Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: 3abJkHW+nI1vVYI+iuky9vYrfe5YJuj1OSfGJVpNaQA=
Subject key identifier: 51:30:BE:5E:EF:25:16:24:7F:F7:F3:F2:FA:DB:39:F3:8E:C8:E6:85
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 01976D3E09F3E37A5291E01D9B9419C067C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 0F75
Signing time: Sat 14 Jun 2025 07:01:11 +0000
Manifest this update: Sat 14 Jun 2025 07:01:11 +0000
Manifest next update: Sun 15 Jun 2025 07:01:11 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: vw86NFay/llPb0N1N+tzJ196H+LHYONkH5JhJoag/zY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:09:f3:e3:7a:52:91:e0:1d:9b:94:19:c0:67:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Jun 14 07:01:11 2025 GMT
Not After : Jun 15 07:01:11 2025 GMT
Subject: CN=5130be5eef2516247ff7f3f2fadb39f38ec8e685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:80:1c:eb:26:08:9d:3e:02:f2:31:ee:02:5d:
bd:b3:79:ec:c8:0c:39:b1:88:45:ee:cc:d6:e9:29:
30:91:6f:89:69:1c:00:ba:8b:10:5e:72:59:e8:21:
29:05:87:cb:d0:cf:7b:dc:aa:2b:50:bb:0a:67:6b:
19:b3:66:a6:06:ad:04:be:23:2d:5f:8f:0c:d2:58:
d0:1a:55:95:fb:18:f8:d3:43:b2:44:c4:fd:71:c9:
5c:31:6e:b9:a3:72:e6:15:95:b9:56:56:56:f5:e4:
f0:af:74:48:dd:28:24:66:08:10:b9:c0:08:6d:6a:
5d:fd:c2:26:e8:7d:ca:51:66:64:c8:1d:cf:b0:50:
0b:06:6f:cf:8f:cd:e7:18:99:f0:99:61:32:54:c1:
a9:5e:e8:f9:80:14:53:01:83:63:ed:8a:9f:67:65:
c1:03:99:b0:14:ec:9d:18:ba:e6:82:70:de:a2:2d:
32:56:f3:19:80:98:6f:2e:20:64:0a:2a:e3:7b:9b:
83:08:07:0b:28:41:b0:72:36:39:06:99:c3:77:3c:
30:29:cf:01:00:32:b6:6e:1c:34:db:58:20:1e:90:
4b:6a:3c:dc:65:39:31:1b:d3:c6:52:48:d8:82:f4:
2a:5c:ea:4b:49:7e:9a:7d:4b:81:0c:7f:ab:6e:e4:
6b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:30:BE:5E:EF:25:16:24:7F:F7:F3:F2:FA:DB:39:F3:8E:C8:E6:85
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:71:b1:58:5e:0a:fc:82:58:68:b3:22:c8:7b:33:26:a5:ee:
47:f0:05:9b:c7:e8:a7:7b:18:41:72:05:36:93:34:05:70:ee:
46:59:48:3d:8b:08:16:b8:d1:27:53:3c:92:2b:97:be:2e:5f:
55:21:6d:30:93:ff:a8:af:2e:68:d0:72:c5:d1:e9:e9:43:09:
54:4c:5d:5f:1b:7c:18:f8:7a:18:97:98:9b:c1:59:bf:b9:ba:
9d:53:c9:a1:a7:a7:aa:e6:be:b7:96:e8:45:c4:00:79:3f:e7:
8d:4b:66:eb:53:65:1d:59:f2:34:4c:c1:09:c6:15:df:d3:d2:
b6:04:47:e5:24:ae:de:34:d9:24:0f:fb:da:9b:b7:c5:84:09:
b3:8f:bc:15:32:ce:d8:0a:6d:4c:9f:1a:07:0b:c3:3b:74:f0:
4b:73:d5:45:2c:f0:ab:6b:5f:49:05:38:a1:43:d5:62:a7:53:
23:8f:62:b4:68:e7:02:5f:ef:a6:ec:7c:eb:3e:01:70:37:0f:
98:d3:34:2f:7a:60:b6:b4:54:17:f7:ff:96:d0:95:d1:08:e4:
c0:20:58:32:9a:8c:83:b8:b7:19:f4:96:89:bb:43:0f:ec:8d:
6f:78:81:a5:aa:a0:ba:8f:72:1f:f6:aa:d1:ea:c1:5d:2f:40:
31:eb:d1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:11:06 2025 by rpki-client