Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
File: qoCTNU5WWsSDilH0fSdpdpxmlE4.mft (raw, json)
Hash identifier: nI6FMnzgVhQpAKbXrMeVe+Q4yjPn6nMZefAB9pYxlGY=
Subject key identifier: F8:20:68:FB:22:21:D8:A2:B2:7D:C1:A6:D6:B4:91:CB:F1:25:F6:C4
Authority key identifier: AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
Certificate issuer: /CN=aa8093354e565ac4838a51f47d2769769c66944e
Certificate serial: 019773ADA130AE0429B28FC4D12FE4BDCF8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
Manifest number: 0CBB
Signing time: Sun 15 Jun 2025 13:00:48 +0000
Manifest this update: Sun 15 Jun 2025 13:00:48 +0000
Manifest next update: Mon 16 Jun 2025 13:00:48 +0000
Files and hashes: 1: ZLWyuBUCt9zFxazwwbh7yb1QxX8.roa (hash: 3SdpbSxYjCjCYkTQyy2TBjnfRY/eKE3ltVUJz5yw6+M=)
2: qoCTNU5WWsSDilH0fSdpdpxmlE4.crl (hash: M7oH3hIPwXWY4LN+VOSmXOs1eRn02Dsv3IQ+UZYo1fQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:ad:a1:30:ae:04:29:b2:8f:c4:d1:2f:e4:bd:cf:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8093354e565ac4838a51f47d2769769c66944e
Validity
Not Before: Jun 15 13:00:48 2025 GMT
Not After : Jun 16 13:00:48 2025 GMT
Subject: CN=f82068fb2221d8a2b27dc1a6d6b491cbf125f6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4d:d5:e0:6d:ef:e5:9d:b8:a5:2e:ee:b5:63:
a9:be:b6:47:22:3f:59:ff:08:ad:57:5f:e8:1e:f1:
f5:48:9b:e1:22:9d:30:00:be:42:1f:2a:ad:69:e6:
46:19:97:e4:2b:db:b2:c8:a4:00:ed:26:29:01:a1:
3b:76:ed:8e:92:7d:ed:2e:8c:14:23:d0:d4:a3:e0:
c9:09:c2:12:c8:1d:62:23:38:94:e7:ae:6b:6f:f0:
34:ad:d2:c5:72:e6:5d:3d:be:0a:ed:3b:eb:c8:7f:
7d:14:9a:ad:37:3e:2b:e6:00:68:57:25:71:f3:a2:
35:3b:e1:f3:61:de:74:13:32:82:73:89:0f:fa:12:
89:db:3e:85:35:07:40:36:10:27:2c:27:f9:51:b1:
5f:6e:fd:4c:90:d4:45:b7:24:30:89:31:53:28:a7:
ed:a1:fb:20:2a:89:1c:df:fe:06:dc:e9:31:f8:fc:
ef:2a:3e:fc:72:1d:1a:5e:57:56:e4:a5:b0:f7:f1:
cb:b4:de:1f:fc:b1:73:f2:06:3e:33:11:00:da:6d:
20:f2:8c:ae:c4:e5:d0:18:3a:12:a7:96:99:04:0e:
6a:eb:6a:02:25:22:49:98:91:e8:75:15:8e:76:4b:
b1:16:60:fa:a6:d7:af:3f:cc:ef:ed:68:6b:25:d0:
b1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:20:68:FB:22:21:D8:A2:B2:7D:C1:A6:D6:B4:91:CB:F1:25:F6:C4
X509v3 Authority Key Identifier:
keyid:AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:b9:bc:92:bf:15:c9:79:10:45:08:50:71:3f:ae:5d:dc:3d:
ec:77:03:fe:d1:58:8e:ad:a3:98:7d:79:a3:3a:29:f1:f4:61:
b6:18:c2:4a:38:46:89:56:74:23:b8:2e:27:20:c3:6f:ef:8c:
5a:a0:76:d6:93:93:b1:84:1f:ce:f4:7f:f3:4c:1f:50:92:ac:
ef:d7:4b:35:b6:b8:f7:48:f0:19:a3:42:82:c6:29:97:c8:49:
1d:28:a4:d2:e1:13:8b:d4:b8:c6:0c:84:22:37:d9:9b:9e:2f:
ee:fa:36:30:47:1c:80:9c:63:12:a0:15:54:aa:61:ac:01:a5:
45:09:c4:2a:32:ba:11:63:3d:c2:97:25:02:04:92:67:3a:c1:
83:7b:fc:88:09:86:ff:d1:73:9f:ab:93:25:aa:06:31:35:a8:
b9:fc:02:b7:2e:1c:9e:cc:a2:76:84:d1:18:bf:a7:ff:02:bf:
f9:a2:79:7a:75:69:5f:90:23:51:46:1b:5a:b2:7d:ab:4a:38:
5f:ee:a8:8f:6f:9a:1d:96:44:8b:3b:41:af:63:41:c7:ab:e9:
52:a3:df:6e:24:cd:14:85:ca:d9:c3:ec:ba:cc:10:17:ca:2d:
bf:ab:49:10:4f:e4:96:e6:0f:b7:78:e8:58:f7:33:cc:a3:fa:
b8:a5:65:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 19:25:11 2025 by rpki-client