Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
File: QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft (raw, json)
Hash identifier: ln1l3RpdRBGt/fTFdTztd8cVFmoZesaK6ejDFbo+ZGg=
Subject key identifier: C3:57:80:2E:75:64:65:CD:5E:45:F3:A2:21:A5:C7:F5:BB:C6:C0:F8
Authority key identifier: 41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
Certificate issuer: /CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Certificate serial: 01974A7AE447B066B5749BF8CD00626E87D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
Manifest number: 150D
Signing time: Sat 07 Jun 2025 13:00:57 +0000
Manifest this update: Sat 07 Jun 2025 13:00:57 +0000
Manifest next update: Sun 08 Jun 2025 13:00:57 +0000
Files and hashes: 1: QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl (hash: vLcB0Ho2+htqm2RG/5SK8Zsb1sWzJSP/Wf3hSc4KUV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:e4:47:b0:66:b5:74:9b:f8:cd:00:62:6e:87:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Validity
Not Before: Jun 7 13:00:57 2025 GMT
Not After : Jun 8 13:00:57 2025 GMT
Subject: CN=c357802e756465cd5e45f3a221a5c7f5bbc6c0f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:5e:b3:31:98:7a:22:d9:0b:bc:47:d3:59:8d:
47:3d:84:17:5f:6d:3d:da:b3:01:60:c8:1f:9f:c6:
c4:4d:51:bb:6c:24:19:1c:fd:55:05:ff:0f:8e:d2:
d8:06:14:b5:77:86:25:79:68:10:b1:b8:2a:12:a2:
1b:b9:5b:d3:37:99:ab:f5:c0:d7:3f:e2:fd:4e:ee:
c0:d0:ba:fb:4f:59:80:72:b2:3f:7d:78:d7:02:fa:
07:c1:b7:87:9f:42:a4:68:56:02:b0:54:cb:dc:a2:
a4:22:3b:a8:38:b8:e2:c8:88:b6:33:a8:f6:7d:b0:
94:cb:60:c0:2f:0b:1b:cb:b8:04:7a:31:8d:4b:e4:
50:73:80:71:1f:63:6e:e7:b1:d0:d7:cc:4e:8b:df:
4e:b1:eb:f0:c9:ea:64:ee:50:eb:de:71:12:c3:97:
6b:1d:42:1c:ab:7b:35:a6:aa:9f:2d:b1:66:5e:27:
ff:0a:5d:12:e9:c0:b8:2d:18:cf:e1:26:8f:02:51:
6a:0a:d7:d6:4a:dc:f0:a6:57:93:dc:e7:95:2f:35:
18:59:45:0b:b8:2e:69:ce:71:5c:f3:e3:bd:34:a1:
fc:70:28:7b:cb:5c:99:54:e4:d0:ad:ef:38:e9:d7:
f5:75:b9:b5:79:f3:35:8e:db:00:5c:8a:f2:8d:c8:
63:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:57:80:2E:75:64:65:CD:5E:45:F3:A2:21:A5:C7:F5:BB:C6:C0:F8
X509v3 Authority Key Identifier:
keyid:41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:6d:52:c4:86:45:0e:03:30:83:e9:5f:a8:36:5d:a5:16:51:
14:c7:93:34:7a:ee:30:e4:a8:eb:ba:e6:61:2e:3f:fe:a6:99:
72:a3:b3:57:29:ae:df:0f:fb:e2:0e:1d:85:16:f4:d7:a3:5f:
41:5c:36:d2:4d:5e:1a:cb:d0:d4:08:19:3a:df:ed:00:6b:bf:
bd:c8:3b:31:c0:94:e9:49:0c:1b:ac:2a:f9:8c:d7:67:48:6f:
b8:95:a2:f0:01:c0:91:f1:a1:db:3c:af:c6:a8:b6:46:97:22:
02:be:5a:cc:67:de:94:ca:c2:89:91:d6:6f:46:ed:31:68:09:
1d:da:4e:8d:8d:7b:e5:47:ff:5e:04:7f:7f:e7:d1:80:59:6b:
3e:28:1e:a5:6d:f2:b3:2b:a2:83:80:d1:55:61:b2:90:b1:ea:
bd:60:f8:81:65:e2:92:1d:70:15:71:9c:0b:46:dc:f1:41:8b:
93:7d:0a:57:c6:d6:5e:08:96:6a:9a:57:2c:50:dc:2f:8c:dd:
3c:14:e6:e9:e8:9b:af:5c:ec:51:8a:5f:78:90:bd:4a:0b:70:
15:f5:d0:1a:69:38:81:e9:6a:d5:ad:de:93:c1:b6:94:19:b5:
ca:72:9f:af:d2:da:5e:4a:dd:ac:16:9e:32:67:dc:e6:cb:67:
9b:bf:c2:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:16:02 2025 by rpki-client