Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: My2mKb9tR8fhgtfSngMdWXrW6lfTSckRD+dQtrwNnt8=
Subject key identifier: 06:11:F1:73:54:86:83:92:C0:DA:6C:6C:79:C1:BF:CD:38:63:AE:92
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 019752A22E5C1800620E2E6C618915F76288
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 1583
Signing time: Mon 09 Jun 2025 03:00:49 +0000
Manifest this update: Mon 09 Jun 2025 03:00:49 +0000
Manifest next update: Tue 10 Jun 2025 03:00:49 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: H+Pk9mmAMlDTBqoflKsgaWmSqTLgMKmyY7midhQ0gIY=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:a2:2e:5c:18:00:62:0e:2e:6c:61:89:15:f7:62:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Jun 9 03:00:49 2025 GMT
Not After : Jun 10 03:00:49 2025 GMT
Subject: CN=0611f17354868392c0da6c6c79c1bfcd3863ae92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f9:2d:b6:4e:1a:7b:14:79:d6:57:0f:e7:b3:
a9:bb:72:18:a6:b6:e8:d8:a3:e4:72:f2:cb:49:db:
7a:f2:2e:e7:7e:e7:02:86:74:22:a5:82:86:16:2b:
fa:ac:b4:d7:ed:1d:b9:50:29:dc:70:12:d4:fd:d9:
ec:44:cd:dd:38:ef:b1:c5:f2:e6:35:a0:48:ab:0c:
71:fb:4d:cb:c0:f9:7d:5b:e4:1b:e6:f8:10:75:22:
d6:10:23:4e:5f:7c:de:9f:6f:86:bd:c5:a8:cb:8d:
98:91:4e:23:a0:91:fb:a5:86:e7:84:70:20:2e:c3:
ff:56:42:73:e5:21:d4:a7:74:69:f8:c0:90:9c:67:
7d:d2:9f:5f:de:49:53:49:68:93:e4:e7:8a:80:3f:
24:62:3c:62:19:df:97:c5:44:5f:46:f7:cb:cf:71:
2d:ed:27:29:ec:49:ad:65:51:1d:cb:15:15:26:9d:
77:32:85:c5:60:01:21:de:bf:81:be:a3:2f:bc:d8:
f9:0a:00:08:51:10:b6:6e:78:9d:06:9a:ce:7b:b1:
50:69:7e:a3:16:0c:31:84:e9:26:11:1c:6d:73:6b:
0b:52:45:d8:3f:4b:f7:7c:15:3e:c5:37:cb:32:49:
31:7f:aa:a8:c0:3c:ce:61:83:f0:32:d3:43:12:4b:
eb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:11:F1:73:54:86:83:92:C0:DA:6C:6C:79:C1:BF:CD:38:63:AE:92
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:61:0f:1b:eb:86:c1:14:2c:af:73:08:a0:a7:b7:7e:ab:91:
f1:50:2b:9a:a5:76:96:c9:56:3c:f2:ba:bf:79:08:73:ca:c9:
21:86:3f:dc:e0:93:64:85:53:3b:fc:50:c5:bc:a0:6d:67:3a:
46:be:ce:70:d8:d0:77:02:d2:91:37:12:37:68:e3:fc:e6:4b:
8b:f1:1a:95:66:7f:cd:de:75:6b:db:c5:3a:cc:13:08:27:3f:
21:d7:b1:66:cf:15:00:61:25:7f:9d:7c:01:ab:8f:92:ac:46:
99:e1:7c:7c:de:38:7f:78:43:9d:9b:d6:a0:91:e2:83:d8:3c:
b5:f5:fb:e1:67:a1:05:ca:a3:5c:82:11:a3:2d:ed:8d:6c:ca:
46:90:82:c1:80:ca:65:39:88:10:ad:71:1d:d7:29:be:bf:c1:
f0:fb:c3:7f:8e:0b:0b:3a:0a:08:c6:bb:01:0b:c2:90:01:35:
7b:dc:0c:17:60:8e:7e:99:5e:73:cf:6b:a0:4a:cb:30:8b:30:
c4:1e:8f:48:ba:b2:73:89:cb:d8:1a:64:c4:32:14:6a:0b:e8:
5d:b5:f3:b9:78:03:3b:f4:9a:3d:37:a3:60:24:3f:65:52:d1:
5e:ff:8c:50:43:e0:12:34:68:4f:39:d0:7a:a1:f9:c9:82:6f:
53:c7:a2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 06:16:43 2025 by rpki-client