Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: bzz6uDngZyIePlufaXTr0NY9F4LEdCa6xW2fT/3swWk=
Subject key identifier: AF:4A:E5:46:D5:F5:64:8C:10:33:A0:39:E7:D6:5B:6D:17:BB:2C:ED
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 01976EF5236D0BAF8B956E2B5549AFB71118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1595
Signing time: Sat 14 Jun 2025 15:00:48 +0000
Manifest this update: Sat 14 Jun 2025 15:00:48 +0000
Manifest next update: Sun 15 Jun 2025 15:00:48 +0000
Files and hashes: 1: 1-QaESH-Y2QhPqcpSoi8t5RQnRzA.roa (hash: tm4k5KqgYtwGTZCVOd0pYNB6yIwBE4zoDNRsM5SfEu8=)
2: Ivy3m4Flvw_zoq8Hw6rIxjNbc60.roa (hash: r8eSfS6R14mAIVwo2SfhQBG0x09EdYm/K0sgoOKrdGE=)
3: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: D3i+GaF5F0a4iqXpDM1eIjeE5aB/pHsWKSTiZoiT09Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f5:23:6d:0b:af:8b:95:6e:2b:55:49:af:b7:11:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Jun 14 15:00:48 2025 GMT
Not After : Jun 15 15:00:48 2025 GMT
Subject: CN=af4ae546d5f5648c1033a039e7d65b6d17bb2ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9c:ee:7f:9a:ec:74:dc:88:70:b0:3d:14:82:
24:23:93:ba:31:fd:e8:6f:33:ee:63:c7:fd:f4:22:
14:04:92:5a:87:b9:3b:56:04:fc:a2:b4:0b:fd:8f:
89:55:92:2a:4e:f4:c7:36:b5:a1:ad:4a:eb:d0:38:
ba:fd:4f:08:b1:39:6d:8a:8a:0f:83:bc:94:66:88:
f8:66:2e:9b:01:90:cf:7f:10:8f:aa:c1:10:56:2e:
e6:4d:69:68:37:a2:48:11:e6:6c:37:dd:63:d2:ce:
93:f4:0a:fa:58:3e:94:7b:86:2a:56:0d:46:18:fd:
e7:f0:45:b1:2a:99:97:69:3a:6c:a8:ad:4d:7d:b5:
43:8a:be:3d:5e:24:56:06:a8:1b:ff:ee:ef:84:be:
94:bd:bb:5b:fe:bb:5f:3c:bd:f5:89:54:4f:c4:35:
c6:10:58:0b:86:9e:a3:df:28:dd:42:ae:1c:c5:47:
52:1c:76:09:31:fd:28:e6:52:cc:04:f3:43:aa:5c:
4d:35:76:56:0a:37:27:83:16:6b:57:01:ac:6a:57:
cf:46:7d:27:3b:cc:de:d0:7c:ae:96:95:c0:37:70:
12:4d:a2:5e:b4:6f:7c:65:06:ec:bf:dc:9e:9e:5a:
e4:ea:39:bf:97:9c:6e:14:da:72:1e:0d:65:a7:c3:
14:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4A:E5:46:D5:F5:64:8C:10:33:A0:39:E7:D6:5B:6D:17:BB:2C:ED
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:25:d3:b9:9e:79:a5:02:b2:84:4f:18:66:47:e2:b5:1c:e5:
ff:67:ea:18:e7:69:14:7f:7b:79:ba:fd:06:37:bb:cd:60:47:
9f:aa:8a:25:cf:fa:dd:23:01:a3:54:61:93:d5:b5:bb:ef:c0:
a9:de:ff:89:f3:8d:a1:36:6d:a5:36:c5:d8:fc:42:42:a2:79:
d2:c4:60:46:51:03:c1:4f:8b:9e:5f:41:94:03:3e:8b:38:fa:
c9:fa:aa:67:75:5d:90:7a:25:3c:69:5c:95:7d:84:4e:84:e7:
be:7c:6a:e1:6b:40:d6:98:67:01:f4:80:6e:e5:22:93:a1:ba:
d3:5f:fd:63:12:56:66:b3:91:68:93:f4:8c:31:83:74:9a:08:
26:d3:d7:eb:e0:31:6a:10:12:50:22:0d:9c:42:61:a6:c4:a3:
b7:80:eb:2d:9a:ec:d6:56:a9:4f:46:50:2a:ab:eb:91:b9:64:
e2:9b:9f:49:00:40:6d:fa:17:03:47:35:b8:3a:44:db:d5:d9:
00:ed:ee:af:82:3a:18:9d:8b:b8:46:3d:21:1f:fe:f9:15:9a:
2b:79:a6:82:15:14:86:a4:07:10:04:92:29:4f:d6:c3:21:f9:
0b:4f:a3:20:e0:66:dd:44:dd:64:60:59:c2:c6:52:d9:08:aa:
95:61:35:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:43:24 2025 by rpki-client