Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
File: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft (raw, json)
Hash identifier: JEjjPCPXsQDDLnvDpwdbRdvTc4W5SZWWjGdmSZnzPnw=
Subject key identifier: E1:45:EA:45:3F:D5:05:9E:AD:93:76:80:A0:96:1A:61:F7:FD:06:D1
Authority key identifier: AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
Certificate issuer: /CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Certificate serial: 01976DAB1B098DF34F46F59078BACBC90A38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
Manifest number: 0F8A
Signing time: Sat 14 Jun 2025 09:00:19 +0000
Manifest this update: Sat 14 Jun 2025 09:00:19 +0000
Manifest next update: Sun 15 Jun 2025 09:00:19 +0000
Files and hashes: 1: 1Z36oEX0lkx8ndMTGV0SwL3pu6s.roa (hash: oLjRdDjCa874D2Ohi+4lYwxZSVZ663VZAUA47G0Sbic=)
2: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl (hash: x+9I6Q5gF6/FL9wfAulH8f6pcgZmF2yhFcqRhn5mXYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:1b:09:8d:f3:4f:46:f5:90:78:ba:cb:c9:0a:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Validity
Not Before: Jun 14 09:00:19 2025 GMT
Not After : Jun 15 09:00:19 2025 GMT
Subject: CN=e145ea453fd5059ead937680a0961a61f7fd06d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f2:4e:af:18:10:8f:b8:9e:d7:b1:21:05:80:
01:1f:22:7f:f7:4e:13:c1:92:fc:77:54:05:46:b7:
eb:97:67:a1:93:c1:3e:77:57:ff:06:8c:4e:f6:b0:
e2:85:5f:3a:f1:8c:90:2c:53:54:ca:11:47:84:84:
26:66:0a:ac:9b:aa:80:13:cd:59:2e:fc:e9:95:ae:
a9:8e:ea:ac:83:83:d0:95:70:e8:d2:f2:b1:37:d1:
cc:12:01:72:6b:ad:b3:80:4e:e2:de:a0:30:3e:4d:
30:8d:b4:49:0a:e2:ed:fe:87:79:37:4e:6e:b2:73:
76:23:14:fe:a3:ef:b3:99:67:fa:4e:ad:ef:01:b4:
3b:14:54:ee:97:ee:2b:20:ad:df:23:97:08:d5:01:
92:42:27:dc:89:dc:de:6e:95:55:ef:9b:e8:1a:18:
41:64:e2:32:4f:54:23:31:05:fa:aa:31:62:dd:03:
2f:35:79:56:f1:fe:d2:ad:11:38:d3:4e:bf:c7:0a:
99:64:1b:0a:1c:03:ce:c6:e7:d2:1b:f8:3e:53:a3:
e7:ac:db:98:d3:e8:f6:62:44:7a:f4:76:1e:7b:a2:
76:64:88:f8:6a:f8:61:c7:eb:6e:1e:53:69:cc:7c:
d8:cf:ad:4c:dc:0f:f8:41:7e:49:27:26:49:b7:03:
b0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:45:EA:45:3F:D5:05:9E:AD:93:76:80:A0:96:1A:61:F7:FD:06:D1
X509v3 Authority Key Identifier:
keyid:AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:f2:6b:40:29:78:7d:b2:8c:da:5e:77:30:cb:be:5f:50:8c:
52:f3:60:dd:4a:3e:66:d4:0e:ce:b6:07:56:2b:c7:4a:78:58:
cc:07:de:1c:37:18:26:d9:3a:91:e5:9c:d8:24:da:79:05:e8:
4a:34:9e:1e:a7:bc:2b:1d:50:f1:0c:af:80:eb:3d:68:c4:ec:
6e:c1:33:df:5f:b3:0b:f6:70:89:05:1e:54:e6:e7:13:e9:59:
f0:14:6e:ca:52:3d:59:bc:fb:30:2f:9b:6e:f0:8b:f3:fb:0f:
38:87:fe:d7:37:46:22:05:a0:83:c1:06:11:88:fc:de:f1:c8:
7b:de:94:74:b1:20:fb:ce:92:e2:4c:c0:13:66:9d:69:d2:5d:
47:90:c9:1c:53:4c:4c:5d:ba:5c:ef:9d:ac:81:38:46:21:c2:
06:ca:97:49:a7:64:d5:2d:0a:21:54:b6:e9:0f:65:2d:c6:61:
e5:1d:33:99:6d:6f:72:e3:e8:74:ed:44:d3:26:d3:47:df:9c:
6a:be:b2:c9:de:6e:d3:33:8e:03:bd:9c:12:e2:b5:41:6c:03:
f1:f9:c4:13:60:48:72:86:be:33:ca:5c:bb:9b:92:ae:bc:5d:
d6:19:17:41:a9:f8:67:95:9d:84:5e:77:e6:41:2e:62:7f:7f:
75:f3:11:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:16:40 2025 by rpki-client