Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
File: 0xQt8vZwlAzPWksnoNDJh-zIhlY.mft (raw, json)
Hash identifier: UmehSYjuA0FCFm4O5U0flzB+f3EsbRmCcZv4XHWCvcQ=
Subject key identifier: 15:84:04:BB:75:DD:94:A5:4F:E3:7C:15:02:A2:0C:8E:7A:94:48:69
Authority key identifier: D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56
Certificate issuer: /CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656
Certificate serial: 019771BF715D7CC419C20EAC2F76DBD4F6A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
Manifest number: 02A2
Signing time: Sun 15 Jun 2025 04:01:01 +0000
Manifest this update: Sun 15 Jun 2025 04:01:01 +0000
Manifest next update: Mon 16 Jun 2025 04:01:01 +0000
Files and hashes: 1: 0xQt8vZwlAzPWksnoNDJh-zIhlY.crl (hash: 48+z458QSH4ON89aySBIKywZl8OkQ+Dxo4eeiknhm68=)
2: DxWkaJkNeo1GnfX8PTB6m_7NDo8.roa (hash: 1C13Qsc+uAlJmXy/kak788lVFXMyWIaA+AZiv7RcjGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:bf:71:5d:7c:c4:19:c2:0e:ac:2f:76:db:d4:f6:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656
Validity
Not Before: Jun 15 04:01:01 2025 GMT
Not After : Jun 16 04:01:01 2025 GMT
Subject: CN=158404bb75dd94a54fe37c1502a20c8e7a944869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f4:27:af:a1:2d:38:28:03:a7:a7:a6:49:f3:
01:a7:46:5d:5d:c5:a2:4c:83:bf:b5:c9:3f:33:8e:
31:79:9f:bc:47:3b:85:86:97:b9:16:16:cf:89:ea:
f2:02:be:6b:3c:db:a3:e0:1f:69:4c:67:70:bd:ca:
1f:68:37:83:ef:aa:4c:27:40:b9:a1:89:fc:74:d5:
a5:c1:d4:8a:e9:11:b5:f6:19:5e:78:82:7a:9e:c0:
e2:0b:44:f9:fe:a0:64:6b:11:3c:46:2f:58:2f:ab:
e0:d6:22:5d:5f:9e:c9:b2:72:b7:09:d4:4c:70:62:
41:2e:1a:11:59:d4:09:1e:a4:76:b0:95:2d:a1:44:
f4:b7:2d:f7:da:3b:4d:2e:b8:85:be:62:3d:3e:d8:
1b:be:d7:21:28:ce:14:01:f8:1e:ad:e1:34:09:c9:
41:78:b9:02:eb:64:82:84:76:f4:5d:89:26:f3:0d:
1c:84:6a:88:5e:89:f7:a3:2f:3a:26:5e:23:e2:73:
39:94:f3:46:e0:9f:19:48:6d:2c:76:b9:af:ae:cd:
b3:cc:d6:2d:0b:93:ed:ae:fc:a7:61:c1:dd:0b:0d:
c6:39:95:85:85:e3:b7:cc:5b:18:f2:cd:20:e7:3f:
a8:27:09:f4:17:b0:f0:16:70:9a:7e:00:5e:be:d9:
b4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:84:04:BB:75:DD:94:A5:4F:E3:7C:15:02:A2:0C:8E:7A:94:48:69
X509v3 Authority Key Identifier:
keyid:D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:95:2d:bc:ee:ca:ef:f8:17:4f:eb:d6:c5:f2:2c:9b:e1:49:
af:0d:71:ad:89:f7:60:bc:80:a4:68:15:da:44:e4:1a:2f:ca:
c0:7a:04:01:0a:01:f0:26:36:b5:a3:b1:86:56:de:f3:94:e8:
49:67:0c:82:14:29:d9:77:02:0e:76:4f:dc:57:d3:d6:0a:8f:
dc:bc:6b:86:a0:94:49:1e:cb:c9:1c:a2:52:a1:c0:d6:14:41:
40:35:fc:9d:b4:68:d0:11:88:47:0c:fc:08:b2:04:67:6c:6a:
80:b2:d1:29:ea:b3:10:4f:8f:e9:21:37:74:df:c9:ab:2a:21:
bb:dc:42:49:52:ed:2c:49:b9:76:e1:34:3f:39:23:94:8b:99:
5e:ca:de:31:cc:90:01:da:01:40:59:f7:b1:5d:72:1d:31:04:
a8:8a:dd:58:47:d1:70:ff:33:9f:0f:c7:ab:4b:42:df:c4:f0:
a8:07:4e:4f:03:ab:e1:be:5a:5a:89:fb:be:74:26:00:9e:25:
6b:df:c9:96:96:67:f5:99:70:67:58:b6:f9:9a:50:70:2c:b8:
23:9a:2b:86:24:3c:53:4f:ce:58:f9:28:5b:46:96:59:74:98:
50:b4:98:51:bc:98:8e:1a:82:fb:d3:57:1c:d3:a7:79:da:65:
d0:f0:07:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:10:15 2025 by rpki-client