Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json)
Hash identifier: kuEDz4iMdmirI9rZCrUbjf8r37JZu+fmEX2b/TxRcVc=
Subject key identifier: 5C:66:BD:77:0B:B5:D3:23:54:B9:7A:49:1B:15:AF:6C:BF:8C:DE:D5
Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Certificate serial: 019768BBFF93303285D5AAE44F99672052DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
Manifest number: E2
Signing time: Fri 13 Jun 2025 10:00:40 +0000
Manifest this update: Fri 13 Jun 2025 10:00:40 +0000
Manifest next update: Sat 14 Jun 2025 10:00:40 +0000
Files and hashes: 1: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: tcf+m3plwlI0mtG1PUUwIwXGZxks55ekTn6oxvF4Tbc=)
2: etqHJp94mEXyM-mZRNVFRO7Kziw.roa (hash: Y6iOU/XBP66s91SGzXjQj2BEKS4QjWa/buoOF4uhFqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bb:ff:93:30:32:85:d5:aa:e4:4f:99:67:20:52:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Validity
Not Before: Jun 13 10:00:40 2025 GMT
Not After : Jun 14 10:00:40 2025 GMT
Subject: CN=5c66bd770bb5d32354b97a491b15af6cbf8cded5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:96:7f:c0:08:bd:2f:59:16:aa:e7:ef:b0:7e:
52:f1:50:e7:d8:45:87:da:12:89:e0:25:74:2a:45:
83:89:6b:97:6a:89:2a:94:3d:d6:11:ec:27:79:c6:
d0:58:29:0f:22:c6:42:14:d3:8f:20:ff:8d:2c:cc:
70:01:6b:f4:12:75:0e:27:62:6e:71:6d:32:3b:0c:
32:d4:86:86:b6:e7:0c:c0:05:b9:08:7d:bc:c2:d5:
32:4f:16:d8:22:76:bc:f4:f1:81:ef:60:de:bf:97:
b8:9d:62:6b:e7:4b:c6:d7:a7:94:63:bd:f4:4e:65:
b5:75:50:3d:b5:ba:ce:33:89:f5:93:82:77:87:31:
04:35:41:6a:97:9b:a2:5a:17:3f:68:af:46:af:7c:
16:2e:6f:15:f0:ff:fe:7b:71:e3:74:3a:30:6e:49:
47:74:42:4f:3c:ab:bd:74:c2:67:18:8e:49:6c:5c:
dc:c6:8c:41:c7:82:32:55:dd:fa:a4:bf:45:b3:f4:
5b:40:df:66:e5:1f:45:55:68:13:f8:4d:80:ee:32:
b4:7c:d8:31:c3:ef:b2:eb:e2:af:53:ce:4a:ef:4a:
24:d8:38:0b:c7:02:9d:ad:36:1f:51:31:3f:1f:3e:
5d:75:4b:af:31:9d:4e:78:88:e0:af:50:17:13:db:
59:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:66:BD:77:0B:B5:D3:23:54:B9:7A:49:1B:15:AF:6C:BF:8C:DE:D5
X509v3 Authority Key Identifier:
keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:a9:c5:ac:d2:2e:89:82:23:bd:9c:48:5a:6f:66:fe:91:5d:
6f:b0:86:0c:11:a1:7b:63:b1:c3:9a:85:72:4d:97:d4:f8:8b:
a3:33:11:09:af:07:9f:70:30:1b:36:7e:80:74:33:6b:8a:f7:
63:08:af:5b:a9:41:50:08:74:97:99:07:f5:09:a7:10:25:84:
bc:f0:e3:eb:b0:d7:91:b6:d2:4c:35:8a:b6:a1:10:39:74:f4:
66:58:b1:82:03:60:e6:33:63:3c:70:6d:2a:3f:f0:ae:b5:19:
63:bf:09:07:cd:b2:01:37:e1:62:14:30:0c:59:16:ca:3b:8f:
06:43:b7:10:97:25:cc:7a:20:13:b3:ad:ae:79:46:a3:c0:42:
9b:b1:d2:75:2d:e4:18:25:47:76:d2:4f:c9:b6:e4:0b:00:fa:
ab:20:83:72:fd:c2:28:1e:6f:63:9d:df:ab:50:91:02:33:b5:
71:fd:d0:ef:c1:1f:2b:54:1b:f3:cf:a3:12:f8:5a:1f:78:38:
ab:68:ec:dc:9b:95:4d:4a:56:13:39:5e:44:f1:62:dc:de:9d:
c5:b2:bd:97:91:72:14:c5:c4:7e:7f:fc:20:9a:29:92:dd:17:
ad:b2:62:d5:3b:4a:9e:16:1a:e6:e1:8d:ee:a5:c2:87:39:aa:
71:1a:87:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:28:17 2025 by rpki-client