Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.mft
File: QeQtgw7KmKUz9DctoWnJx5LDk7I.mft (raw, json)
Hash identifier: MmBY2rlUvq1drAUlSjD7YChPj4fdpRzeuDd5QgVQryk=
Subject key identifier: CB:29:13:33:8D:C4:8F:32:79:AC:9B:C2:0E:5E:87:54:1A:38:3F:B6
Authority key identifier: 41:E4:2D:83:0E:CA:98:A5:33:F4:37:2D:A1:69:C9:C7:92:C3:93:B2
Certificate issuer: /CN=41e42d830eca98a533f4372da169c9c792c393b2
Certificate serial: 01984AE5D94D40FF7573ED3870F220BEB56C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeQtgw7KmKUz9DctoWnJx5LDk7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.mft
Manifest number: 1602
Signing time: Sun 27 Jul 2025 08:00:34 +0000
Manifest this update: Sun 27 Jul 2025 08:00:34 +0000
Manifest next update: Mon 28 Jul 2025 08:00:34 +0000
Files and hashes: 1: NcqRg7UrtJE68j0DY1PSHwYSu_4.roa (hash: O3F0k70QFpKk+LVxYcWwtpQ0YuG4zUsaxS4NlfXzPQ0=)
2: QeQtgw7KmKUz9DctoWnJx5LDk7I.crl (hash: y+8FgjcLYN62Ujb+C8Nd0lrrwzwfbvBdphZmC1wdslk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/QeQtgw7KmKUz9DctoWnJx5LDk7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:e5:d9:4d:40:ff:75:73:ed:38:70:f2:20:be:b5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41e42d830eca98a533f4372da169c9c792c393b2
Validity
Not Before: Jul 27 08:00:34 2025 GMT
Not After : Jul 28 08:00:34 2025 GMT
Subject: CN=cb2913338dc48f3279ac9bc20e5e87541a383fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cd:4e:1d:95:03:0a:7a:6d:be:aa:44:fa:7a:
ce:ba:be:02:57:e4:89:28:7e:40:22:67:c6:dc:ad:
49:83:26:01:b9:8e:0f:94:0d:5d:29:45:8f:45:74:
63:f5:e5:87:4d:f0:4c:a9:36:b8:e4:92:75:2b:5d:
d1:a0:ed:83:4a:d6:f0:c0:28:c4:90:5c:c4:27:35:
50:af:e3:8c:37:a2:95:ef:f0:c2:4e:91:9e:7f:f7:
f0:97:13:be:6d:8f:93:ea:aa:65:ea:44:63:f0:49:
c0:a1:fc:81:17:31:f1:b8:3f:62:b3:f1:93:eb:74:
1d:9c:a6:7c:63:a3:1e:20:fa:85:09:82:ea:ca:33:
56:1a:d8:48:98:d3:0d:d0:ea:95:8d:04:f8:b8:a4:
9a:62:a5:f6:9b:1b:0d:e8:39:69:98:6d:b4:2b:3e:
51:1a:02:b3:b7:24:de:12:85:ea:e6:37:d8:e3:08:
a1:d8:cc:3d:06:bf:79:80:c8:fc:d1:71:01:12:e4:
3c:f3:de:07:5e:41:07:fc:0b:86:f4:3b:24:1e:d0:
0a:95:9f:db:c1:85:8e:67:9f:cb:a9:0f:9f:99:bb:
9e:ca:df:c5:8c:90:9d:c8:bb:0c:57:1b:77:8b:83:
9f:b9:12:c0:11:8e:fb:2d:b5:29:2b:81:c1:9f:1e:
b9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:29:13:33:8D:C4:8F:32:79:AC:9B:C2:0E:5E:87:54:1A:38:3F:B6
X509v3 Authority Key Identifier:
keyid:41:E4:2D:83:0E:CA:98:A5:33:F4:37:2D:A1:69:C9:C7:92:C3:93:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeQtgw7KmKUz9DctoWnJx5LDk7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:74:25:65:35:a1:4a:6d:cc:8c:c2:c3:8e:64:f9:69:b9:90:
f1:35:79:7f:ea:0b:cf:e6:f5:dc:1b:8f:9c:51:df:a3:bf:5e:
de:13:b9:49:79:c8:8b:48:63:08:e6:dc:0d:7c:c2:65:de:44:
00:34:78:57:06:43:44:97:ce:8c:dd:54:19:a2:9f:98:8c:c8:
47:52:c4:df:55:d0:09:57:7e:3f:d3:c7:49:14:99:85:f8:53:
32:72:cf:6c:9c:40:f0:07:51:46:cd:64:ca:ad:23:60:4e:66:
61:0b:9c:79:ad:cb:ab:7a:73:76:91:f9:d1:2a:7d:21:95:2e:
9e:6b:0a:50:b1:83:22:c6:99:36:cf:d2:e3:db:dc:95:bf:f6:
53:b8:5c:6a:1d:16:e5:2a:1e:e1:69:d5:5b:d5:c0:bb:dc:8d:
39:e1:b7:1a:cf:07:a1:08:62:41:7a:7b:d7:a1:90:8c:1b:1d:
6d:5a:67:3c:87:ee:63:4d:5d:46:8b:dc:b4:4b:eb:0c:94:21:
c7:9f:8b:27:e3:d2:5a:99:4f:2b:81:74:b7:8b:60:43:b8:a2:
ee:fd:c4:3a:6b:0e:bc:ce:10:43:e3:f9:65:72:87:89:c5:a4:
cc:56:45:a7:65:83:2c:95:c1:23:c8:94:ce:0f:c1:5f:10:91:
57:a6:4f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 11:35:42 2025 by rpki-client