Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
File: 1QibzgjFXapXtPOjyQcPs5GFPM8.mft (raw, json)
Hash identifier: Nl4/YHDug8nMlbAveOOYypM4aUCsPq5gMxhV/m13I1c=
Subject key identifier: 89:67:38:EF:CE:04:BD:00:7A:DF:0C:6E:6E:D6:0F:6C:C0:DB:BC:C4
Authority key identifier: D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
Certificate issuer: /CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Certificate serial: 0197499EDF2198BA7AF2CF22C0EE1138ED54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
Manifest number: 0A51
Signing time: Sat 07 Jun 2025 09:00:37 +0000
Manifest this update: Sat 07 Jun 2025 09:00:37 +0000
Manifest next update: Sun 08 Jun 2025 09:00:37 +0000
Files and hashes: 1: 1QibzgjFXapXtPOjyQcPs5GFPM8.crl (hash: w0a6rEfE4SIaHcgGl/WCcgyPjKSEYei0XebDg9q5ck0=)
2: Vf8IRTOjd5EHRik_XU5SL231JR0.roa (hash: pdMIDPOwO8DUN6tctG8DJMO1R37Vl0PhbVyMv6IZEJE=)
3: x75CgHaNcNlIrskWea67UxRrM1c.roa (hash: xJt3cVolGlaYguNEQZsOwCLANVkSIZwIfqNsviXM16Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:df:21:98:ba:7a:f2:cf:22:c0:ee:11:38:ed:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Validity
Not Before: Jun 7 09:00:37 2025 GMT
Not After : Jun 8 09:00:37 2025 GMT
Subject: CN=896738efce04bd007adf0c6e6ed60f6cc0dbbcc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:39:84:c8:2a:43:18:b1:a2:f1:32:d5:d7:81:
19:b6:90:d7:df:33:d7:9f:87:9f:01:01:24:e3:61:
8e:a3:85:45:7c:4b:bd:66:bf:fc:ab:cd:34:5e:2b:
f9:f0:36:1c:56:34:76:85:33:e5:fb:36:28:e6:5f:
cf:61:3b:7e:ad:18:6a:b5:c4:7c:6a:19:14:71:46:
88:00:e6:0d:3c:39:20:d4:98:bb:00:34:7c:d4:43:
be:15:c9:4c:2c:94:da:29:27:de:08:62:21:2c:14:
9e:bc:8d:e1:88:f6:f2:18:f5:f8:f3:4b:13:dd:8c:
28:89:8b:64:46:be:9a:2d:79:fa:29:88:30:13:40:
11:c3:10:70:b2:40:9a:29:2c:c0:03:c5:17:2b:9b:
9a:ec:0b:69:f1:9f:a0:23:e2:77:91:63:cf:5d:b9:
f0:e4:84:24:b3:f0:64:e3:2a:cf:07:ca:fc:99:46:
2f:79:17:32:41:bc:fe:9e:97:7a:0a:f6:ce:9e:2d:
f9:a5:d5:1e:f6:38:41:90:50:9e:1b:35:99:26:62:
26:1c:88:68:92:fe:48:6b:85:cc:5b:74:17:40:91:
cf:54:2c:83:75:9b:29:b3:9b:69:e9:08:10:39:eb:
20:13:6c:27:fe:5f:70:c5:4c:4e:94:9d:54:e8:6c:
1a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:67:38:EF:CE:04:BD:00:7A:DF:0C:6E:6E:D6:0F:6C:C0:DB:BC:C4
X509v3 Authority Key Identifier:
keyid:D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a6:68:50:8b:09:9d:b0:a4:1b:5c:b7:0f:a6:6c:06:d7:a6:
4e:8c:bf:d3:0f:d7:96:49:b9:34:2f:46:84:9b:a2:6c:3a:05:
22:8e:0d:69:82:74:38:72:c9:1c:69:18:e3:94:92:33:b1:65:
1d:e6:cb:35:dd:c2:eb:fb:c4:10:f9:09:0a:b7:f9:16:9b:40:
f0:94:15:27:67:98:04:8c:05:c5:c2:bd:f4:4d:3b:9a:69:16:
27:4d:44:46:03:3e:8e:3f:4f:62:20:8b:31:14:a2:8f:cc:bf:
48:53:a9:c4:b4:60:82:27:6d:2f:7c:f9:68:fb:86:72:c0:9e:
dc:22:e6:e4:74:34:4d:74:7c:df:6e:1d:b2:46:98:0a:e3:aa:
42:61:65:57:4c:eb:41:7f:c1:8a:d2:b5:9c:47:cd:c9:30:3e:
0d:cc:ca:49:65:ef:2b:42:d3:b5:f9:a8:86:f6:c0:ba:33:38:
33:d0:dc:6f:54:21:5c:66:5b:c6:6e:77:0d:27:47:ad:33:ae:
d8:ae:78:53:8a:7e:c9:43:15:c7:1c:cb:cb:27:12:66:c1:30:
14:81:94:cb:09:af:99:7a:e9:10:5d:76:6b:7b:7b:d8:ad:ad:
6d:cc:54:43:f2:bf:2b:f7:64:f9:d4:a8:4f:cd:92:02:00:6b:
9f:2b:83:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:34:24 2025 by rpki-client