Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
File: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft (raw, json)
Hash identifier: gueaNM+1gqZYIlDN2XAyXznQ105DrM5GihCmomdHv9I=
Subject key identifier: E9:DE:E3:6B:BD:F1:0C:7B:BB:99:9A:08:E2:03:06:6C:83:0E:77:5A
Authority key identifier: 40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7
Certificate issuer: /CN=40d933e82474650c6aa3e9cbf0574d27286592e7
Certificate serial: 019922C38A36F019B48948914A7D58CC945F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
Manifest number: 167D
Signing time: Sun 07 Sep 2025 06:01:04 +0000
Manifest this update: Sun 07 Sep 2025 06:01:04 +0000
Manifest next update: Mon 08 Sep 2025 06:01:04 +0000
Files and hashes: 1: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl (hash: GDd/v1Dt02N4qkf8DZpmj4gzGK2vExaIrbX7c1TYtKE=)
2: ULw_e6rY6wER2z1dGFmp31jEgd0.roa (hash: MY5YBBTJCozx9Da4ab7Dr9d2mlZWfjLXtBL3DR2CzxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:8a:36:f0:19:b4:89:48:91:4a:7d:58:cc:94:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d933e82474650c6aa3e9cbf0574d27286592e7
Validity
Not Before: Sep 7 06:01:04 2025 GMT
Not After : Sep 8 06:01:04 2025 GMT
Subject: CN=e9dee36bbdf10c7bbb999a08e203066c830e775a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:3e:04:b5:f2:45:69:bb:b0:a0:59:f0:35:
fc:6e:55:8c:87:ce:fd:2a:ea:f3:4c:51:a3:44:15:
21:c8:dc:e7:ee:7e:98:00:e5:ef:c6:81:ed:ad:a3:
e9:cf:83:d7:30:08:dc:d2:b8:28:98:d5:ea:31:81:
c6:b0:a6:bc:68:db:25:4a:51:8e:2d:2b:85:6e:e2:
83:db:5a:3c:28:9b:31:86:0d:64:56:59:ab:6a:84:
97:d0:c8:b5:01:1d:34:9a:a8:a7:91:fc:cf:ab:d3:
75:78:b0:21:19:e2:df:f2:95:28:ae:c3:f7:cf:6b:
b3:70:46:a9:84:f0:7e:10:a0:e1:77:7d:44:e9:82:
ab:21:2d:29:41:f3:73:3d:fd:e1:81:93:32:68:1e:
a4:38:f9:38:d6:35:38:8f:87:d1:97:3a:89:2f:6e:
2b:98:5b:a6:f6:15:e2:0a:0f:1b:3c:94:6d:11:2c:
ce:9c:b7:5b:f3:e9:37:5d:fa:e2:c6:34:ca:95:24:
c0:dc:32:9c:b3:96:64:5b:53:da:c7:7a:d2:c7:52:
2c:fe:9f:8e:8d:0a:4b:bf:28:a3:a4:6e:fd:62:27:
c8:e5:d6:9d:3b:aa:8f:e5:eb:a2:b9:ba:ba:54:cc:
39:31:a1:82:dd:67:39:b4:d5:52:58:fd:1a:3e:45:
a6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DE:E3:6B:BD:F1:0C:7B:BB:99:9A:08:E2:03:06:6C:83:0E:77:5A
X509v3 Authority Key Identifier:
keyid:40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:31:0b:56:58:d0:81:18:11:b6:1b:13:3e:93:b0:99:ef:89:
f0:86:54:fc:fe:a5:ac:c8:b0:71:7d:50:e4:53:bc:7c:91:35:
ba:53:8d:30:65:0f:3d:8b:cd:06:92:de:a2:87:fd:5c:dc:61:
8f:81:b4:e4:81:fe:0f:33:61:a0:dd:0e:39:a1:f0:60:8f:21:
b0:57:a8:e9:8d:07:35:3f:f9:f6:2c:d1:6a:c9:34:33:aa:66:
f8:ee:14:a5:9a:7c:cf:97:d6:49:f1:25:6e:5c:52:93:19:9e:
79:35:0e:58:3b:9a:fc:f6:ad:47:92:f2:dc:1c:ab:a2:c2:5e:
00:f4:8e:da:20:08:c3:a4:ce:97:e6:ed:b5:b7:80:72:29:d2:
a9:4a:b1:57:c6:7b:db:c4:59:9c:50:13:50:4b:0e:f4:e1:0d:
74:42:27:3f:64:86:1e:5b:a8:4b:6a:c5:24:f0:a7:a9:d7:e6:
88:54:bb:6a:7c:14:6b:0c:8d:31:c0:6e:3c:3f:b2:1b:44:1d:
95:7a:44:60:39:7c:c1:0c:3d:85:0e:0a:12:3a:e8:05:8c:3d:
41:e0:9e:7b:83:6a:45:a7:96:c4:d7:64:d6:b1:a7:5d:3f:97:
1d:06:53:f7:1f:1f:5f:0b:37:df:19:84:3f:e2:9c:b4:e7:0f:
cf:49:24:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:11:56 2025 by rpki-client