Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json)
Hash identifier: PArPdRiRnXbprX5/hRdJ0dFdOh8AfM2cPoqlwYFTIzA=
Subject key identifier: EA:88:7D:0E:60:48:41:DC:9E:64:77:68:E3:B5:27:26:07:0A:96:16
Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Certificate serial: 0197700775835254F168709B38DFCBBFFE5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 20:00:26 +0000
Manifest this update: Sat 14 Jun 2025 20:00:26 +0000
Manifest next update: Sun 15 Jun 2025 20:00:26 +0000
Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=)
2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: dTebBT/KYFbXHHPjI3ahEupE6Yoi5x1vMDJsw7uJfZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:75:83:52:54:f1:68:70:9b:38:df:cb:bf:fe:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Validity
Not Before: Jun 14 20:00:26 2025 GMT
Not After : Jun 15 20:00:26 2025 GMT
Subject: CN=ea887d0e604841dc9e647768e3b52726070a9616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:65:08:ae:82:1a:65:cf:ba:81:c4:d1:b1:c5:
73:4f:5c:2f:c4:6d:1c:63:66:91:82:86:10:65:33:
5e:3e:08:47:de:ef:f4:0c:f7:3b:4e:25:da:86:29:
87:2f:88:ea:b4:26:48:a7:44:04:e8:da:56:32:71:
ba:d2:e7:a9:32:e9:06:cb:46:11:8c:dd:8c:07:5f:
86:1a:4a:bf:12:98:bb:4c:a5:9d:6f:d0:c0:29:cb:
48:5e:58:90:e9:8d:4d:92:a2:20:a5:f2:3e:af:1c:
a9:a3:87:d4:e0:0d:cb:f8:8a:1e:c0:33:f1:46:ea:
44:67:05:c1:40:c1:86:2d:44:f2:38:5e:31:e9:a7:
fa:9d:67:4a:e1:1b:2e:f9:02:9f:5d:f5:24:c1:a0:
9d:6e:7e:2f:a0:49:13:2a:dd:99:65:a6:38:7a:20:
9e:9e:2a:a2:31:5d:28:76:ca:a3:a9:8b:d1:66:4b:
46:9a:25:53:29:a1:d7:2b:e1:73:8e:54:bf:45:34:
96:05:fa:1b:23:6e:a8:88:3d:c9:e6:a1:ce:5c:1e:
ff:f6:3d:c0:04:1d:1f:a9:2f:bf:1f:a8:bb:f7:1a:
68:bc:e7:8e:96:43:9c:a5:c0:37:b7:53:e1:de:96:
15:5a:aa:fd:17:8c:dd:c0:89:4b:f7:ef:b2:5c:7c:
9e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:88:7D:0E:60:48:41:DC:9E:64:77:68:E3:B5:27:26:07:0A:96:16
X509v3 Authority Key Identifier:
keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:34:9a:46:fd:fc:9d:e8:25:f8:6a:d8:58:89:e4:c2:33:92:
a7:77:0b:e7:fc:77:40:40:df:27:c0:75:c4:f1:66:f7:98:e0:
10:da:c3:c5:67:e2:a2:da:79:4a:2c:98:40:19:88:20:be:74:
3a:9d:78:10:14:b2:04:3b:36:26:3e:a4:76:7a:10:b7:b3:14:
96:95:3f:85:a2:c4:9c:e2:63:ce:90:26:b2:2e:bf:46:9f:2b:
0b:86:4b:0c:92:52:44:52:98:5b:24:8d:f9:bf:4c:4b:1c:1c:
dd:45:20:96:99:8a:30:eb:cc:42:76:2d:04:c4:76:74:2f:4c:
7a:3b:21:bf:7c:b9:7d:91:09:62:e2:af:d7:a4:61:4d:23:b0:
12:19:36:ea:8e:cc:29:86:6a:94:b4:1e:98:3d:e7:45:84:33:
46:53:89:5f:16:f2:8c:7c:1e:e9:e7:4e:50:be:f8:25:66:4c:
27:81:b2:46:9f:56:ac:65:08:77:ea:9d:20:3d:a4:6b:b9:2a:
7e:b8:aa:d1:06:81:fd:0b:5f:33:a0:8e:38:9c:24:98:54:ce:
a0:7c:4b:3a:ae:6b:33:7e:11:ea:64:8e:0b:e8:7c:03:5a:28:
7e:40:57:81:93:44:e4:a3:57:d0:bb:03:bc:3b:e2:dd:6b:39:
5f:e3:7c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:13:57 2025 by rpki-client