Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: OWMHbRJg4IRU4UWjxCH98Z4CZN7xcn8s29+eCYAv62A=
Subject key identifier: 2F:7C:B9:1A:2F:9E:C1:EB:7C:86:2C:4F:A0:96:07:A8:BE:F3:9C:01
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 01991809BDCCA04EC5DC1604E6E165980A0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0D8D
Signing time: Fri 05 Sep 2025 04:01:55 +0000
Manifest this update: Fri 05 Sep 2025 04:01:55 +0000
Manifest next update: Sat 06 Sep 2025 04:01:55 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: XiC1TdcESba4w+ek1vOkU4AbnFuZUdf9fbE9a0E4zi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:bd:cc:a0:4e:c5:dc:16:04:e6:e1:65:98:0a:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Sep 5 04:01:55 2025 GMT
Not After : Sep 6 04:01:55 2025 GMT
Subject: CN=2f7cb91a2f9ec1eb7c862c4fa09607a8bef39c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:37:9a:c0:0a:0e:07:1e:06:25:c3:39:78:3c:
61:03:f0:cc:e4:4f:bb:5d:1a:95:87:23:8b:b6:b1:
d1:ec:e4:7f:ca:ff:06:d8:29:1f:a3:42:dc:91:34:
56:90:c8:de:e7:ed:91:8c:16:bd:69:48:ae:81:2c:
7e:77:8a:48:bd:df:76:7c:eb:6d:89:8f:db:50:6a:
43:c1:c3:ee:4a:71:78:91:b4:21:99:ab:7b:b0:92:
72:84:47:92:c5:40:38:73:a2:13:92:6a:8c:f0:34:
90:6b:d0:e5:5c:a5:87:99:11:52:dc:cc:15:b7:8b:
eb:fd:d1:e6:aa:1c:26:32:68:56:86:ef:e3:00:c4:
69:b5:0b:ee:7f:16:71:59:b1:d3:2b:88:6f:77:ba:
3d:6d:55:10:4b:46:24:ee:37:e7:d2:92:61:24:8c:
e7:e6:91:68:91:e4:35:38:8c:e7:2e:85:2d:42:13:
4f:78:2d:75:ba:75:da:c8:a1:ad:e8:99:ec:f4:79:
5a:35:d2:07:01:dc:98:0c:fd:20:9e:60:41:c7:2f:
61:bb:cd:f0:58:0a:46:ef:43:ab:6a:79:b7:e4:1c:
ea:74:9d:30:fe:01:e7:22:eb:cd:78:20:f4:56:6a:
4c:d4:a6:85:b2:56:70:ad:60:59:ce:d9:03:0b:c1:
2c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:7C:B9:1A:2F:9E:C1:EB:7C:86:2C:4F:A0:96:07:A8:BE:F3:9C:01
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:18:03:84:34:35:27:b3:20:1d:19:89:7c:eb:47:11:ca:5b:
b2:cb:b9:3e:79:63:ed:95:b7:6d:f4:d3:fa:e2:b9:a1:7f:99:
3f:17:91:6e:a6:3d:7c:f0:2c:38:30:d7:8d:8d:05:72:19:61:
30:c7:49:be:f2:de:c9:ec:90:fa:32:6a:75:5e:53:d4:ed:13:
33:0c:26:f2:82:ce:ec:0b:71:b3:a8:39:46:37:26:fd:c1:b6:
76:cf:ad:88:e6:b0:00:08:15:75:e4:b7:a8:94:a9:16:52:15:
eb:df:ac:31:f9:37:b4:37:a8:42:db:36:23:74:9f:6c:9e:e9:
7e:fe:2d:33:92:e0:65:58:92:6a:9f:66:31:bd:dc:e4:59:b3:
05:a6:99:be:db:18:e6:97:5a:e4:bb:f8:56:2c:1c:39:07:04:
4d:94:59:0c:f3:9a:08:c1:67:ce:f8:e8:91:41:bd:c0:3b:6b:
08:db:ea:1a:c5:53:04:45:0f:d9:d3:29:a1:0e:2e:09:dd:a8:
83:b6:83:f9:0c:e9:0e:91:e7:5a:63:f3:6b:12:a0:3c:55:75:
e8:72:11:7c:3f:a4:f3:f4:c1:cb:ef:3c:08:5e:32:7e:8d:29:
11:6a:7a:13:a8:45:9d:ec:63:3a:c0:5b:41:91:68:ce:20:58:
1b:e9:9b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:06:15 2025 by rpki-client