Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: QEDyvRxow3Upb3dBgfpDp94XeJwX1HV3u1vS6Jevrb0=
Subject key identifier: CD:7B:B1:B8:D9:14:B4:88:24:A3:0C:FE:26:3D:26:9A:6B:60:22:A2
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 01977F7A9F82D53ABD4B9CE70011DBDFA188
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 1528
Signing time: Tue 17 Jun 2025 20:00:31 +0000
Manifest this update: Tue 17 Jun 2025 20:00:31 +0000
Manifest next update: Wed 18 Jun 2025 20:00:31 +0000
Files and hashes: 1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: HU5LTJ/7t2tAbYd+oZF79jFbYY4MCVRcfh+i44UgHoE=)
2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 20:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7f:7a:9f:82:d5:3a:bd:4b:9c:e7:00:11:db:df:a1:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Jun 17 20:00:31 2025 GMT
Not After : Jun 18 20:00:31 2025 GMT
Subject: CN=cd7bb1b8d914b48824a30cfe263d269a6b6022a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3a:47:8a:e6:8e:1d:0c:4f:d0:42:24:44:86:
7f:c8:ff:7c:be:a3:cf:9e:8b:a9:e4:25:9f:2f:34:
d1:b5:ca:a8:f2:0a:55:0c:70:d6:ed:ff:48:1f:bb:
6e:d5:93:29:3c:7d:9e:5c:67:20:c9:27:e2:4b:1e:
43:e7:8a:e8:13:af:8d:a9:a8:75:a2:d3:1a:4f:7e:
3b:c7:61:be:76:93:f7:30:6d:66:26:b8:66:bf:14:
62:99:09:6d:d9:fc:7b:34:97:b0:81:d6:11:f7:bd:
a0:25:c9:e0:07:f5:8a:3c:25:ee:c3:7b:f4:14:83:
2a:dc:f0:bb:4c:37:7d:d3:62:d9:95:4a:07:ac:73:
d5:e9:53:28:90:3d:79:a0:a7:79:35:2a:3c:02:85:
90:b4:1d:07:f4:5f:7d:a8:81:19:03:f7:47:8b:53:
08:fc:51:71:6c:5f:b1:7a:c8:1e:0b:74:ac:40:54:
d6:0b:31:94:6a:e6:3c:36:f2:8b:43:b5:d3:6a:9d:
ab:3a:3a:69:dc:13:83:d3:03:e4:51:a8:ee:ee:a8:
bc:09:b9:3f:c0:99:29:a9:30:cc:40:fd:19:54:bb:
48:47:49:3c:cd:d7:a1:a6:cf:58:2f:08:10:eb:f8:
cc:4e:5f:f6:95:46:07:8e:92:87:eb:68:fb:7f:0a:
c0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7B:B1:B8:D9:14:B4:88:24:A3:0C:FE:26:3D:26:9A:6B:60:22:A2
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:79:03:45:95:64:63:4f:25:91:1d:4d:c9:9c:9a:be:bf:30:
d2:9b:7d:45:f4:a7:82:9f:40:7d:46:92:de:f8:f5:8b:6e:0a:
ab:2f:08:73:2d:02:a9:18:ce:ce:b6:f5:82:6c:e9:d3:01:db:
98:ed:04:a7:79:78:69:f4:e3:7e:0b:98:f8:82:08:97:01:73:
dc:dc:23:3a:ea:54:3b:9e:b1:af:e8:5d:36:23:8c:94:a4:17:
2a:bc:1a:e8:7c:98:66:b9:33:b8:30:22:c4:34:d9:bb:60:df:
72:f4:20:f9:f1:cd:f0:c6:22:01:39:9f:ac:a7:fe:81:f8:8c:
ce:ef:3d:c8:b7:fa:be:a9:50:91:7f:50:72:63:83:ed:23:5d:
23:89:05:e3:08:e2:30:2b:d5:e4:0b:6b:e6:a1:9e:26:b2:5c:
f0:03:4c:48:d7:24:25:a6:ae:7d:4d:a7:b5:18:0e:cf:12:69:
04:48:09:d4:6e:a9:d3:1d:63:b2:22:43:0f:05:a6:e3:47:15:
0c:fd:68:5d:45:92:ca:d1:ae:27:cc:8b:3f:e4:9b:e2:a0:62:
00:46:52:34:49:8c:9c:d5:67:3c:cf:f8:2a:f9:4d:dd:bd:4a:
66:52:45:09:6c:f3:de:58:0f:ca:1b:94:82:98:24:1e:ed:66:
50:62:02:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 04:58:32 2025 by rpki-client