Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/551522-7afc-4886-bae6-fc59dedb1d2b/1/QONYGt3WuZ3YdEueKIb7sCrpGOM.mft
File: QONYGt3WuZ3YdEueKIb7sCrpGOM.mft (raw, json)
Hash identifier: 7J9Hutnx41bzCGEk1JrTYfIZ7GbILqw68XbWp4LfLxk=
Subject key identifier: B0:60:7F:4B:88:E7:E1:EE:61:EF:C8:70:0A:60:1E:31:CD:71:A9:B6
Authority key identifier: 40:E3:58:1A:DD:D6:B9:9D:D8:74:4B:9E:28:86:FB:B0:2A:E9:18:E3
Certificate issuer: /CN=40e3581addd6b99dd8744b9e2886fbb02ae918e3
Certificate serial: 019848F776084DD87B1EEFDA13B30D7AB3DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QONYGt3WuZ3YdEueKIb7sCrpGOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/551522-7afc-4886-bae6-fc59dedb1d2b/1/QONYGt3WuZ3YdEueKIb7sCrpGOM.mft
Manifest number: 1602
Signing time: Sat 26 Jul 2025 23:00:33 +0000
Manifest this update: Sat 26 Jul 2025 23:00:33 +0000
Manifest next update: Sun 27 Jul 2025 23:00:33 +0000
Files and hashes: 1: 7sL1UBW9oIL-S5vfH1jOO3eYhUk.roa (hash: WnpcdVTaXzH616PZ8mN25gQu/poO33PVXu+tGiulqjA=)
2: QONYGt3WuZ3YdEueKIb7sCrpGOM.crl (hash: 0Z+0VbylaOG16ydx5oTusPsBdmDQA0Iy87yIfzgvYoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/551522-7afc-4886-bae6-fc59dedb1d2b/1/QONYGt3WuZ3YdEueKIb7sCrpGOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/551522-7afc-4886-bae6-fc59dedb1d2b/1/QONYGt3WuZ3YdEueKIb7sCrpGOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QONYGt3WuZ3YdEueKIb7sCrpGOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 23:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:f7:76:08:4d:d8:7b:1e:ef:da:13:b3:0d:7a:b3:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3581addd6b99dd8744b9e2886fbb02ae918e3
Validity
Not Before: Jul 26 23:00:33 2025 GMT
Not After : Jul 27 23:00:33 2025 GMT
Subject: CN=b0607f4b88e7e1ee61efc8700a601e31cd71a9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:36:6c:c6:b7:7d:79:eb:eb:3e:f7:4b:ef:e4:
8b:96:ba:51:85:89:e3:be:59:f6:8f:a5:9b:87:34:
2f:4d:4c:d6:67:03:95:04:79:d9:80:1d:38:1d:7c:
f8:12:89:de:55:f9:f4:d7:1f:69:a2:c3:06:7e:30:
9f:76:a3:ba:6c:7d:54:48:dd:b3:40:2a:4a:39:93:
ea:2e:89:4c:c3:7a:c3:1f:a4:49:08:0e:23:e8:5b:
0a:e1:cb:f6:75:55:f9:3d:92:07:b8:91:1c:7b:bd:
25:02:07:e0:12:f8:fe:6e:5f:27:54:2a:e1:c8:a7:
d0:75:cd:49:55:40:67:1c:91:91:40:0c:c6:74:c7:
6d:ef:bc:2e:98:c9:8a:1d:3e:a1:49:a9:b5:c1:06:
10:fa:e0:19:63:bf:1f:99:3a:a3:83:e0:d0:ba:98:
3d:7f:05:91:bf:8a:ad:38:aa:e1:bb:e0:4f:f3:74:
69:12:e5:5f:18:0f:3f:c1:18:bc:0b:e5:b7:0a:9d:
84:6c:8d:ec:ba:42:72:36:bd:62:9d:e6:cf:ef:94:
f5:a2:50:bf:78:89:58:8a:c7:60:00:c9:87:03:f7:
bb:b4:0d:63:f4:d9:0e:bf:5b:93:34:3f:fe:29:39:
ba:ef:2c:3c:35:18:7f:74:34:b2:6d:91:ed:6d:d6:
a4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:60:7F:4B:88:E7:E1:EE:61:EF:C8:70:0A:60:1E:31:CD:71:A9:B6
X509v3 Authority Key Identifier:
keyid:40:E3:58:1A:DD:D6:B9:9D:D8:74:4B:9E:28:86:FB:B0:2A:E9:18:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QONYGt3WuZ3YdEueKIb7sCrpGOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/551522-7afc-4886-bae6-fc59dedb1d2b/1/QONYGt3WuZ3YdEueKIb7sCrpGOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/551522-7afc-4886-bae6-fc59dedb1d2b/1/QONYGt3WuZ3YdEueKIb7sCrpGOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:9f:d3:5c:ca:d6:f2:e3:ea:66:34:3a:98:0c:82:d8:a3:2b:
71:6c:ad:e5:b1:33:e4:0d:4b:3c:ae:68:83:26:bf:f7:d4:30:
ba:08:81:21:70:9f:a2:39:d7:f0:42:14:1f:91:d0:94:1e:14:
63:b2:ff:5b:fa:d8:89:a7:21:e2:ba:b0:75:32:b0:dd:2c:1a:
89:ad:e5:f2:c1:16:39:ce:2c:0f:d3:30:38:26:fe:32:c5:81:
fc:c6:0c:37:ea:8a:5f:d6:b6:f6:88:d3:be:eb:70:93:6b:52:
10:79:97:ba:ba:5f:26:c6:e9:e0:e8:ac:dc:1c:d1:e5:cc:5e:
04:4f:b1:76:a7:89:c2:8e:9f:e9:f5:97:54:64:cb:ab:3c:e2:
56:59:de:f7:39:db:a5:07:eb:11:34:e7:f0:85:e0:3c:d2:8c:
fd:cd:d1:36:dc:6e:1d:0f:ce:3e:91:b1:d9:9d:33:6a:86:44:
16:10:0a:bc:90:99:3c:fa:62:55:8d:9e:4c:d5:42:0c:97:cf:
0a:6f:ed:ae:e7:ed:2b:1d:c6:3b:11:8d:06:fb:c0:41:87:d7:
2e:c4:6f:70:35:f7:96:64:9d:a2:8f:f4:79:fd:b5:c1:e2:39:
00:c0:1c:44:2b:c5:b7:3d:61:b5:b5:1d:15:41:2b:33:5d:f4:
32:60:d7:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:00:07 2025 by rpki-client