Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
File: QsMDcZht9dVk7mcHRxe2agL_VxI.mft (raw, json)
Hash identifier: YDY9B7vqJgfUo2TKRX6If9PWQu1+uDzqInnPL+BJrOw=
Subject key identifier: 42:92:AB:02:62:5E:BC:69:F2:F1:22:83:A3:62:4A:15:A6:B1:3B:EA
Authority key identifier: 42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
Certificate issuer: /CN=42c30371986df5d564ee67074717b66a02ff5712
Certificate serial: 01976FD0CA7401EDBE760D6786ABB340AD7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
Manifest number: 1481
Signing time: Sat 14 Jun 2025 19:00:43 +0000
Manifest this update: Sat 14 Jun 2025 19:00:43 +0000
Manifest next update: Sun 15 Jun 2025 19:00:43 +0000
Files and hashes: 1: QsMDcZht9dVk7mcHRxe2agL_VxI.crl (hash: H7+LdzlcyQ3DQCHwAU2iCzCklMWu3Mc648JmpiDG2Xw=)
2: hyIZ79qkrdHzxjA2nqjpWKRJazw.roa (hash: uN3TIUn6uJGV9mne7uVtH2Vshh9cYXISPUulyaHzlUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d0:ca:74:01:ed:be:76:0d:67:86:ab:b3:40:ad:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c30371986df5d564ee67074717b66a02ff5712
Validity
Not Before: Jun 14 19:00:43 2025 GMT
Not After : Jun 15 19:00:43 2025 GMT
Subject: CN=4292ab02625ebc69f2f12283a3624a15a6b13bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3f:a2:54:3d:a1:ed:fc:b7:86:6e:d6:eb:b3:
c1:bc:dc:2e:0e:c6:40:c2:5f:3c:fa:94:3b:c0:ef:
4e:64:24:9d:76:be:2c:05:42:da:d4:8c:f3:6c:28:
a3:93:29:81:48:35:09:59:4b:a6:00:8e:30:aa:ce:
d4:1e:13:ab:66:99:21:97:31:67:83:18:a1:e8:1d:
e9:4b:e2:e1:2a:13:12:ca:b4:15:b2:b8:e6:7d:78:
0e:f7:1c:93:d3:e6:6f:19:95:c2:cc:44:45:17:2d:
c2:b2:64:33:d9:75:b8:02:e9:dc:50:ee:54:5f:39:
7a:93:28:90:06:b0:b0:3b:e7:1d:66:56:a3:96:b8:
be:87:ba:97:c6:a6:c5:af:ca:b6:71:78:6f:cd:fa:
ca:5b:64:4e:7d:23:b8:33:da:6b:c8:60:90:e2:1c:
2c:22:39:7e:69:21:e3:41:9d:3b:fe:d4:d7:3a:b9:
71:e5:65:b0:5f:01:66:08:f0:32:87:46:22:ce:ab:
f6:51:74:30:b2:c9:c9:99:60:8d:30:91:9a:2b:41:
9b:4b:e0:ed:01:9f:34:39:e0:5a:f7:e4:47:05:53:
d4:6c:0f:a7:3b:9d:84:02:81:48:16:57:cf:8f:26:
f6:34:6d:38:53:84:1d:94:ad:1d:da:42:0d:a1:72:
57:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:92:AB:02:62:5E:BC:69:F2:F1:22:83:A3:62:4A:15:A6:B1:3B:EA
X509v3 Authority Key Identifier:
keyid:42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:cb:db:b6:23:07:2c:e9:9c:77:2d:d1:db:c3:c9:96:84:a8:
b4:e4:2d:3a:69:37:52:bb:1d:aa:ca:ee:38:66:51:7a:1e:d2:
12:61:21:a4:3d:42:a4:5e:0c:03:fd:ad:83:3c:4a:bd:07:c3:
36:24:6b:47:3a:98:74:2b:a3:e7:5e:6f:b4:f2:38:bd:44:8b:
ae:0f:d0:87:4c:a0:d2:97:24:f8:b8:0c:76:22:fa:61:af:6a:
8e:f7:fc:5a:c3:6a:7c:b7:2e:59:e1:32:b6:f3:a2:d1:00:bc:
64:22:6b:36:af:10:10:d2:21:49:13:ac:a8:8d:7f:4e:46:56:
67:54:e9:c7:c1:f4:a9:4b:54:87:4d:b7:61:0f:29:27:50:36:
5d:ea:e9:79:2f:3a:36:67:4f:36:ad:f8:e1:73:93:58:ae:37:
08:fc:3c:55:e5:18:53:f4:23:e2:a1:ba:2f:a8:fa:41:6e:4b:
55:88:34:09:16:f1:cb:f0:33:cf:8b:14:1c:dc:cf:2e:24:67:
cb:6b:fb:6c:11:54:46:7c:6c:09:08:ed:a8:aa:90:0a:dc:c1:
3e:09:b8:c6:66:50:0b:09:f7:2e:ee:86:04:a2:ec:65:8c:25:
0b:ba:f1:d3:ae:20:9e:f1:c6:4b:cb:89:6e:2c:fb:0b:72:18:
35:cc:83:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:32:46 2025 by rpki-client