Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json)
Hash identifier: inXAHQtxXm6XbqXMxcsgTN2fit1IZCQIZ8r3a3Gk5D8=
Subject key identifier: 4E:48:A8:12:97:5D:59:DE:6E:56:AE:A2:6B:AB:7C:D2:A1:5C:79:EF
Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Certificate serial: 01976E872E18589EC2ED6A081BAAFECFC109
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
Manifest number: 12BB
Signing time: Sat 14 Jun 2025 13:00:42 +0000
Manifest this update: Sat 14 Jun 2025 13:00:42 +0000
Manifest next update: Sun 15 Jun 2025 13:00:42 +0000
Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: OJPP/+hImOikAoMficS3huvW/bDb3nxRizmrWiwfu/A=)
2: rz-RdiM9IWT3IB5wGzMs1ZBSN0Y.roa (hash: o6qyEqxDzSGkgBN+te6/IqxauC6oKPYhjWorkJVF6Cw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:2e:18:58:9e:c2:ed:6a:08:1b:aa:fe:cf:c1:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Validity
Not Before: Jun 14 13:00:42 2025 GMT
Not After : Jun 15 13:00:42 2025 GMT
Subject: CN=4e48a812975d59de6e56aea26bab7cd2a15c79ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:11:87:45:3b:19:ce:38:ae:6b:37:33:41:8a:
a4:3d:16:33:af:94:43:68:af:c1:fc:4e:87:ab:14:
4f:b9:31:03:c0:6e:36:c8:d6:93:a4:ca:09:27:23:
c0:12:56:19:fb:1b:3b:c0:76:f6:9d:c6:e7:5f:59:
b7:e7:63:c4:c0:af:c5:b1:13:2b:8d:42:0f:ae:c3:
d5:08:90:4e:34:8f:b9:5a:5e:1d:eb:bd:32:fb:97:
a8:eb:be:40:86:14:ea:16:0b:68:fa:d8:31:0b:b7:
fe:5e:ed:2b:74:84:ab:6b:13:55:99:3b:02:e8:53:
7f:9e:97:28:f6:12:d3:aa:75:58:fb:cc:80:0b:c4:
20:01:50:45:12:f5:73:25:b9:2c:a9:96:d8:48:27:
90:0b:2d:88:25:0b:d9:4f:b0:60:60:44:ba:9a:1d:
db:60:cd:3d:ef:86:a5:96:85:f0:e7:ed:de:f3:8e:
41:5d:b4:e3:ae:90:04:45:72:ef:b5:a1:1b:1e:22:
cd:2a:34:7f:63:6b:65:16:37:64:2d:38:86:55:cf:
8b:03:7b:f3:f5:77:ac:8e:b6:e0:28:ad:04:6c:00:
38:54:82:74:4b:39:9f:80:d3:5f:7b:66:a7:0f:af:
27:f0:ee:12:bb:93:ec:0c:4d:6f:50:3c:5c:b2:6c:
1b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:48:A8:12:97:5D:59:DE:6E:56:AE:A2:6B:AB:7C:D2:A1:5C:79:EF
X509v3 Authority Key Identifier:
keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:cf:3d:68:9c:6b:d2:7b:19:75:ae:88:69:17:36:80:71:70:
35:43:c8:bb:fd:97:88:98:0c:66:fb:b0:e6:1b:87:c3:df:0d:
6c:06:00:ed:00:8f:5f:3a:e4:e2:9c:62:0f:05:14:61:ab:92:
c4:2d:42:49:03:06:df:ac:40:47:a1:d0:0c:4f:66:3f:bd:fc:
df:34:a5:2a:ed:57:11:b9:b3:bb:75:30:1c:f5:21:8e:86:36:
b4:de:21:8d:c0:71:d2:0e:a9:df:ae:60:8b:8a:37:0b:a0:e9:
6d:bd:52:40:07:f6:10:df:bb:77:28:b2:75:70:f1:c6:bf:40:
04:75:07:7a:b9:bd:23:e4:24:a6:a4:54:31:86:de:6c:4e:5d:
b0:5a:03:7e:70:60:39:b2:a9:a1:f4:d9:ac:54:8a:45:9f:92:
3f:71:1b:43:6a:5d:e1:01:ca:d7:c4:0f:7d:ac:15:38:5a:38:
ef:90:c4:15:73:b7:2e:ca:c4:7e:84:3c:25:ad:c3:e4:e4:bc:
00:a3:36:e4:31:de:12:39:19:9f:1f:75:64:29:12:16:a2:9a:
7b:3c:da:fc:19:f0:e9:0a:2a:ba:13:f6:73:20:79:a3:f9:64:
4c:4a:bc:b7:08:c2:9f:1e:bd:07:0d:e4:c3:13:63:e3:4b:89:
e5:00:a3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:27:26 2025 by rpki-client