Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
File: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft (raw, json)
Hash identifier: 07sUFabogaagNpsXVHFDNnnSZLRPrVMUM4sYskrS8rA=
Subject key identifier: 82:C1:D3:49:87:7E:1D:F4:17:EF:61:2A:E9:85:49:F6:5A:CA:2A:F3
Authority key identifier: 40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
Certificate issuer: /CN=4092c47db8a21931154605d576c3b7341d06b4b4
Certificate serial: 019750B41C683EB47C4A4EA48C8E1E8E0DB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
Manifest number: 1309
Signing time: Sun 08 Jun 2025 18:01:10 +0000
Manifest this update: Sun 08 Jun 2025 18:01:10 +0000
Manifest next update: Mon 09 Jun 2025 18:01:10 +0000
Files and hashes: 1: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl (hash: nCHZd50YgqMfNTckXrpWK6Y8gNmkqRntplfbidd/JkI=)
2: knkqtZcmX5gSTiCaXxHQZfriQgw.roa (hash: E9ZLKfrMdp8ZIK1kQ0GbAJkgNgAmhxZR6M5lJ1uXi1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b4:1c:68:3e:b4:7c:4a:4e:a4:8c:8e:1e:8e:0d:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4092c47db8a21931154605d576c3b7341d06b4b4
Validity
Not Before: Jun 8 18:01:10 2025 GMT
Not After : Jun 9 18:01:10 2025 GMT
Subject: CN=82c1d349877e1df417ef612ae98549f65aca2af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bc:9c:4f:4f:b5:d7:ef:c5:c4:1f:21:1a:97:
eb:6c:ea:2d:51:0e:ea:9c:b4:c8:6b:a2:09:64:9d:
9b:50:a1:58:28:87:17:54:bc:e5:78:c7:f5:25:d2:
90:ee:58:95:57:ef:60:46:2f:41:b5:1b:ea:2e:bc:
16:c1:4a:77:24:02:e4:e1:17:6b:36:5b:d6:54:44:
a8:93:80:86:5d:00:74:7e:1e:cb:0c:26:df:61:b5:
ab:19:f7:91:02:02:36:b3:22:b5:80:67:b4:13:f5:
27:fc:fd:dc:94:b0:aa:bf:49:42:0c:35:45:55:06:
a5:89:b3:60:48:e2:65:52:74:ee:da:02:1d:3c:cb:
d2:4a:f7:ec:6f:bf:44:52:f8:93:05:91:29:f5:77:
d7:72:26:8f:09:b6:2f:5a:9a:9e:49:6b:f7:f5:ca:
10:9e:ad:45:e9:9e:54:58:fe:f8:50:c2:a3:8c:2f:
58:8a:d4:fb:d3:38:cc:43:ff:e0:8c:f6:13:3a:c2:
3f:01:82:76:3d:b3:44:a8:92:94:85:28:77:94:21:
4e:5b:30:ab:df:45:99:0b:4c:74:b9:f1:ff:62:14:
1a:e2:3e:b4:bd:7b:dc:ea:44:33:54:f9:29:bf:fc:
73:49:ee:48:41:77:1d:a3:c2:b8:e1:7f:9b:cc:2a:
92:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C1:D3:49:87:7E:1D:F4:17:EF:61:2A:E9:85:49:F6:5A:CA:2A:F3
X509v3 Authority Key Identifier:
keyid:40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:a9:d9:3b:b3:8d:06:b1:f9:64:38:08:6f:8c:4b:2c:86:52:
48:5e:4f:83:e5:28:10:65:4b:57:5b:7c:ee:8a:23:20:6f:24:
38:8e:dd:ff:79:ee:38:96:24:f1:84:2f:e5:f3:8b:d5:47:2b:
8f:7e:fa:cc:46:d7:9c:d2:c2:d0:51:5c:78:74:69:44:e5:3e:
f6:73:29:e2:aa:95:77:07:6c:7f:22:47:22:e9:61:66:05:10:
ff:bb:5f:37:eb:5d:9d:d5:17:fd:5a:f3:3a:c0:ab:d9:32:c1:
8c:4e:42:e1:f9:c0:72:ee:9b:45:27:56:5c:b6:2e:37:6d:50:
67:cf:08:86:eb:ae:5e:24:cd:24:05:08:b8:9b:d6:2b:07:25:
08:f3:4c:82:c2:23:1a:50:42:cb:30:33:92:87:52:c9:db:78:
d8:04:91:ce:1c:14:c6:f8:4e:0c:2f:a7:50:c0:6c:59:a9:d1:
1a:29:1e:24:48:6d:0c:3f:b9:aa:be:4e:90:6c:29:34:77:de:
af:f8:a3:e4:7b:31:8c:fe:bc:1f:4f:66:2f:24:14:23:39:76:
b9:d4:a3:d4:e2:c7:c0:ac:57:6d:b7:39:29:1e:05:b6:d7:36:
7b:72:1e:7a:d0:58:ed:97:3c:0a:de:9f:19:9e:e5:73:e3:bb:
c4:98:2e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 03:09:05 2025 by rpki-client