Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: Trus8FafFTCQmVf/dgwXczKeO90xLJQSmDFsECVk4/s=
Subject key identifier: 38:5D:DB:46:72:4F:9B:97:6C:6F:68:04:C9:D7:AD:80:A1:6C:BF:71
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 019923A0F25705F7E1E232E742B9E81C0412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 1058
Signing time: Sun 07 Sep 2025 10:02:54 +0000
Manifest this update: Sun 07 Sep 2025 10:02:54 +0000
Manifest next update: Mon 08 Sep 2025 10:02:54 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: QOOLmU66vOuZmB/gpxgvlQ1r22CJ2NmNBrZM8vUZt+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:f2:57:05:f7:e1:e2:32:e7:42:b9:e8:1c:04:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Sep 7 10:02:54 2025 GMT
Not After : Sep 8 10:02:54 2025 GMT
Subject: CN=385ddb46724f9b976c6f6804c9d7ad80a16cbf71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f3:84:eb:3a:9b:13:e1:fc:34:f9:a9:06:2e:
d1:ef:01:68:cb:40:1c:d4:bf:84:cc:f5:89:6b:7a:
f0:a9:e6:59:dd:69:d1:13:bf:c6:bf:a3:32:34:e7:
29:b8:28:b9:b0:54:bd:0c:22:b5:4c:da:5c:ec:63:
69:0e:fb:d3:64:47:13:62:68:51:e5:d5:76:68:65:
7c:35:3f:44:7e:c4:f2:51:a8:a1:f0:d4:d5:19:52:
4d:8b:84:f2:be:fa:13:db:c4:97:1b:f2:88:8a:34:
07:e1:4f:43:64:cb:07:9d:7c:df:c4:7a:58:42:1f:
37:28:a5:05:b2:f4:84:9a:e6:6d:88:e2:4b:3a:5b:
79:a2:8b:12:6d:28:12:d6:19:4c:8b:9e:ed:f0:e7:
62:db:5e:fd:6e:69:a6:83:83:88:04:52:ed:4a:3a:
82:b5:6d:9e:46:3c:66:67:1e:bd:07:79:74:7d:32:
ac:6c:a0:ea:80:ca:36:90:fb:41:b0:e5:98:ce:d4:
0c:fe:89:f0:3e:73:df:ca:fa:ad:23:64:aa:13:c6:
8e:c7:4c:de:49:af:72:0e:56:c1:10:f6:f1:04:a7:
49:22:13:2e:20:d7:15:d8:db:a0:92:6e:cb:84:39:
e1:bf:ac:1c:4f:48:8e:79:9c:51:be:ca:a9:29:4d:
d0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:5D:DB:46:72:4F:9B:97:6C:6F:68:04:C9:D7:AD:80:A1:6C:BF:71
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:da:80:75:f2:61:03:42:67:03:d5:a9:ca:d8:9d:3f:f6:3f:
8f:1b:48:33:0d:10:b0:c0:67:ba:ac:3d:bf:c5:6c:f4:1c:1e:
41:92:37:d6:74:13:ef:73:d5:4b:c3:a9:8c:5b:c4:aa:9e:60:
df:bc:e7:5a:77:6b:e1:f2:c5:5d:e1:cb:6d:c2:23:40:f4:e8:
0c:dd:fe:f4:8b:12:d5:7c:f3:d2:32:52:25:8a:28:b8:78:d0:
d2:65:cf:7a:af:74:6b:40:67:35:93:c4:71:08:23:6f:d8:f5:
8a:e1:4f:93:50:5c:f5:14:d2:a7:7e:79:12:0c:2d:17:c6:26:
e7:4f:37:cb:b5:7c:4f:d4:83:50:a0:09:fe:cf:5e:e2:ac:ca:
4a:f6:d1:cb:b6:47:45:76:37:8d:40:4d:80:e3:49:26:18:7e:
e3:4e:9c:35:25:c7:90:f3:d9:8c:3c:a4:95:c2:d4:9d:f6:81:
c1:06:1f:1d:86:f2:36:6f:ce:59:cf:4f:30:48:a2:60:70:f5:
8e:7e:99:d2:0f:e5:b8:b7:90:05:0c:71:24:5a:18:be:67:28:
a4:b6:37:d7:73:22:ef:14:c6:d5:47:37:e5:1f:cf:fd:87:21:
59:84:cc:c3:f1:d4:eb:d8:dd:57:c9:fb:9d:54:f1:16:a7:97:
b6:f5:05:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:33:11 2025 by rpki-client