Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
File: Q8d7RzY2gTePrORmFB1UzIg5nPU.mft (raw, json)
Hash identifier: qOn97D/5DP3lxuEc3ObJnnKgHtWCN3TJo3FL6IbC5mc=
Subject key identifier: FD:19:97:29:15:B4:33:81:3F:8A:C2:ED:F5:CF:95:30:38:E4:53:40
Authority key identifier: 43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
Certificate issuer: /CN=43c77b47363681378face466141d54cc88399cf5
Certificate serial: 01974A7B8C80A399FD13734C2784DC740789
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
Manifest number: 150E
Signing time: Sat 07 Jun 2025 13:01:40 +0000
Manifest this update: Sat 07 Jun 2025 13:01:40 +0000
Manifest next update: Sun 08 Jun 2025 13:01:40 +0000
Files and hashes: 1: LhVPheiP2Wbqe7xFjCy9IQ_CSc0.roa (hash: Jd5k/N8+tstl7PIZFFMbIYM8R6nDjGK5pnVrR8G85AA=)
2: Q8d7RzY2gTePrORmFB1UzIg5nPU.crl (hash: AzeAibxAFHrkHzGZ/deOcqfpUPhiTbGOQFdehaa7suY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:8c:80:a3:99:fd:13:73:4c:27:84:dc:74:07:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c77b47363681378face466141d54cc88399cf5
Validity
Not Before: Jun 7 13:01:40 2025 GMT
Not After : Jun 8 13:01:40 2025 GMT
Subject: CN=fd19972915b433813f8ac2edf5cf953038e45340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:37:2c:f1:50:e1:95:35:df:a3:b2:9f:eb:04:
4e:53:0d:7c:19:c7:97:27:25:3e:5b:62:2f:e5:9f:
99:62:f7:66:4b:5e:4e:16:e4:cb:4b:f4:fa:92:86:
28:81:89:dd:ec:b3:5c:ed:c3:f5:9e:4d:82:77:e6:
83:03:d6:ef:ce:7b:d6:c1:6a:12:73:76:c7:41:91:
1f:96:b1:15:64:69:ba:f1:bd:f0:6e:fd:a1:2a:2b:
77:bc:1b:87:b5:de:97:4a:6d:b3:2f:5c:14:d9:ca:
3a:59:f1:70:5a:41:f2:10:24:1a:22:cd:ed:9b:18:
8d:7f:29:3e:18:ac:f5:25:0e:a0:b7:a9:aa:48:32:
3a:24:d5:61:dc:6d:26:cb:8c:be:31:09:f9:0b:27:
53:17:3f:68:c1:18:f1:97:7f:f8:fe:61:63:69:2f:
2d:34:a5:87:d6:30:71:5d:eb:48:e1:19:85:93:00:
f7:a5:f2:f6:de:dc:3d:df:31:e8:97:e4:eb:76:be:
63:43:92:0a:37:8b:77:a3:69:18:ec:ef:e6:0f:fb:
e9:5e:01:d3:46:33:d8:8b:d9:8d:19:ea:56:01:c7:
ba:4d:56:65:04:93:5a:8b:68:40:ce:a0:2e:1e:86:
f7:b7:ee:7e:89:60:b9:47:ec:6f:dc:db:8d:86:45:
e0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:19:97:29:15:B4:33:81:3F:8A:C2:ED:F5:CF:95:30:38:E4:53:40
X509v3 Authority Key Identifier:
keyid:43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:66:3d:23:9c:fe:dd:6b:6b:81:c4:4d:29:4c:5d:4d:60:b5:
8a:eb:f7:6f:af:32:14:66:2f:1a:b4:bf:8d:ae:0b:e0:ac:87:
61:28:af:4d:2b:70:d2:89:76:0f:14:7d:f7:a5:ba:50:47:62:
34:f7:d6:51:d3:69:d5:00:20:82:e8:da:66:a1:0d:77:11:34:
3a:63:da:76:88:39:95:52:a2:f7:62:3b:a2:ea:7e:6c:a8:28:
dd:18:aa:26:85:f8:da:f4:c2:8f:9e:42:a2:e8:89:17:09:79:
01:fa:38:39:88:46:53:3d:9f:a5:e3:5a:fd:d5:ae:cb:cd:c2:
6a:55:5f:f8:2b:05:76:d3:b8:5a:ed:6e:89:43:5c:c5:a8:4f:
c8:d4:35:71:be:94:f3:52:32:58:bf:1d:65:d9:da:5e:8e:3a:
38:a1:ba:88:0a:e1:bb:20:0f:84:3d:99:4b:be:22:74:1f:38:
77:81:39:75:ca:08:e6:dd:6d:bd:a5:d2:c2:68:5f:d0:d6:8c:
35:1f:7e:08:4e:11:a6:b3:7f:c9:95:94:58:4f:f0:82:55:4e:
b8:37:d2:47:ac:c6:33:68:05:63:fd:76:f2:df:26:43:25:a1:
d9:21:37:1a:91:87:4d:f8:a8:d2:31:7d:5f:e8:58:29:52:d9:
66:5c:c9:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:24:18 2025 by rpki-client