Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
File: q53IX5TKZH3g22TXTTE5lHzESbo.mft (raw, json)
Hash identifier: Lhtx4jOAsjpk//esH8Qht/QQBPXEcg7GbaH7iiT+3ZY=
Subject key identifier: 0A:29:3B:C0:AA:A4:BD:7A:E7:FA:96:20:B4:D1:3D:2F:64:BA:FC:46
Authority key identifier: AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
Certificate issuer: /CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Certificate serial: 019784D7FB1222B28BEFA988E563699F9AE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
Manifest number: 1288
Signing time: Wed 18 Jun 2025 21:00:36 +0000
Manifest this update: Wed 18 Jun 2025 21:00:36 +0000
Manifest next update: Thu 19 Jun 2025 21:00:36 +0000
Files and hashes: 1: 3U4MivbAgZFFTzpri9v9qzr-9Dg.roa (hash: OpxoqQJPTPV/7nPesTeS09o0jfmFmQcqEJLqODzVTIM=)
2: q53IX5TKZH3g22TXTTE5lHzESbo.crl (hash: WeyC8Vg6q9OSfPrGA1LNcpTEFHj3sWQ89nb5bOj8T9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:84:d7:fb:12:22:b2:8b:ef:a9:88:e5:63:69:9f:9a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Validity
Not Before: Jun 18 21:00:36 2025 GMT
Not After : Jun 19 21:00:36 2025 GMT
Subject: CN=0a293bc0aaa4bd7ae7fa9620b4d13d2f64bafc46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c2:9f:0a:57:2b:b8:59:3a:9f:ed:78:02:73:
df:8d:0b:f4:b7:d7:9a:46:e4:84:66:a2:57:64:f1:
1a:de:ca:be:0c:35:40:57:86:0b:43:e3:89:09:fe:
3a:5b:50:8b:a5:05:b9:20:e9:e2:98:f2:9e:ac:02:
d7:e4:b9:d1:89:f1:37:f3:bf:c9:e0:28:e9:1a:1b:
b7:1d:63:8b:27:ec:96:34:e5:8b:f8:20:8d:d4:2c:
72:aa:5b:15:57:5b:d4:a8:89:de:ff:77:70:d3:df:
dd:3b:38:39:b9:3d:ee:3a:a1:ac:10:84:37:81:f6:
b3:7c:b0:e6:00:27:1c:71:f4:41:0e:e2:e7:be:b4:
9a:88:3c:89:55:a6:13:bc:32:00:01:b5:2a:08:94:
15:07:e9:cc:6d:2b:67:74:37:4b:89:d9:c9:97:ab:
4e:e0:e5:bb:6a:a1:a5:39:03:79:11:eb:e4:6e:0e:
64:53:24:7e:61:26:b3:24:3e:17:59:e4:a6:b9:e5:
8b:92:43:b3:cd:dc:6e:3c:3f:27:1b:c4:a9:8f:ab:
70:6b:33:ef:3b:b3:10:87:0a:81:57:68:22:f6:80:
21:f1:73:f7:84:38:6d:f8:1b:7c:dc:56:d8:d7:bb:
1c:7a:b8:95:9b:34:07:f1:91:c7:96:38:73:ca:04:
f1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:29:3B:C0:AA:A4:BD:7A:E7:FA:96:20:B4:D1:3D:2F:64:BA:FC:46
X509v3 Authority Key Identifier:
keyid:AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:a4:39:f8:3f:d4:63:3c:0a:8c:a6:28:77:11:ad:a1:e8:c4:
01:74:fb:89:20:17:80:5e:bd:47:6e:46:2d:38:01:5a:70:ec:
d5:43:21:cf:6e:95:ac:aa:ca:84:fc:4a:de:7c:a9:fc:2f:7d:
47:e1:25:c5:30:0c:6e:56:89:b3:f3:31:94:a7:eb:07:fd:b6:
50:7b:66:a8:5e:31:85:ee:72:d8:6c:83:1d:ed:82:39:64:99:
57:97:34:ec:52:31:b9:70:23:51:db:3e:70:8b:df:6d:2d:9d:
61:25:36:b4:39:bf:1b:90:9e:92:3f:06:09:4a:aa:9c:23:73:
2e:e3:83:b6:c5:02:3c:dd:e2:6c:b2:9c:8f:65:d3:bb:58:ca:
4a:b8:f7:10:c6:c5:a5:1c:fd:ed:6b:35:95:3f:8e:a5:d8:be:
63:c6:20:63:de:f8:1c:14:81:c4:74:de:30:85:80:1c:c9:f6:
43:2d:e1:ea:79:e0:4f:cb:3f:2f:cc:0f:06:49:f1:32:c8:25:
d8:22:98:cb:d8:8b:93:a0:2e:17:e4:fd:fb:16:dc:ae:fd:b4:
80:c2:24:1b:2f:03:7d:06:44:4e:a1:a9:18:c3:f4:67:f9:0b:
99:27:55:d4:73:fb:7e:ea:60:6d:b8:74:ca:5d:c2:e4:04:02:
d7:af:a6:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 04:57:03 2025 by rpki-client