Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
File: Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft (raw, json)
Hash identifier: uYjzX8MbXzZDEQmK2XqCPvs6TRCVVNPvBb+mmg6CXbU=
Subject key identifier: 6F:DE:C3:FF:49:CB:43:28:EA:18:56:71:8E:08:39:F5:4B:DE:45:33
Authority key identifier: 43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB
Certificate issuer: /CN=4367547d851e3cd776cd33290b2454acc0e851bb
Certificate serial: 0197711AC5D95A4D2F113B5733A38A8581B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
Manifest number: 0218
Signing time: Sun 15 Jun 2025 01:01:09 +0000
Manifest this update: Sun 15 Jun 2025 01:01:09 +0000
Manifest next update: Mon 16 Jun 2025 01:01:09 +0000
Files and hashes: 1: FQG0ejLSzUt4iA-ikpx0cAR2OKU.roa (hash: kXmpv8tYACCxfjQibnimCHCR1m+/Ufm2bbWZrvhXv8Y=)
2: Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl (hash: 3lGT14ywIhlvYTYaykV4rq1rr2z2l4I6fyT609pTGl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:c5:d9:5a:4d:2f:11:3b:57:33:a3:8a:85:81:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4367547d851e3cd776cd33290b2454acc0e851bb
Validity
Not Before: Jun 15 01:01:09 2025 GMT
Not After : Jun 16 01:01:09 2025 GMT
Subject: CN=6fdec3ff49cb4328ea1856718e0839f54bde4533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:eb:b5:79:e2:0e:fd:4f:2a:d8:e3:a9:b9:2e:
46:04:59:f5:08:df:73:ac:77:8b:60:e1:b4:f9:e4:
64:0d:f1:30:2f:5e:ec:db:18:be:91:b1:9b:6c:73:
8c:28:b7:90:c9:25:26:bd:ed:21:0c:53:42:b0:6e:
a7:b3:a7:3c:d1:ac:a7:e7:47:d8:34:83:16:bf:b4:
7c:d1:3d:9e:cd:ae:55:ca:f3:96:fe:a3:b1:2e:6d:
09:2a:2b:07:b4:89:c4:54:e4:36:31:13:fd:03:99:
cf:d7:b0:26:37:6d:6b:3a:4e:73:15:fb:24:1f:72:
70:83:9d:76:c4:f1:cd:37:0b:48:e0:f4:7c:42:6a:
29:b8:80:2a:b7:2b:7a:de:44:9a:91:a3:1b:9f:1f:
6d:0d:d8:9b:ec:f7:96:9b:e5:97:7c:a3:73:04:91:
50:cf:15:a2:cc:2a:48:22:72:ac:c6:53:5f:5d:76:
14:6f:c0:c6:fb:59:f3:10:ae:25:04:f2:20:82:f4:
1f:06:00:9d:5a:e8:2a:f2:3f:bc:29:50:96:4f:74:
64:bf:c6:c2:5c:f5:c6:bf:d1:70:67:b0:6a:62:9d:
44:de:a4:68:22:6b:b3:79:63:52:34:04:24:a9:0f:
31:99:b5:21:a5:5b:9d:0e:6f:cc:1f:18:54:d2:45:
e1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DE:C3:FF:49:CB:43:28:EA:18:56:71:8E:08:39:F5:4B:DE:45:33
X509v3 Authority Key Identifier:
keyid:43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:51:c8:e6:ff:d0:88:d2:ee:da:90:8c:d7:08:b7:d8:19:45:
44:76:d9:bf:ac:70:9b:d0:d8:eb:fe:49:a7:4f:86:64:d7:db:
b1:39:6a:dd:f1:c8:2b:7c:53:6f:39:55:e8:65:00:93:40:45:
d8:27:41:c5:ea:f4:ac:88:df:01:61:1b:e2:71:74:c0:3b:1f:
cb:81:a2:3f:76:d5:df:18:36:d3:11:7f:65:7e:16:ad:5a:72:
2c:a5:98:9a:4d:c7:12:2d:3b:92:11:7a:f3:77:15:0f:32:32:
62:b9:8b:26:ec:0b:41:33:31:59:7e:59:9f:da:70:dc:57:9f:
67:55:18:f7:f7:30:9e:ef:21:44:c8:6b:aa:89:2e:f7:0c:65:
2b:ec:85:3f:6e:a2:ce:65:c0:14:77:f1:2e:fe:46:4a:61:b1:
8b:e2:d8:a1:44:a4:6e:56:7c:24:b6:60:52:57:25:0f:0e:1c:
8f:45:07:b8:ae:f5:7e:17:d5:70:76:a8:74:25:ed:88:79:0c:
8d:d2:bc:53:75:e9:f9:1b:ab:2c:8e:91:25:a0:4f:c0:39:a7:
95:6f:57:89:11:63:21:85:c0:a6:aa:20:05:d4:b5:de:e8:b8:
0a:f7:35:82:e7:8e:2d:ff:09:7b:7e:ac:03:ee:9f:a3:ad:c5:
57:29:80:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:13:04 2025 by rpki-client