Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: sRyjY/ylRtz0jDXo3csNs4i4lae4/0LfOpjOaCyoYTg=
Subject key identifier: 60:FD:B2:16:04:E2:AD:A1:7C:E5:E3:68:BE:BD:4D:DC:0E:3E:A0:19
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 01976BF4A5C5F90CD63D5D1F002646D1962D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 128D
Signing time: Sat 14 Jun 2025 01:01:24 +0000
Manifest this update: Sat 14 Jun 2025 01:01:24 +0000
Manifest next update: Sun 15 Jun 2025 01:01:24 +0000
Files and hashes: 1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: KunBLe7omCzYgynNw+qGB2j6DaJG0yfiuoXdB/y8RAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:a5:c5:f9:0c:d6:3d:5d:1f:00:26:46:d1:96:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Jun 14 01:01:24 2025 GMT
Not After : Jun 15 01:01:24 2025 GMT
Subject: CN=60fdb21604e2ada17ce5e368bebd4ddc0e3ea019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1e:41:c0:af:cb:4a:e0:50:a1:7e:9a:1d:12:
0b:d4:1f:d4:9a:14:9a:98:aa:2b:24:f8:9e:67:03:
62:60:ed:42:92:6d:71:f5:e8:0c:f6:e0:20:46:c0:
76:47:f2:4f:fc:90:61:61:e6:94:a0:48:4b:e1:32:
a2:cc:4b:13:21:14:5c:ca:48:70:9a:de:1c:43:dc:
a4:ee:5e:96:9b:22:68:10:b3:39:ec:0f:d3:55:9d:
5b:f0:89:e7:15:e9:95:0c:16:d9:54:f6:8d:46:f3:
01:75:55:ca:d1:6d:3a:6e:a1:15:89:cf:0e:70:e0:
e2:8a:21:8e:83:00:83:72:18:65:bb:93:33:3f:bd:
45:a3:bb:cd:28:84:b9:a5:9a:38:db:77:1b:76:d7:
6a:3f:f0:08:00:e0:7c:a2:99:15:a5:42:d9:a7:dd:
17:ba:c2:24:1a:a0:06:d4:d7:3b:b3:23:77:c1:b8:
7a:9a:ce:d0:21:2b:ce:dc:e3:ca:00:18:0d:a0:07:
8a:d1:99:5a:5c:8d:54:8d:b1:f0:6f:67:3b:80:72:
22:4b:b3:4b:85:87:78:5b:ec:36:d4:04:ba:f8:41:
12:fa:f9:b2:03:c5:4b:8d:15:e0:fa:1c:b8:51:2b:
9b:7f:7e:b1:64:9b:47:b1:ad:e2:5e:98:63:34:28:
d6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FD:B2:16:04:E2:AD:A1:7C:E5:E3:68:BE:BD:4D:DC:0E:3E:A0:19
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:57:bc:18:3a:49:6e:92:5e:ad:f5:05:e9:2a:f0:04:af:91:
2e:6d:fc:74:d5:01:92:5d:0b:af:93:c2:8f:c8:95:92:b0:62:
7b:42:e8:17:1d:e5:5d:53:f1:07:66:dc:95:98:cc:28:b0:5a:
e3:d1:be:1c:3e:63:70:a2:8f:da:93:a3:6b:a4:fb:43:62:19:
e0:85:1f:6d:41:19:1b:4f:36:f3:3f:e1:82:8a:52:45:1b:28:
fe:17:f4:45:94:fa:34:ea:76:0a:cc:76:19:a4:f6:ab:25:46:
c8:1e:c7:4f:e8:60:a2:42:a2:e4:56:d6:d7:6f:87:0d:0c:39:
7d:3f:da:80:f9:e8:32:1d:e2:a8:89:97:a2:6c:db:cd:44:78:
9c:c1:b6:34:d0:69:bc:76:b6:ad:ab:4d:1d:e3:b9:41:e5:8b:
a7:75:e6:0a:2d:69:f1:a2:5b:43:d4:dc:07:f1:3b:bf:9c:ec:
3c:50:6e:88:5c:a4:2b:99:31:8f:ac:2b:07:86:e8:1b:29:71:
d0:2e:49:e6:e1:a4:ec:76:e4:04:61:4b:0d:75:a0:f5:f7:c8:
fa:03:7c:a6:22:1f:ab:da:d4:46:f5:4d:61:f5:71:ba:42:4e:
0e:47:ba:19:0a:cc:4f:4b:8e:76:cf:8c:f5:ec:4b:07:d6:5f:
eb:af:8c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:00:37 2025 by rpki-client