Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: sLec3efZWYzVC4BmcY2bsRisSzN986AIhafS++sTNQw=
Subject key identifier: 95:03:22:E4:C7:BC:A0:A1:75:CD:DB:02:DD:89:DF:69:B6:92:29:DD
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 0197718867AA56851970F6F2C4CC44027004
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0B84
Signing time: Sun 15 Jun 2025 03:00:54 +0000
Manifest this update: Sun 15 Jun 2025 03:00:54 +0000
Manifest next update: Mon 16 Jun 2025 03:00:54 +0000
Files and hashes: 1: 0SSsSk3JYtZfVKoUdIXep-skUls.roa (hash: lo1rRlcKmSiP/o5fsPXMsNzyze1q/0lfZDjTXaH15HI=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: K54CLzoXV3zcSFTC5o9kCgf8MWOr2RzOD81pctSntB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:67:aa:56:85:19:70:f6:f2:c4:cc:44:02:70:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Jun 15 03:00:54 2025 GMT
Not After : Jun 16 03:00:54 2025 GMT
Subject: CN=950322e4c7bca0a175cddb02dd89df69b69229dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:97:90:02:ac:9c:a5:38:fe:75:01:bb:d7:fe:
0e:b7:a7:15:aa:0d:7b:98:94:81:4a:c9:ab:a7:38:
9b:b8:37:f9:8e:db:3b:a5:cd:6b:5d:aa:0e:70:2d:
17:38:e0:99:69:55:89:9f:ca:2e:44:60:4e:24:be:
2a:b8:78:85:53:df:49:21:6a:31:00:ca:98:69:6c:
bd:87:15:b8:66:e7:d4:93:e9:27:9c:fe:99:e8:4a:
74:ee:55:bf:14:6f:aa:82:db:a5:60:76:cf:b9:d7:
56:75:1e:10:f7:97:7d:0e:a1:1b:ba:59:88:22:07:
76:a9:28:96:ad:1a:b8:b7:c3:95:e1:29:d6:e5:47:
bb:36:1a:b1:d0:9e:17:cb:51:d4:64:66:32:58:92:
79:83:83:f3:22:67:1e:48:61:fc:e6:9c:f7:99:85:
fb:65:06:87:9c:da:34:84:46:24:1b:9d:00:e9:b6:
80:49:b9:7d:30:24:b8:8a:1b:aa:80:21:b1:59:cf:
62:19:8b:cb:fe:04:08:ba:80:98:bb:70:2f:c7:60:
e3:91:01:ef:62:b3:66:d0:1e:f0:d5:e3:43:57:03:
83:20:9b:c9:d2:2e:10:48:d6:ad:cf:78:fc:6f:97:
c7:7e:72:95:11:8d:1a:6b:e0:60:e4:03:2a:af:ed:
92:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:03:22:E4:C7:BC:A0:A1:75:CD:DB:02:DD:89:DF:69:B6:92:29:DD
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:1c:e4:26:bc:be:2c:6a:43:61:4e:e4:fc:df:e5:5c:48:d5:
84:71:45:8a:a4:d2:c8:2f:f7:4c:8a:93:5d:89:0d:c7:3c:2d:
30:cc:d1:1e:5e:14:23:99:f3:d4:68:88:cf:52:e2:9e:e3:fa:
44:08:ef:d6:2f:ab:7f:d4:46:5a:66:2c:43:89:dc:0e:e4:48:
31:4c:5d:06:81:d0:4d:b4:99:ef:2f:e4:71:14:ba:e7:fb:ba:
8c:d4:a7:bb:10:e4:8a:d9:a6:97:6d:11:93:44:6d:95:2f:d2:
77:7f:a1:e6:98:ba:28:f3:5b:fe:cc:83:62:2f:53:fe:07:95:
12:f8:c4:6a:4d:24:09:45:76:d8:b5:91:0e:ef:f1:a5:83:45:
49:5d:ea:65:91:71:85:77:d7:c6:bc:3f:5d:db:2c:77:32:76:
51:3a:df:e8:5d:9d:00:b2:d9:49:f4:6c:25:9b:b0:17:a2:aa:
a8:69:d5:5b:8c:af:d2:7c:99:f2:d3:61:c3:1f:f0:11:1f:74:
bc:42:2b:f5:9c:a4:9a:fe:d7:c2:50:ce:05:66:88:b8:63:e0:
e2:83:8e:bd:71:aa:25:38:91:30:b9:63:8f:1c:86:1a:bd:21:
e2:a7:61:9a:ce:0d:4f:89:8a:72:3b:4e:41:7d:c4:95:c2:a9:
48:c1:cb:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:57:04 2025 by rpki-client