Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: Vhue6Oorz1AHoXLZTERgz6y85zXJWuj0NftzSP/tZ9A=
Subject key identifier: 2E:ED:07:83:A1:FC:47:13:AB:73:53:D9:9D:7A:FA:5C:81:5C:AD:43
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 0197778A822F7BCC6CBE4EFA25195E2175C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 1060
Signing time: Mon 16 Jun 2025 07:00:55 +0000
Manifest this update: Mon 16 Jun 2025 07:00:55 +0000
Manifest next update: Tue 17 Jun 2025 07:00:55 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: FH8iXN6qDEFCj79DSutqcdAefcsM5xkovQZptdcgGMc=)
2: QgExJsLM6ckB_bwe9qRnk4o5HhA.roa (hash: P6xf+cz+/i4pkIjOYnliYy5pmyQWXuehaFAXXoyCR5k=)
3: fD4OezRM4UrasrKKJ10uGn5_Qug.roa (hash: +HiHjgUZa5Xei+THiDncnTXYzPCxqbbX0ahPYM7QsZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:8a:82:2f:7b:cc:6c:be:4e:fa:25:19:5e:21:75:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Jun 16 07:00:55 2025 GMT
Not After : Jun 17 07:00:55 2025 GMT
Subject: CN=2eed0783a1fc4713ab7353d99d7afa5c815cad43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:03:80:35:68:80:3b:c3:44:80:eb:b8:54:e2:
c3:d1:8f:a0:0d:4a:b0:1d:61:8c:0f:8f:ae:a0:d0:
46:fe:45:9b:15:8e:9a:0c:40:a5:51:3a:64:86:05:
36:79:46:3d:cd:1e:7d:4a:48:17:44:00:05:29:23:
66:ee:07:0c:e6:32:77:44:31:4e:0f:b8:67:5e:a0:
be:60:70:46:1c:23:4e:64:90:f8:b1:92:f7:b2:b0:
e8:77:b1:3d:f1:68:ac:6d:b0:82:68:52:11:e0:4c:
fb:2a:b0:1c:74:8b:31:07:84:38:a8:bc:87:c7:fb:
66:28:0a:c7:11:f6:d8:02:fa:f9:04:5e:3d:bb:9b:
1a:9e:4d:89:4f:71:8e:73:b4:a9:97:ea:08:1d:73:
5c:7d:22:94:fa:69:0e:a4:5d:64:76:13:a2:7b:ff:
18:7b:20:44:95:9d:36:9e:e2:f8:53:ca:93:09:5d:
8a:be:14:fb:8f:dd:38:4a:40:de:69:3d:43:1c:d5:
26:4b:4d:b5:e5:f6:16:b4:f7:3f:5c:16:04:74:c0:
c2:ba:c2:5e:f2:ae:25:9f:46:49:8a:ad:41:f9:dc:
f9:ea:38:d1:d8:c8:94:b9:9c:87:3e:36:1d:cb:25:
a4:68:09:03:15:0d:01:67:5e:79:64:6a:19:2f:d4:
83:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:ED:07:83:A1:FC:47:13:AB:73:53:D9:9D:7A:FA:5C:81:5C:AD:43
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:93:da:d7:3d:bb:8b:fe:f2:39:93:85:51:43:56:69:6b:b2:
a6:c3:86:65:34:c6:a9:52:11:b6:ea:61:b1:8f:68:e7:74:10:
79:43:ee:92:74:0a:33:4b:d9:b8:b5:c2:b1:cc:2c:7c:9f:c7:
9b:e7:01:55:57:02:fa:19:ed:0e:6e:c0:8b:5d:af:8c:0d:f6:
1a:39:19:e8:17:19:fc:96:62:18:ec:f7:0a:2c:34:b6:36:69:
9c:14:a1:c6:4f:b0:87:6d:25:e5:be:d0:16:7d:6f:8d:60:5f:
d8:99:11:63:3b:d8:80:d8:00:06:5f:b7:46:b7:7d:ac:25:53:
26:2a:1a:dc:7d:85:67:ac:56:4b:e7:33:fd:9b:07:1c:ab:7d:
1c:b4:b7:18:0e:a1:72:ed:b5:aa:6a:8b:96:31:ee:79:76:f1:
30:d7:b4:76:ab:57:57:e0:92:7f:e6:ff:e4:1e:a9:7b:de:69:
bc:77:d7:02:12:13:54:1f:c7:65:9e:f2:26:60:3f:dd:b4:d9:
2c:b1:ba:1a:77:04:7d:2f:90:9f:7c:1f:8b:4a:99:98:71:75:
42:a1:18:ba:b9:4a:56:db:86:bf:3b:71:f2:1d:92:68:64:c4:
ef:60:d2:5c:bf:d3:12:36:b0:01:ad:6d:fc:d3:62:14:5e:47:
09:ae:ed:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:24:47 2025 by rpki-client