Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
File: qnv9Qg21yuutoaIFXYe8faKwnAc.mft (raw, json)
Hash identifier: kZ3ieO+fJKPoOoVHYTchj1aW66ChikwS6cWPlY6G/iA=
Subject key identifier: 38:77:4C:CF:09:38:91:50:22:45:33:5D:98:0F:AC:7D:2D:FF:3C:30
Authority key identifier: AA:7B:FD:42:0D:B5:CA:EB:AD:A1:A2:05:5D:87:BC:7D:A2:B0:9C:07
Certificate issuer: /CN=aa7bfd420db5caebada1a2055d87bc7da2b09c07
Certificate serial: 01976C62113915AC5AD0B1E5093ED336D05F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
Manifest number: 2E
Signing time: Sat 14 Jun 2025 03:00:55 +0000
Manifest this update: Sat 14 Jun 2025 03:00:55 +0000
Manifest next update: Sun 15 Jun 2025 03:00:55 +0000
Files and hashes: 1: du9Q9bL5BOWedJK9qhvdrfuTC6E.roa (hash: yMHVcCfWCQ3tfd7XRi0bmpwcyLFeWTkztgI3BA0HK6Y=)
2: qnv9Qg21yuutoaIFXYe8faKwnAc.crl (hash: 7H2RWG0OlB3KXPNFEz0XWw0dxWe87l8oGBakwexya6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:11:39:15:ac:5a:d0:b1:e5:09:3e:d3:36:d0:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7bfd420db5caebada1a2055d87bc7da2b09c07
Validity
Not Before: Jun 14 03:00:55 2025 GMT
Not After : Jun 15 03:00:55 2025 GMT
Subject: CN=38774ccf093891502245335d980fac7d2dff3c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ca:ac:67:ea:99:cf:5e:1d:4d:0a:34:f6:8e:
1f:4e:02:54:db:9e:78:e0:5a:fe:da:36:72:40:07:
79:75:3a:0b:c3:64:30:2a:f3:fa:86:98:e4:cd:74:
bc:9b:9a:b2:b0:f9:93:a3:b4:a5:01:ee:4f:4b:e6:
33:f7:b7:7c:6f:61:3f:c9:bb:c2:ee:69:e5:4d:48:
2d:f3:5c:b4:12:d8:25:aa:21:8d:63:f7:ea:3e:d4:
65:09:d2:e9:1b:1e:b4:11:60:ba:bd:b3:8a:d4:23:
fd:07:44:3a:99:b0:6d:3d:d1:2e:e1:8d:af:68:11:
d4:ff:41:bd:4d:8a:6d:f1:80:b1:ab:c5:74:5f:16:
95:1f:f6:f8:e3:c8:b0:37:8d:dd:1f:ab:a1:46:5d:
da:4e:5d:ce:3d:ea:5e:15:2f:60:15:49:ee:1d:02:
ef:5a:b1:e5:b4:a8:3f:b4:65:e9:6e:bb:2c:c6:a2:
19:a8:99:04:6f:53:fb:23:c9:cf:39:d2:6d:89:95:
d5:ef:9a:6b:2e:22:84:8f:4d:11:51:b6:1d:23:9f:
26:30:44:e0:d0:3d:14:04:68:1c:b5:f0:0e:d9:ce:
49:36:c6:ef:60:b0:b1:67:39:ba:05:51:97:1e:2c:
99:13:09:49:06:84:a7:28:6e:9d:52:5c:85:8f:16:
60:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:77:4C:CF:09:38:91:50:22:45:33:5D:98:0F:AC:7D:2D:FF:3C:30
X509v3 Authority Key Identifier:
keyid:AA:7B:FD:42:0D:B5:CA:EB:AD:A1:A2:05:5D:87:BC:7D:A2:B0:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:99:16:0c:3a:0c:e8:05:b7:d0:0c:6e:33:32:53:8e:f2:4d:
7a:4a:02:c0:8b:3d:0a:f3:de:3b:b5:79:95:0b:7b:2a:3b:a5:
21:b8:bd:50:2a:87:3f:5d:e1:ba:9d:a6:92:e3:0b:bc:4e:cb:
5d:70:07:4c:2d:e6:62:eb:a5:fd:95:4d:15:54:2a:64:0b:b6:
0c:8f:c7:54:3e:59:16:ec:9e:22:9c:65:fc:3e:e4:87:3b:b2:
da:a5:2d:3f:05:35:4f:50:3b:97:76:72:31:39:5e:77:c5:ca:
2f:39:e2:40:e1:46:1b:51:d4:95:42:35:3e:60:88:1a:de:b1:
98:97:20:78:9b:b8:ea:f2:89:dc:99:0c:6d:fc:aa:b6:fc:4f:
f4:52:06:67:02:0d:ed:63:e4:e1:9f:25:b4:1f:48:1b:ed:4c:
89:ed:00:06:d0:0e:a1:93:4f:6f:e1:9c:1b:de:1f:20:bd:18:
9f:22:6a:99:64:bb:e3:ac:0a:60:e8:d4:eb:ad:ae:b6:f6:45:
b8:51:64:3c:12:af:e2:37:e9:70:e1:5e:4d:20:77:42:3d:8d:
79:7f:39:2e:d4:3f:6a:1d:b1:eb:75:32:cb:9c:76:18:bd:79:
18:2b:a1:cd:16:f4:23:83:37:d2:11:d3:db:4a:a2:44:9d:23:
ce:91:9c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:15:42 2025 by rpki-client