Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
File: QgOHyUE02aCP_TJjCWdwOtxYK2w.mft (raw, json)
Hash identifier: K4zuQuwZcNsZ59ITAoJq0zHz3BoHgExNSm/FHsZX1OU=
Subject key identifier: B5:43:FB:DB:E4:A5:E4:6A:56:75:39:DE:D0:44:E3:0F:B2:E8:BC:57
Authority key identifier: 42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
Certificate issuer: /CN=420387c94134d9a08ffd32630967703adc582b6c
Certificate serial: 01976CCF8018FB793B6B7ED817ECAC8B5254
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
Manifest number: 0CAF
Signing time: Sat 14 Jun 2025 05:00:27 +0000
Manifest this update: Sat 14 Jun 2025 05:00:27 +0000
Manifest next update: Sun 15 Jun 2025 05:00:27 +0000
Files and hashes: 1: 6rV9eDtLqjrWZLXprUqcr99pZaA.roa (hash: dlsrhoQ5PwXdAjp/9r3Vgwhl3pAOBofCxgLlYlDOE18=)
2: QgOHyUE02aCP_TJjCWdwOtxYK2w.crl (hash: k2WKn3X7NEAHHgxOwnVMAijjSspbHUTwhXSY2QCCbkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:80:18:fb:79:3b:6b:7e:d8:17:ec:ac:8b:52:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=420387c94134d9a08ffd32630967703adc582b6c
Validity
Not Before: Jun 14 05:00:27 2025 GMT
Not After : Jun 15 05:00:27 2025 GMT
Subject: CN=b543fbdbe4a5e46a567539ded044e30fb2e8bc57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f3:10:42:6b:ac:c9:83:b2:45:a5:41:d3:ed:
ca:ee:78:b3:ee:9f:c2:30:58:da:e2:12:c4:5c:81:
43:84:b1:89:7c:d2:c1:3d:5a:21:b0:01:68:8f:31:
0e:a3:ac:f5:84:f2:c3:cd:e8:e4:5f:4e:e2:19:86:
31:3e:5a:4c:0e:00:62:dc:a2:5f:5a:72:5b:57:b2:
ca:cc:d4:f8:c4:ad:f1:be:5f:3e:39:89:47:11:1d:
14:0b:2b:08:6d:3c:a3:54:c9:ff:7f:bd:a9:9d:88:
16:ba:a8:01:41:c3:97:a2:81:70:81:d1:f1:52:b7:
03:d1:2e:b1:c8:6c:bb:f6:48:70:72:34:c2:fb:f2:
e5:66:90:83:03:94:9e:fc:e6:90:12:33:4f:4b:a2:
20:c5:ba:25:7b:3e:b0:ae:34:93:f8:c9:de:c4:14:
31:be:ee:b0:52:94:79:81:cc:85:e0:c2:34:19:78:
1a:cf:3d:bd:fc:81:4c:b7:45:ff:f4:b8:d0:c8:83:
bb:bc:e1:08:83:d6:cf:39:6f:44:f3:e5:e7:3c:b6:
5b:e8:67:8b:2a:60:0b:26:ad:d8:b9:d9:ae:b4:a5:
26:1d:75:ea:e4:9b:51:ab:27:37:7a:80:00:a1:18:
66:53:ed:84:36:97:f6:fc:4d:1e:fd:f8:75:34:d6:
49:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:43:FB:DB:E4:A5:E4:6A:56:75:39:DE:D0:44:E3:0F:B2:E8:BC:57
X509v3 Authority Key Identifier:
keyid:42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:43:24:85:30:04:9c:c5:32:a6:42:c4:3a:56:0b:d3:49:f8:
7a:e5:9b:e1:77:47:42:e2:05:44:77:a8:a9:df:82:aa:e3:87:
5d:99:4b:71:56:4e:05:5e:a4:d1:65:74:2b:ee:04:c4:26:ec:
aa:b0:b8:d9:15:e5:df:ca:95:40:1a:d3:a9:03:c2:5e:e6:13:
f9:f8:c8:97:ee:95:74:9f:16:2c:cc:d6:7e:4e:b5:0f:af:38:
d1:71:23:55:6a:50:b6:96:05:ba:31:69:4c:e7:ea:17:30:92:
a7:62:35:5c:14:3e:24:12:7f:38:79:f3:60:e3:ca:46:8b:73:
98:ad:a0:f4:b8:72:62:9a:24:a6:9e:9c:8b:5b:c9:92:b1:29:
b5:e1:a4:d6:49:83:4c:2b:3f:82:bd:88:9f:a0:8b:a0:23:4f:
ff:09:37:2d:14:a5:06:96:6e:37:fc:06:0b:7a:e1:f7:ea:c5:
8f:8b:a3:81:9f:0d:9b:b8:85:cd:d7:0c:4e:36:47:60:0c:f3:
ae:ea:f7:8e:de:5b:59:97:2e:7f:7e:fa:db:fb:db:df:79:5b:
52:ec:2d:c7:ec:7c:4c:b2:9e:3f:d9:bf:44:b4:81:c8:91:d6:
96:93:ab:c4:81:37:c7:06:73:4c:c4:38:b8:12:bd:9d:76:b6:
87:e5:6b:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:16:57 2025 by rpki-client