Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
File: Q5OKPegDvWyR8UrZZ71BQbigKK8.mft (raw, json)
Hash identifier: 7KoZmgbmxTRIYuIWHC4iQJwH4UIioEtL7m5AT1e7Kso=
Subject key identifier: 58:5D:B6:86:4C:35:57:6E:69:D9:3C:1A:3E:7B:23:0E:10:0C:B5:ED
Authority key identifier: 43:93:8A:3D:E8:03:BD:6C:91:F1:4A:D9:67:BD:41:41:B8:A0:28:AF
Certificate issuer: /CN=43938a3de803bd6c91f14ad967bd4141b8a028af
Certificate serial: 01976C2ABECDCC538CAF4D3BA1769CB08827
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
Manifest number: 12AF
Signing time: Sat 14 Jun 2025 02:00:30 +0000
Manifest this update: Sat 14 Jun 2025 02:00:30 +0000
Manifest next update: Sun 15 Jun 2025 02:00:30 +0000
Files and hashes: 1: Q5OKPegDvWyR8UrZZ71BQbigKK8.crl (hash: NLABGFHz4K6ATLfoDm1YlYOOXhnUag+O3zOvKqJ2dps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:be:cd:cc:53:8c:af:4d:3b:a1:76:9c:b0:88:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43938a3de803bd6c91f14ad967bd4141b8a028af
Validity
Not Before: Jun 14 02:00:30 2025 GMT
Not After : Jun 15 02:00:30 2025 GMT
Subject: CN=585db6864c35576e69d93c1a3e7b230e100cb5ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:06:2c:c7:75:30:25:ac:ad:0c:ec:ab:c3:5b:
62:f5:e8:57:2e:cd:68:cf:fe:fe:70:4d:75:dc:2e:
23:d5:20:7f:ac:59:0e:ba:54:8f:71:eb:07:76:a7:
9d:58:07:05:7c:12:31:37:96:02:41:ef:e1:06:67:
5c:0b:da:02:fa:d9:5e:dc:36:20:a1:51:92:d6:61:
79:96:1c:57:10:8f:57:56:ca:ec:e1:ff:84:83:20:
b9:09:6d:5d:84:46:2b:9d:02:43:e6:72:74:39:bb:
fd:c9:75:3b:5a:3f:6b:43:51:26:ab:25:d7:96:df:
ca:be:62:1a:8a:46:cd:68:cc:1e:d8:2e:15:e9:9f:
54:ea:5d:ce:75:35:69:c1:0c:25:01:73:8a:c7:42:
06:00:f6:66:89:82:b1:12:2a:dd:83:9d:c8:44:01:
cf:bc:cd:06:a9:bc:96:1c:b1:e5:7b:b8:56:26:ad:
f4:91:3f:ee:f1:e3:28:e2:25:b1:5f:d3:ad:34:9d:
d0:c7:a5:dd:23:86:21:68:13:15:83:ff:59:38:59:
cc:8d:18:a3:eb:d7:1e:44:e3:55:01:c2:af:42:b2:
45:bd:92:2b:ca:a6:1b:33:d6:e5:f3:fc:b2:91:6f:
09:16:1b:44:43:a6:61:3a:96:df:5d:e5:35:e6:22:
85:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5D:B6:86:4C:35:57:6E:69:D9:3C:1A:3E:7B:23:0E:10:0C:B5:ED
X509v3 Authority Key Identifier:
keyid:43:93:8A:3D:E8:03:BD:6C:91:F1:4A:D9:67:BD:41:41:B8:A0:28:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:38:dd:2f:92:4c:c9:5f:06:cc:41:5e:a4:dc:dc:0a:54:02:
a0:05:e7:9e:ae:ee:07:5a:56:36:6f:1d:af:b1:0a:62:d1:84:
ef:ab:cb:4e:b1:7d:1f:df:e4:1b:ce:cc:c1:46:fd:70:7e:1e:
a6:cb:c3:75:f4:af:3b:1f:49:9c:eb:86:a1:56:f2:6b:2e:5d:
92:9f:96:16:d6:5e:bb:6d:69:1f:f8:ba:a0:cf:d2:f1:96:20:
3e:81:29:4e:79:69:54:7e:3f:e0:11:90:dd:6a:f6:c8:c8:1e:
3e:eb:6d:5c:85:ee:98:42:95:8e:1f:13:c3:6f:45:4c:e5:f6:
eb:32:a1:14:9f:a4:ae:ab:01:4c:91:4f:8a:54:02:f7:5e:cd:
cc:db:b3:83:e4:11:b0:5d:a8:f5:b5:da:f6:ee:14:c6:5b:d0:
c2:93:21:65:1a:58:20:02:e5:95:4d:ff:1a:29:21:e5:b8:60:
a3:24:26:f0:ae:55:e7:65:ca:29:f8:7a:f7:11:49:04:41:92:
33:58:65:16:33:94:70:a4:78:63:6f:2d:5d:19:05:e7:7d:63:
96:f7:9d:30:dd:70:2f:e7:6a:90:1a:d9:90:03:29:34:87:2c:
76:a2:28:08:05:af:56:d4:8c:14:73:ac:54:f5:3c:79:e2:7c:
af:8c:e7:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:09:05 2025 by rpki-client