Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
File: QBMclDl36gqT787s000dXRyxgq8.mft (raw, json)
Hash identifier: lXVOT9n7kNCNbtQb3HbsxxGwdcLiSou+T5smNUZYKRQ=
Subject key identifier: 0C:3A:4D:70:1E:92:B8:9F:6D:E7:AE:30:3D:6B:3D:87:EE:9F:8E:5D
Authority key identifier: 40:13:1C:94:39:77:EA:0A:93:EF:CE:EC:D3:4D:1D:5D:1C:B1:82:AF
Certificate issuer: /CN=40131c943977ea0a93efceecd34d1d5d1cb182af
Certificate serial: 0199228C7C50E69A13E6CB1A2E374DABBD15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
Manifest number: 0F20
Signing time: Sun 07 Sep 2025 05:00:56 +0000
Manifest this update: Sun 07 Sep 2025 05:00:56 +0000
Manifest next update: Mon 08 Sep 2025 05:00:56 +0000
Files and hashes: 1: QBMclDl36gqT787s000dXRyxgq8.crl (hash: Ddad1HbxYor5L/ZczkEIJBewktSUnPVWFaf9bop9fnU=)
2: ULUALQSKNZEpPcNq68X1y69o-9w.roa (hash: u+zVU0SkY5ZMKNVKnpjmcvlKMcttm6HzHNnhk032Vso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:7c:50:e6:9a:13:e6:cb:1a:2e:37:4d:ab:bd:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40131c943977ea0a93efceecd34d1d5d1cb182af
Validity
Not Before: Sep 7 05:00:56 2025 GMT
Not After : Sep 8 05:00:56 2025 GMT
Subject: CN=0c3a4d701e92b89f6de7ae303d6b3d87ee9f8e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:65:ca:21:2d:1f:ce:40:a8:47:b9:0a:be:9c:
05:6e:d3:22:5f:ac:74:08:cb:b5:d6:aa:fa:36:2d:
6c:f9:c7:d0:3c:55:90:a6:6c:5e:cf:2e:ac:40:61:
ad:4b:c9:8c:8d:94:7f:7e:66:ea:2d:a3:97:df:30:
a8:ac:56:ae:72:67:f1:bd:0e:01:ff:74:dc:f7:90:
2c:5a:58:36:24:be:68:28:63:71:bf:97:92:b7:0a:
df:4b:9d:e1:14:ca:21:46:d5:37:26:36:f9:8e:f8:
da:d6:83:3c:0c:e4:98:a5:5f:7e:55:4b:11:5f:a5:
83:39:55:ab:67:64:df:e5:ce:00:8f:ca:fc:e2:80:
62:71:fb:6f:0f:e2:ff:b6:ec:11:5f:95:74:46:6b:
dd:f5:ab:1b:a5:56:61:75:4b:14:e4:0a:3d:12:4b:
c3:3a:a8:f9:e5:e7:0f:06:48:1b:d2:de:31:d1:c9:
d8:06:4c:c6:f4:07:29:22:9a:9d:f1:e1:a3:9b:84:
ab:75:a5:de:03:8d:4c:0b:f8:9a:07:54:cf:cc:75:
f2:c5:ee:be:dd:3c:4e:89:02:05:aa:39:a2:7f:f1:
2f:86:9f:97:42:7b:62:f4:44:5a:c4:12:04:e6:c6:
96:24:28:cc:dd:df:21:13:72:b6:1f:9f:00:56:ba:
c7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:3A:4D:70:1E:92:B8:9F:6D:E7:AE:30:3D:6B:3D:87:EE:9F:8E:5D
X509v3 Authority Key Identifier:
keyid:40:13:1C:94:39:77:EA:0A:93:EF:CE:EC:D3:4D:1D:5D:1C:B1:82:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:ef:e4:fc:d5:00:73:fa:99:09:bf:cb:91:f7:87:0c:c2:64:
fd:1e:be:2a:0e:71:6f:b9:ff:ba:6f:7e:c7:94:d9:d5:45:a5:
12:5c:ad:b4:d4:a9:bd:aa:bf:77:83:2e:13:e9:55:bd:5e:49:
2f:50:d2:a6:da:12:89:9a:b7:3e:99:ee:ae:c6:37:52:b1:24:
ad:55:d4:17:c5:48:7d:78:66:cf:11:39:7f:3d:e4:4d:44:fb:
17:3d:2f:19:54:ac:b1:1f:82:c7:25:9e:d4:42:13:f9:0e:0a:
8f:a0:55:2e:fb:de:e1:7a:40:31:82:2b:10:6b:d2:dd:c6:9d:
84:54:3c:46:52:05:6f:ea:82:f2:f1:62:a0:bd:25:a1:5e:4f:
53:f6:c4:dc:f0:01:ee:6d:6e:20:08:3f:35:bf:f8:7c:7f:f0:
b1:67:c0:f4:29:8d:b0:69:b5:d8:cd:67:6b:8b:2f:9f:d2:23:
7b:d3:33:31:dc:d5:d9:60:9c:4b:d4:be:87:bf:7f:7b:f7:33:
d3:7d:61:e6:40:d5:35:0b:ef:87:4e:45:de:ff:e7:f1:ab:39:
83:35:d2:b3:56:9b:97:4b:1f:ff:32:51:13:19:0b:fc:76:5d:
8c:0e:b2:8a:cc:27:a7:6b:2a:05:8b:00:3b:e4:85:9a:28:17:
df:73:36:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:26:14 2025 by rpki-client