Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: E0E4JIJ6JWYIOmfGlNAk3bDCNMqkZugAW7U+Xdz9j0k=
Subject key identifier: 89:CC:2C:F5:3C:87:5C:05:D2:1A:B1:31:87:89:20:8B:9A:7D:EB:30
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 01977AC21ED9D29EB1A0DD84A63DD6C57E11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0CB7
Signing time: Mon 16 Jun 2025 22:00:31 +0000
Manifest this update: Mon 16 Jun 2025 22:00:31 +0000
Manifest next update: Tue 17 Jun 2025 22:00:31 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: hu+UCCeZHnm+uSwJp01IEthPgc6S0bP/LQ3sDirTAvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:c2:1e:d9:d2:9e:b1:a0:dd:84:a6:3d:d6:c5:7e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Jun 16 22:00:31 2025 GMT
Not After : Jun 17 22:00:31 2025 GMT
Subject: CN=89cc2cf53c875c05d21ab1318789208b9a7deb30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:90:bd:54:41:53:fb:e2:15:9b:9f:33:c7:df:
60:7e:9a:b7:24:59:ae:3a:90:db:24:2a:4c:eb:e6:
2d:68:8c:74:28:26:a0:eb:31:d0:f7:13:39:69:00:
e0:67:b7:72:e2:3b:9e:6f:d7:14:77:6b:16:db:47:
ec:ba:64:04:de:b1:14:95:07:7e:f6:3e:88:75:2d:
9c:a6:da:34:39:43:1f:35:2e:21:56:11:d6:7d:31:
25:8e:6d:06:42:0b:05:0e:04:a7:2c:2e:b9:41:d3:
41:ce:d0:6c:62:ab:fe:28:4b:79:0c:71:7c:71:24:
27:60:87:24:8f:fd:20:3a:d6:d9:22:f5:6e:2a:2f:
b9:63:2d:fb:9d:30:fc:a9:73:66:1b:39:c2:26:d3:
67:62:42:9c:6a:6e:1a:47:47:c6:12:f0:95:b8:92:
5c:77:a3:1a:e3:84:17:73:1a:89:73:dd:1d:69:5f:
61:48:9a:a9:31:1f:e2:4e:a0:88:92:e7:70:1b:e5:
86:07:7f:9c:c4:46:1e:dd:62:6e:72:26:d2:59:bc:
0f:6a:d5:2e:e1:11:45:1f:90:a2:b6:8b:5c:fd:e0:
df:5d:fb:32:f8:ef:1a:f3:38:49:17:bf:fd:25:f5:
69:f3:50:0a:1f:ec:0f:41:f9:59:7d:3a:34:78:51:
15:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:CC:2C:F5:3C:87:5C:05:D2:1A:B1:31:87:89:20:8B:9A:7D:EB:30
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:48:32:6f:c3:f9:be:8e:2d:86:51:a1:91:67:59:6c:39:be:
3d:a8:8f:6c:fa:f5:a6:60:bb:80:a8:7e:46:b1:46:12:cf:1c:
29:76:5e:b6:ef:ad:17:67:6d:d8:b2:cb:25:0b:c6:d0:4b:b0:
9c:00:52:0c:74:18:fc:c4:57:04:5a:19:f4:7b:cf:17:94:3a:
9e:0b:64:91:e3:4a:80:d4:8b:22:60:76:7a:35:03:38:38:d1:
87:2a:e8:34:46:9f:2a:6f:b7:f7:98:6b:d0:dc:03:d3:fc:2e:
f7:96:69:2a:c0:d2:c7:39:bb:6c:e4:a1:9d:13:03:33:41:c9:
15:86:c5:54:de:36:c9:80:a7:e7:bb:38:dd:d7:57:e4:e2:60:
0f:9e:84:9f:6a:a1:2f:73:c5:ca:de:cd:dc:d2:42:3c:ce:e3:
3a:f7:81:25:42:ca:ee:29:b9:8d:27:21:1d:0d:66:54:bd:43:
ee:2d:bd:e5:2b:a9:71:d2:81:cf:db:a9:26:59:4d:42:7f:58:
94:80:9c:9b:da:00:7d:b4:21:42:8b:e8:e1:a0:ea:96:ce:88:
8b:63:ec:fe:89:70:aa:c9:21:af:7d:17:41:b3:a5:30:b3:de:
a8:42:4a:fd:05:a6:7e:42:d1:36:73:8c:d3:43:3c:97:32:d6:
38:8a:2a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 00:31:27 2025 by rpki-client