Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: 9S1A8NrvL6UgSOvL5cR4TkVm7Du6/714vpiSadUP3+s=
Subject key identifier: C5:5B:61:44:0F:05:12:E5:BE:93:7C:50:24:23:E4:61:B2:BF:95:A0
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 019774C0515719D73E5618118FCF0ED1B835
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 1593
Signing time: Sun 15 Jun 2025 18:00:50 +0000
Manifest this update: Sun 15 Jun 2025 18:00:50 +0000
Manifest next update: Mon 16 Jun 2025 18:00:50 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: jh3izeFsnDYfrgTRkbGEA8Y7uJzGgOk2swsor7TZwNc=)
2: nqDbjTD7-4bF8APAmv3q39AmNtk.roa (hash: zWbRV6cXuufmhpJUA1tayT8JP8s9Ez0NcmTuvgMXFF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 18:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:c0:51:57:19:d7:3e:56:18:11:8f:cf:0e:d1:b8:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Jun 15 18:00:50 2025 GMT
Not After : Jun 16 18:00:50 2025 GMT
Subject: CN=c55b61440f0512e5be937c502423e461b2bf95a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b5:23:78:12:5a:df:01:4a:5e:12:a9:93:61:
02:6e:2b:20:e2:3a:30:52:15:15:2b:f9:3f:5d:8f:
99:26:81:a5:b6:54:ec:b2:10:dd:ed:f2:22:ba:f9:
45:bf:f9:60:a2:c8:da:af:21:a9:c3:b2:40:ce:1f:
9d:47:16:dd:1e:50:51:9b:27:b8:e7:f3:de:a1:b1:
e7:90:78:31:34:5a:24:12:61:21:34:1c:64:e7:1d:
ea:e8:48:de:95:f3:6b:19:f4:2c:d0:7c:f9:72:ee:
7d:2e:56:d8:8a:7f:a6:85:a1:8f:69:64:ee:5a:41:
94:57:41:e5:f8:36:9c:47:18:08:7b:f9:39:a5:cc:
7a:41:f9:41:df:95:86:a9:cb:a3:f3:40:1f:ca:57:
ca:ac:60:94:69:33:61:00:6e:cf:5b:2a:76:2b:1e:
7e:18:13:cd:96:56:8a:b0:bd:1b:b6:c8:b8:92:da:
55:59:a3:9c:e1:a1:9a:7d:e7:87:19:25:c3:fb:f0:
23:7b:df:33:77:b7:2c:e9:26:b3:63:0c:c4:18:f8:
ba:40:3f:e3:cc:5d:1c:58:5d:f9:77:aa:85:ca:1f:
15:5f:b2:4b:a9:0e:6d:e3:fe:f6:8b:55:2c:af:b0:
5c:bb:cc:39:3b:f7:58:4a:90:04:97:7b:5e:b7:2b:
c4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5B:61:44:0F:05:12:E5:BE:93:7C:50:24:23:E4:61:B2:BF:95:A0
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:b2:69:33:94:48:cb:60:53:ca:90:d4:f1:c8:9a:42:bf:ed:
a4:57:0e:c1:ee:f5:d1:76:ca:14:50:70:7f:63:e5:00:15:d9:
0a:14:56:9f:ac:76:a6:8b:67:62:c2:6c:ac:b7:2a:5d:2e:12:
3f:ee:9f:25:73:f6:62:58:06:d3:be:a0:73:04:fd:2d:df:06:
a5:51:6e:4c:e0:ff:51:7c:18:3e:21:e4:25:75:4b:ca:2d:f3:
86:10:b2:82:02:c9:af:d2:a8:f3:7b:9f:11:8b:65:8f:31:da:
f0:c6:48:6f:a9:86:be:8b:89:07:7c:fd:a6:07:96:76:ea:fd:
c5:38:34:e2:a8:86:83:b1:21:e8:22:c3:70:29:48:b4:09:3a:
f8:6b:f8:b5:61:e4:fb:2a:23:83:23:0a:b1:29:28:b6:01:9b:
c5:74:bc:9d:4f:d4:65:7a:b0:d7:94:60:c9:ef:7c:3f:19:51:
4c:ba:bb:7f:64:4b:37:c6:45:8e:17:40:ca:44:e0:93:cd:10:
f8:64:37:0f:a9:08:6f:17:65:34:81:c7:7e:d2:6b:8f:70:f4:
41:e9:82:8e:ec:2f:0f:14:46:3d:3b:dd:31:97:f9:ab:77:68:
15:78:61:1c:53:7c:48:84:7f:e5:2e:b6:d1:57:7b:8b:ac:79:
a2:dc:f9:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 02:11:27 2025 by rpki-client