Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: /7cecPVs3LD/YOjwc4RRdNENDmgmYMvPaFyRRXIQcG8=
Subject key identifier: 90:4A:F0:50:BB:D3:57:69:68:24:8E:AF:FE:57:5D:05:C8:DE:C2:BD
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 0199221E2EBB3A1CB0404EB3C368D879C57E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 03:00:27 +0000
Manifest this update: Sun 07 Sep 2025 03:00:27 +0000
Manifest next update: Mon 08 Sep 2025 03:00:27 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: pLOR7Yvqk5n9cbKaC3X7DXPOmDK3c9fAXANLM5D2FFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:2e:bb:3a:1c:b0:40:4e:b3:c3:68:d8:79:c5:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: Sep 7 03:00:27 2025 GMT
Not After : Sep 8 03:00:27 2025 GMT
Subject: CN=904af050bbd3576968248eaffe575d05c8dec2bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:cb:d3:2c:a7:6d:cc:84:ea:52:e9:a1:d7:81:
2a:30:23:58:66:bb:4b:c3:b7:7e:20:c8:2f:df:1f:
9b:83:dc:9a:0f:db:0a:06:34:85:1d:d8:e6:c2:da:
b4:eb:30:07:ae:27:dd:bc:bb:26:58:d6:76:4d:a8:
e5:71:ec:37:53:b6:65:58:7d:18:ac:2e:18:12:fc:
51:5d:3a:56:84:90:c9:0e:18:c3:20:c4:d8:c7:f4:
59:f0:a0:a2:a8:84:ec:51:d4:81:29:a1:3a:0f:e2:
4f:ca:b8:0e:5d:8e:5a:2e:fa:b9:55:c3:79:b3:de:
c6:26:19:70:1e:84:b9:6d:b0:11:00:d7:61:1d:a4:
a3:ec:34:91:76:cb:2d:b6:75:34:00:1b:a1:ba:35:
76:64:be:28:1e:b3:9d:05:2a:47:8a:2a:80:aa:8b:
f0:19:56:56:f4:a1:17:59:ed:c4:52:f1:2c:ea:58:
a2:87:f2:8c:82:dc:b7:bc:77:a5:dc:c3:87:f4:56:
83:6d:24:02:66:6a:b5:a7:b1:21:5f:5f:55:89:52:
f1:43:54:52:ea:bd:1c:92:56:52:6e:b6:bf:fa:62:
a0:c2:67:f1:93:8b:f6:51:cf:7d:dd:b6:5b:ec:46:
f2:52:bf:00:0a:0d:1e:65:02:9c:9b:a4:a8:d8:4a:
1b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:4A:F0:50:BB:D3:57:69:68:24:8E:AF:FE:57:5D:05:C8:DE:C2:BD
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:4a:c0:86:74:a5:b0:c8:0a:f1:d9:3f:69:05:0e:da:6a:65:
08:8e:b7:55:72:a7:b5:0d:01:17:12:04:75:df:45:78:50:4a:
14:fe:0b:10:e7:55:d9:20:6b:7e:43:de:74:38:8d:4b:87:3e:
87:ed:fa:17:dc:b1:fd:96:fc:29:d9:b7:ee:d9:73:c4:10:a2:
14:13:22:28:c9:ba:46:99:a0:c1:c2:17:a6:ff:e3:25:a3:3b:
71:4c:81:77:7a:f5:59:c8:47:f1:be:5e:dc:9c:86:15:3d:4f:
ec:96:e3:4e:ac:3e:07:af:f2:48:b0:1b:33:2e:d3:41:c9:2b:
c3:36:5c:09:fc:f7:5f:20:7e:54:ca:60:4b:8a:c4:2e:5d:25:
03:8f:34:bd:3a:5f:fb:cd:23:29:12:c9:cf:f5:99:3b:cb:66:
1f:d3:63:68:cf:0f:97:cc:7d:10:ca:47:25:bf:54:6a:ad:71:
e2:42:aa:df:9a:2a:2f:38:44:b4:eb:ba:f7:da:62:b2:5e:78:
6a:6f:f9:c4:de:44:75:d3:37:1c:a3:1c:80:30:65:a5:ed:6e:
2d:43:25:da:d2:ff:0d:e3:2d:fc:08:28:f3:1a:d6:aa:7c:a4:
11:f3:02:4c:61:c4:da:4d:10:65:b1:01:21:ea:c1:da:7e:c7:
b2:19:55:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:04 2025 by rpki-client