45ca8a976d3855da
Validity
Not Before: Jun 7 13:00:25 2025 GMT
Not After : Jun 8 13:00:25 2025 GMT
Subject: CN=b7b2a1bc83c3201e3dcdb57db4b1e2904516d830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:03:d1:97:c8:5c:51:2a:b2:6a:1b:04:47:ab:
88:68:41:b0:29:b2:71:06:3a:a1:0f:ad:be:65:f8:
0a:6d:de:4d:5e:1d:61:8b:48:4e:15:7e:18:f1:e4:
3f:e9:ba:99:6f:7e:6a:5d:5b:86:99:06:f5:54:58:
9b:82:09:4e:f6:e9:13:b5:bd:0e:48:33:0a:74:49:
fd:22:7b:fc:d2:16:24:8c:b6:3d:3e:b0:b2:29:aa:
56:fe:67:4a:37:21:9f:71:da:cc:93:84:7c:a4:56:
b1:ee:e0:fb:b6:0a:d4:3e:be:b1:65:45:da:ee:df:
c1:b1:41:9a:b2:21:2e:2d:fc:51:c8:7d:40:bc:ee:
36:e3:97:4a:d2:2f:bd:73:ba:99:cf:42:8c:ea:18:
19:50:de:3b:54:67:15:c9:59:4c:5b:10:4a:9e:a1:
78:8f:87:39:03:c5:21:81:5f:f1:66:cc:96:91:da:
5c:1c:ce:b0:c8:e2:b2:58:30:f7:e4:73:88:cc:02:
08:e9:a5:55:ac:ff:e5:51:6a:e1:c2:3e:ed:d4:cf:
d5:96:35:8a:51:a1:c4:17:d8:f5:73:35:69:72:94:
03:bb:98:e5:1e:93:6c:38:79:e4:9d:72:ea:65:df:
e1:7b:82:24:dd:6a:be:f5:07:e4:4c:a7:a8:78:8c:
e7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B2:A1:BC:83:C3:20:1E:3D:CD:B5:7D:B4:B1:E2:90:45:16:D8:30
X509v3 Authority Key Identifier:
keyid:40:EE:61:0B:DC:D2:3B:AD:2B:11:92:BD:45:CA:8A:97:6D:38:55:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:1b:e3:60:7a:15:44:35:7b:c9:c0:aa:36:87:b2:06:1c:95:
ec:04:bc:a7:8a:bf:ec:cf:a1:15:eb:4b:f6:da:67:70:92:31:
69:49:18:1d:bb:4c:06:5c:09:3f:ac:78:7f:83:c3:f4:54:a7:
d3:3a:9c:cc:3b:e5:ea:9a:dd:65:3d:0f:71:ff:55:e4:f7:8f:
b9:b0:9f:db:60:13:9d:15:c8:17:46:90:47:48:1a:7a:a0:ef:
11:0d:1c:d1:78:1a:70:15:cb:9f:a7:78:e8:2c:3c:0d:89:07:
a4:11:e5:dc:52:4f:16:06:b2:1c:b9:06:47:e2:45:af:b7:6d:
66:c0:ee:ff:fc:96:cf:4a:1a:97:46:8c:81:72:13:ae:11:f5:
de:ca:dd:0c:e8:27:9f:2e:57:07:02:0a:25:b6:71:28:c2:43:
9d:3c:25:8e:fa:89:bd:ca:53:4c:e6:fc:c4:7b:a0:ec:b5:30:
a8:05:8e:97:b5:fa:b5:88:33:21:e3:0b:53:38:55:36:3a:fd:
d9:00:13:26:f8:2f:a1:71:63:11:ee:f7:50:eb:b2:c3:cb:44:
2d:b3:3c:07:52:a7:5d:dc:24:c3:06:bf:b2:bf:0b:4b:a4:d7:
1c:55:4e:a7:8a:08:72:d1:a2:83:b9:4a:ef:aa:f7:59:a9:b5:
25:68:26:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:57:38 2025 by rpki-client