Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: 1XxTAUa0ZNAzKzMarJEKR8Ob+Q77PsFpoo8WK41WSqE=
Subject key identifier: EB:B5:4E:62:AB:6C:48:E9:5D:04:23:86:AD:89:7D:51:4D:FC:9F:FC
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 01976C98B24096D9E88E6C2DFE9402A45890
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0BAB
Signing time: Sat 14 Jun 2025 04:00:35 +0000
Manifest this update: Sat 14 Jun 2025 04:00:35 +0000
Manifest next update: Sun 15 Jun 2025 04:00:35 +0000
Files and hashes: 1: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: wUmhz8JQXBa9UmddRW+GbLToAlhxnsoSc6INOOwuSew=)
2: u25_l7rqpA4jc9Mn9X_nn6jE1D8.roa (hash: XxkiW8kKfa52GpQHHiGBtUNZJLczRvJy5PTfiodYsrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:b2:40:96:d9:e8:8e:6c:2d:fe:94:02:a4:58:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Jun 14 04:00:35 2025 GMT
Not After : Jun 15 04:00:35 2025 GMT
Subject: CN=ebb54e62ab6c48e95d042386ad897d514dfc9ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f5:e4:ce:65:c8:4d:c5:89:dd:02:15:b7:28:
17:ab:56:94:d4:1e:ba:fd:3e:a6:c0:11:df:34:45:
d4:fd:f9:e5:54:0d:1e:a0:d7:3c:b6:38:54:bb:62:
93:cd:24:78:85:ef:dd:fa:4a:ff:2f:bd:0c:46:4d:
e0:35:8e:35:19:a7:50:a1:e3:79:e9:4f:5f:d0:63:
6b:12:1f:db:76:11:32:f1:b8:c6:c8:f3:dd:a1:f6:
36:43:3d:6b:d4:2a:08:99:2c:d4:73:f7:ab:26:a3:
f4:74:35:26:6a:e2:01:85:48:b7:60:f2:9c:bc:e6:
e8:41:16:eb:38:e7:6e:54:ec:66:cb:60:ba:6c:f1:
89:a0:e7:42:12:da:35:8e:f0:97:2d:60:ae:44:63:
1c:ba:69:a0:ae:a8:b2:90:06:01:cb:d6:50:f2:b8:
06:a7:36:bc:aa:fe:1e:1c:61:d5:ca:a7:f8:5e:0f:
fd:ff:98:dd:0e:fb:f6:b7:a7:57:87:6c:f8:36:37:
d3:84:92:5a:04:1b:d2:32:08:41:92:61:b2:d8:5a:
d4:2e:71:b3:8f:6d:1d:f6:97:4a:3c:89:8f:88:87:
0e:2f:8e:3c:db:e5:a3:55:58:6c:50:bb:1b:45:f3:
97:4f:65:5d:51:d0:0d:e2:fa:64:fd:e5:13:65:fc:
a9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B5:4E:62:AB:6C:48:E9:5D:04:23:86:AD:89:7D:51:4D:FC:9F:FC
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:23:4b:25:0d:8d:89:8a:30:44:99:d3:c8:17:56:94:56:90:
ff:09:df:bb:bf:37:bd:80:80:e1:2d:9a:12:0b:ee:eb:f6:3b:
98:b5:96:f1:4d:ed:0a:a4:21:e8:93:6a:48:11:9a:e6:99:eb:
da:25:e2:aa:39:24:f0:de:7a:32:38:da:ab:7e:f8:06:5a:a0:
38:ed:3c:af:3e:e4:65:e8:3d:16:03:ab:5b:e6:59:f8:3c:5f:
76:e9:55:72:cf:89:01:ca:4a:3f:97:f4:af:01:f5:90:a4:4b:
18:1d:27:b3:c0:c0:6d:bf:ba:60:23:64:de:f3:01:d2:0f:c8:
d0:0f:d5:62:2e:de:20:3b:2d:a5:37:69:91:16:e8:27:f3:98:
65:5a:f1:3e:ce:4e:8f:70:fc:8b:df:94:1d:ae:b0:d8:cd:61:
13:43:0c:8b:73:b9:d4:b2:08:81:e7:01:a4:26:c9:b9:23:cb:
73:ba:17:e2:05:21:52:46:b7:a5:c7:2f:ec:cb:0a:69:93:bc:
01:4f:ba:c2:9d:2b:0c:14:7f:bb:e9:60:7f:45:a1:8f:4b:c0:
c0:e2:a3:19:ee:5e:04:5b:9d:bc:de:8a:2f:7e:20:35:ee:af:
53:a0:17:63:ff:3e:0f:a3:00:f9:b4:9f:22:f3:ac:fd:27:55:
dc:af:c8:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:55:23 2025 by rpki-client