Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
File: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft (raw, json)
Hash identifier: BfSQ/gcVnVgciTVdW/YN2pr1IWkVD4NIWWW2oCVj0GM=
Subject key identifier: 7E:11:83:BC:0C:AE:F2:4C:48:5C:5A:EA:A8:43:47:39:DB:AB:28:EF
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 019923315FBBE5B91CF3B8885F47456B7FDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
Manifest number: 083E
Signing time: Sun 07 Sep 2025 08:01:02 +0000
Manifest this update: Sun 07 Sep 2025 08:01:02 +0000
Manifest next update: Mon 08 Sep 2025 08:01:02 +0000
Files and hashes: 1: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl (hash: GgnEUxB9q+YN0i1SbB4lB+yKflq0XB5sWvBaThMQti8=)
2: Z5KDHzf527U1qRAIHwgcHaWLd8Y.roa (hash: 2FLC0+uc30V7W0I0O5nyFk8rgVmBx+XIWSxS6WsMyJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:5f:bb:e5:b9:1c:f3:b8:88:5f:47:45:6b:7f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Sep 7 08:01:02 2025 GMT
Not After : Sep 8 08:01:02 2025 GMT
Subject: CN=7e1183bc0caef24c485c5aeaa8434739dbab28ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5d:4f:2b:ac:35:8f:03:be:c7:a1:ac:2c:31:
1a:bf:07:35:a7:44:19:0a:98:c1:c0:fb:28:cd:5c:
a0:0f:ca:79:d1:a2:5d:8d:5c:ce:38:f6:b0:f7:bc:
d0:5d:e8:e1:f9:1a:69:94:ee:9c:5e:e2:2a:42:ec:
94:e9:cc:9f:d5:70:48:14:4f:d3:f9:99:f5:d0:0d:
ca:b0:fe:84:cb:39:c5:af:26:cd:32:d7:f3:c9:b5:
ea:f9:b7:ed:31:1b:a3:0d:a1:8e:7c:c1:7c:b3:af:
a1:8a:d9:fc:5f:42:5f:e2:4b:a9:9b:65:d7:b8:95:
a6:3a:63:fa:47:b9:27:17:f2:b1:57:28:2e:92:18:
3a:e7:2e:b7:56:ed:eb:f8:71:a9:b0:cd:c0:e7:20:
85:fa:86:ca:0f:5b:fd:a5:21:36:d3:f3:2f:92:cc:
10:86:8c:6b:10:c4:1e:7b:a4:f3:d1:2f:78:20:23:
52:4b:24:e3:8d:6c:12:f3:e0:ab:d2:c2:69:7f:87:
c5:f1:74:ef:e4:c9:80:cd:67:f3:1b:4b:13:16:24:
48:58:38:ef:57:e7:db:c7:96:59:c7:74:09:0f:18:
74:97:f7:54:7a:42:48:25:bb:ad:d7:76:2c:29:a0:
18:cb:0f:ad:5b:b2:b5:55:dd:ef:87:9d:74:e2:92:
38:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:11:83:BC:0C:AE:F2:4C:48:5C:5A:EA:A8:43:47:39:DB:AB:28:EF
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:27:92:8d:1b:01:09:8d:67:77:22:37:aa:03:78:01:d4:4b:
da:41:09:6b:ea:a7:4c:1e:57:10:6b:e2:56:58:e3:ad:68:36:
14:1d:10:bf:8a:73:1c:74:c6:26:a8:7d:46:1b:84:4d:b4:aa:
ee:e2:11:65:ba:55:2c:cf:1b:8c:c1:93:c1:38:e8:03:06:c7:
b8:f0:ed:4c:5d:2a:72:84:29:73:d4:2a:a5:5e:2c:81:f5:72:
58:80:4a:8b:e9:62:00:cb:48:9e:99:53:ea:7e:0e:6b:c8:71:
16:74:6f:43:fd:e1:51:6a:b7:c2:c7:fd:3a:52:e9:22:6b:ac:
3e:f9:fd:2d:6d:14:6a:9b:c6:d1:aa:7e:94:32:f2:5c:39:dc:
3d:7f:f0:b9:dd:94:79:b9:2a:55:34:51:77:f9:d0:c2:a8:87:
8d:d4:8e:59:2d:95:14:4d:5a:d4:f4:31:ed:ed:be:c5:48:4d:
f5:9c:4a:46:96:5f:7a:d7:b9:11:88:f6:c5:d0:3b:26:5a:10:
94:be:10:35:df:ac:62:39:f3:1e:b5:00:e4:3b:2d:10:18:9e:
4e:2a:5f:e6:4d:b0:56:3f:2d:d9:70:40:61:42:16:fb:1c:68:
88:70:80:4d:4f:5c:c9:3a:de:25:f8:54:63:fd:f6:bf:73:08:
e9:64:33:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:28 2025 by rpki-client