Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: tA2YEHJSrPz91RKa3AMCI7fkae/g2FTlTGQIcCgqnko=
Subject key identifier: 0D:DC:E8:AD:AE:08:1B:82:FE:DF:1D:6B:C4:6B:8D:2B:E3:B9:53:C0
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 01974CD773E5CE53398D941228E0EBBEC695
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 02AC
Signing time: Sun 08 Jun 2025 00:01:17 +0000
Manifest this update: Sun 08 Jun 2025 00:01:17 +0000
Manifest next update: Mon 09 Jun 2025 00:01:17 +0000
Files and hashes: 1: 21zXl1VT2wOLl9fEbNkRa053DOE.roa (hash: 5emuQVjcm3y58xrRXNGECOspFNylmBXZoEALIIh48B4=)
2: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: ZQ4HfbO5MdPBtzhiZLcPNPAB1N9Qp5Z7DpdS1B855a8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:73:e5:ce:53:39:8d:94:12:28:e0:eb:be:c6:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Jun 8 00:01:17 2025 GMT
Not After : Jun 9 00:01:17 2025 GMT
Subject: CN=0ddce8adae081b82fedf1d6bc46b8d2be3b953c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:13:15:89:c1:2a:2a:fe:ce:28:c1:6c:b2:2d:
77:ca:a3:66:81:3b:8f:29:fa:74:4a:a0:9c:04:a4:
2e:8a:b0:62:8c:c8:73:23:6a:73:58:6c:15:7d:f6:
f5:05:55:27:a1:94:57:24:a0:c6:8a:d6:92:d2:31:
19:8a:40:e3:77:0f:65:4d:03:ec:db:e8:61:09:df:
fa:da:a1:2e:13:c6:34:ca:bd:63:8d:d7:61:b5:8e:
7b:85:73:54:fb:bf:19:c2:9e:21:09:d4:f7:02:c2:
35:99:3b:f9:ba:9a:b3:18:28:d2:2f:8c:de:ea:10:
b7:e0:ae:28:c9:45:81:6a:eb:08:7b:83:58:a2:98:
68:ad:a3:dc:bf:1e:aa:0b:ab:8e:58:62:e5:15:0c:
c5:77:0b:b9:94:b6:ad:40:69:cc:9e:cf:23:5c:5a:
61:c8:a8:3c:2f:30:c1:ed:20:29:fd:e7:56:fd:f5:
2f:f0:56:74:63:16:df:a4:80:6f:f2:c1:a6:b2:cf:
c7:bb:15:f7:99:11:d7:16:2a:0a:53:d8:5f:c8:1d:
e9:f7:e1:86:75:c7:df:f0:13:93:0d:ab:07:e2:09:
0f:a1:d6:44:74:0d:91:2c:c1:ad:f0:41:be:ad:50:
4e:f5:9a:33:92:28:5c:56:90:87:b2:1b:88:a0:1c:
22:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DC:E8:AD:AE:08:1B:82:FE:DF:1D:6B:C4:6B:8D:2B:E3:B9:53:C0
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:9c:39:3b:93:21:23:60:22:b4:4e:b3:56:64:eb:2f:d6:08:
39:26:5d:56:b3:c4:ae:5d:94:d0:24:90:65:7c:c4:a0:a1:d1:
c8:fa:12:af:b1:9a:60:e7:31:a0:b0:f5:a6:85:c1:b8:6f:59:
3e:60:26:3c:80:af:2b:8b:de:37:e2:ff:82:ec:4a:56:a3:23:
b8:58:41:39:b0:39:de:8b:60:ca:0c:2e:15:fe:ca:42:86:86:
27:c5:12:5e:e9:58:65:09:d6:15:63:20:b4:9c:a6:62:c6:40:
fc:91:bc:4c:26:8e:f4:da:87:8c:7f:08:7a:65:5e:ca:03:9a:
26:3c:38:41:e7:e8:63:31:47:d3:f2:83:61:20:59:88:36:34:
2a:bd:ff:5d:a7:ad:fe:b8:f9:a2:79:80:86:1d:38:b4:22:98:
32:39:85:55:5a:77:d7:26:f2:74:61:73:cd:9d:59:cb:02:07:
a2:d8:17:3a:a2:86:e5:f5:ba:ca:12:34:7c:62:b7:f9:d0:02:
4d:5d:b6:b4:0f:b7:b2:dc:41:4b:99:80:83:d9:6e:aa:33:10:
a1:1d:0d:28:6c:ea:3e:e4:2b:51:80:79:16:7f:27:7f:18:7b:
51:14:a5:a3:45:07:e2:5c:f5:20:f6:7f:0f:95:c1:4a:e6:6a:
b0:1d:c6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:15:27 2025 by rpki-client