Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
File: qklDGDthG-Ogd1OCUJSQBIsK1zg.mft (raw, json)
Hash identifier: QcDP9xFIpormv06ZWISazkOAHjSQ4W2740jtVV39aCI=
Subject key identifier: 1C:45:17:B4:15:7D:EC:E6:E9:7F:04:9B:11:10:5A:70:58:5C:8A:9A
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 01976C62528D2B1298CB3E9CFD709BAE44F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 03:01:12 +0000
Manifest this update: Sat 14 Jun 2025 03:01:12 +0000
Manifest next update: Sun 15 Jun 2025 03:01:12 +0000
Files and hashes: 1: _b9uzDBnaBhrr4RiKYd-HrjhIyY.roa (hash: zuVo5YCjE6oxIWEPlMV6dA4fTWapSfHiFlgPsUG/qhk=)
2: qklDGDthG-Ogd1OCUJSQBIsK1zg.crl (hash: STYi3+gZsVCngd0OqptMGruXbrCS+DmPF8pWo5Yf++Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:52:8d:2b:12:98:cb:3e:9c:fd:70:9b:ae:44:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Jun 14 03:01:12 2025 GMT
Not After : Jun 15 03:01:12 2025 GMT
Subject: CN=1c4517b4157dece6e97f049b11105a70585c8a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:20:a3:36:c1:77:eb:93:d5:3c:a4:f1:37:38:
47:19:6d:6b:26:cd:bd:99:06:87:a5:2d:d8:9d:f4:
9b:9e:22:e5:48:23:a7:87:87:ab:43:49:5f:e7:22:
93:1e:95:33:d8:c0:f9:81:5a:bf:fd:5b:8d:a4:ae:
af:bc:94:25:94:bf:b5:0d:e7:bb:59:a1:81:17:93:
12:98:b7:c5:a1:aa:c6:68:0f:49:c6:09:3c:b3:82:
62:0a:5c:b1:2a:6e:e0:ec:e9:fb:3d:b4:96:80:12:
c3:23:cb:03:68:ca:a9:54:3b:3f:2e:f9:be:87:0e:
5f:0b:da:29:27:5d:c7:20:8c:2c:53:6e:73:8a:30:
38:d1:36:5b:00:80:09:83:2b:8d:92:e5:5c:2c:6d:
25:7c:f0:e7:51:50:bc:c8:f4:b3:b3:1d:a8:3b:85:
6d:24:7c:45:4b:aa:54:65:92:a5:af:a1:82:b1:72:
4d:bc:00:e8:62:1b:f8:9b:a2:77:b9:42:a5:01:d9:
b8:cc:44:2d:0c:04:e2:a3:cc:47:90:ce:d1:a0:ac:
6c:79:6a:a9:35:84:b0:24:2a:da:6f:8f:97:76:47:
d1:15:48:4d:a7:64:ce:69:87:33:70:d2:a5:e7:fa:
0b:8b:5f:60:4c:f2:9e:b5:a5:5b:ad:d8:88:82:cd:
e3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:45:17:B4:15:7D:EC:E6:E9:7F:04:9B:11:10:5A:70:58:5C:8A:9A
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:4f:4d:1c:ac:ae:4b:cb:83:01:7b:ca:a2:8d:54:41:25:e7:
a2:6b:65:d2:c5:53:44:e1:b0:a1:59:c0:b9:62:31:cb:b6:d8:
8b:68:c3:60:7f:f7:80:51:f7:90:f2:15:fd:ae:eb:c0:07:d1:
5d:3f:1d:94:01:54:c1:17:1b:65:d0:f7:b2:67:da:61:d6:83:
08:fa:d1:37:f3:7b:7a:f3:62:22:c9:60:d1:36:89:bb:e8:ac:
30:26:57:95:c0:50:0e:c9:b4:11:e8:df:48:f4:cd:59:20:b1:
61:28:a3:9b:2f:33:ef:92:dc:31:ce:f1:36:5f:93:46:0a:ed:
d2:13:e8:37:e2:06:a7:02:c4:7a:91:5d:4e:79:6f:84:36:7d:
86:3f:bd:85:ab:04:6e:76:c2:d9:fd:17:ff:e0:d4:e1:58:6e:
b8:b8:a6:5b:dc:2b:29:0e:7c:73:f5:69:bf:3c:1d:a9:cd:ec:
92:37:d1:26:85:97:45:05:df:6e:08:7e:a8:cd:40:b7:49:af:
c7:e0:8e:9d:72:6c:c7:87:f9:52:c7:7e:a2:fc:0d:53:5a:4f:
f6:fa:8d:09:7e:a8:43:56:e8:43:be:fb:5c:88:2b:c3:15:83:
d1:b2:28:16:14:fb:d7:91:ca:8f:df:80:25:e7:f8:f8:33:33:
7f:70:8c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:48:51 2025 by rpki-client