Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
File: QL_eNYm0RMN59zNggxsd2OovhwM.mft (raw, json)
Hash identifier: wAKEgH+DuS3JpDWv9BWBbJh8Ez8FiqzE8HCnT43HbNY=
Subject key identifier: 6B:28:9F:11:C0:F7:67:7A:FB:E6:59:E8:33:C6:CC:DF:14:2D:04:CA
Authority key identifier: 40:BF:DE:35:89:B4:44:C3:79:F7:33:60:83:1B:1D:D8:EA:2F:87:03
Certificate issuer: /CN=40bfde3589b444c379f73360831b1dd8ea2f8703
Certificate serial: 019922FAF85F25577F0831EC63279646206B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
Manifest number: 0881
Signing time: Sun 07 Sep 2025 07:01:36 +0000
Manifest this update: Sun 07 Sep 2025 07:01:36 +0000
Manifest next update: Mon 08 Sep 2025 07:01:36 +0000
Files and hashes: 1: QL_eNYm0RMN59zNggxsd2OovhwM.crl (hash: 32ICcjBCe/M3SfpcJeAiUVpRcIPpkoFgcwjaJy9JDn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:f8:5f:25:57:7f:08:31:ec:63:27:96:46:20:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bfde3589b444c379f73360831b1dd8ea2f8703
Validity
Not Before: Sep 7 07:01:36 2025 GMT
Not After : Sep 8 07:01:36 2025 GMT
Subject: CN=6b289f11c0f7677afbe659e833c6ccdf142d04ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:53:04:8d:0e:1f:f0:04:f3:62:a7:38:92:f4:
f2:91:3a:2c:6b:88:9e:db:8f:e7:3a:bd:7f:fd:76:
9d:93:45:8a:ad:6b:a5:59:40:e8:7e:1a:b7:d1:31:
e4:6e:fc:fd:42:64:4a:c4:d4:cc:92:c5:8c:fd:26:
97:d6:de:45:68:52:95:18:42:cd:ec:85:b5:91:bc:
e0:07:9a:6a:89:c7:73:0c:30:71:00:53:7f:5a:f2:
48:97:4d:d5:ab:37:df:1a:56:d8:c9:ca:15:3e:7e:
48:8c:95:fd:fc:1f:e7:6d:a4:78:4f:34:33:07:c1:
88:e4:5c:08:00:45:09:2e:5b:0e:5e:05:cb:e3:ca:
6a:ac:0e:f3:87:e4:54:81:a8:f0:c0:ba:8b:9b:27:
cc:33:88:1d:31:c0:58:ed:3d:69:cb:cb:33:98:c4:
0f:05:3e:07:61:8a:11:a8:d0:cb:f0:59:14:2a:08:
e5:7f:72:c3:9d:d1:e9:7b:c1:86:dd:be:1d:f0:85:
5a:e1:5e:4a:b3:3b:bb:67:dd:b9:26:e9:6a:a9:06:
bf:9f:d2:ad:71:14:13:0c:a9:7f:11:7a:5b:0f:5f:
fd:d1:2e:73:b7:a4:13:45:30:7f:f2:ff:5c:2d:c2:
47:2d:86:2a:f1:23:f8:e3:64:64:98:2a:30:c9:1c:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:28:9F:11:C0:F7:67:7A:FB:E6:59:E8:33:C6:CC:DF:14:2D:04:CA
X509v3 Authority Key Identifier:
keyid:40:BF:DE:35:89:B4:44:C3:79:F7:33:60:83:1B:1D:D8:EA:2F:87:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:bd:fb:7a:1c:91:e8:49:8b:ca:d3:99:d3:e0:c4:07:36:51:
90:56:ec:c1:0c:77:a6:93:6e:d2:d4:04:21:4c:c5:bb:c5:7b:
ba:e8:9f:53:5d:6a:9a:83:78:19:79:10:51:dc:30:47:aa:c3:
07:74:e7:fe:e7:42:0b:66:8d:50:06:0b:39:dd:c7:67:d7:5b:
f1:c5:9b:d9:73:7e:bc:eb:03:bd:6f:92:a8:ef:af:4f:09:04:
22:47:36:1e:49:66:5b:28:e1:21:b9:8f:af:46:02:2c:5e:fc:
3b:6f:2e:51:94:48:b2:e7:04:f5:84:d1:2d:ca:9d:e0:57:a7:
a6:d7:91:39:75:0a:58:fc:11:55:92:4d:db:4f:b2:60:8a:49:
d5:65:80:46:10:8e:cf:d1:35:2f:95:b9:65:29:e6:23:e6:0d:
43:a7:5f:1d:f2:59:1b:4b:81:41:db:2c:09:cd:19:a5:ff:76:
dd:92:45:d8:df:ee:c8:aa:2e:37:6a:ec:7b:88:52:ad:47:a7:
d0:d1:b0:e0:02:09:fc:65:0a:9e:b9:32:12:5b:67:66:f3:c0:
41:d5:2f:37:cf:85:41:cf:80:8d:e9:37:5d:7d:3f:5e:91:0d:
24:e9:09:f7:f7:d1:8c:c4:9c:4d:94:c5:9a:a5:1c:71:f7:28:
d8:d2:5f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:17 2025 by rpki-client