Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
File: QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft (raw, json)
Hash identifier: 0tx9/1DsYYd867S4F2i5Veat0lSqXXQpAjUHr1U1P4s=
Subject key identifier: DD:43:41:97:3E:4C:08:94:27:01:3F:BD:17:8E:F3:E3:18:35:36:97
Authority key identifier: 41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E
Certificate issuer: /CN=4148cbad1748205b4f4334bba638c64c2b21fc0e
Certificate serial: 019921E794661D1576424EBB749BFEA22EBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
Manifest number: 109F
Signing time: Sun 07 Sep 2025 02:00:48 +0000
Manifest this update: Sun 07 Sep 2025 02:00:48 +0000
Manifest next update: Mon 08 Sep 2025 02:00:48 +0000
Files and hashes: 1: 4ylLEVDeXKrfF8Se5wkM9llLd1w.roa (hash: 4hQQfVDyFUxXBSnxIrSQDsLfslrlkzzZ+2tzn4mkErM=)
2: QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl (hash: j7U59JtnOkxHoIqxajYQjXh55W9J4jS8omPfGL1d1zg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:94:66:1d:15:76:42:4e:bb:74:9b:fe:a2:2e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4148cbad1748205b4f4334bba638c64c2b21fc0e
Validity
Not Before: Sep 7 02:00:48 2025 GMT
Not After : Sep 8 02:00:48 2025 GMT
Subject: CN=dd4341973e4c089427013fbd178ef3e318353697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:58:b7:9d:2f:c0:79:c8:45:01:ed:ea:d2:03:
cd:c0:46:ba:a3:72:3e:1b:62:f3:b1:62:da:49:6d:
b9:81:47:ec:11:be:f7:84:97:2e:5d:78:7f:78:fa:
84:85:ad:d2:8f:3e:95:20:20:e8:da:0e:40:5a:ba:
1b:17:2a:9d:dd:f1:b2:2f:5c:70:dd:e4:d9:7f:6f:
5f:6d:12:3f:e5:36:e6:28:54:e6:4f:f9:68:9e:c7:
ac:61:d1:74:6c:7c:89:fa:d6:2e:48:11:00:f3:16:
fc:43:72:77:91:26:44:24:9b:32:4e:47:10:45:89:
ff:ee:b1:2f:83:62:31:46:bd:a6:21:7f:bd:ba:07:
fc:72:26:97:88:0e:fd:9c:56:17:bd:51:37:d6:8c:
47:11:25:16:9c:f7:6f:ca:55:51:4c:19:a8:82:a8:
4c:43:a6:01:c1:5f:00:b5:06:52:e3:b5:e1:d6:8d:
0c:aa:a6:8e:89:ad:9c:65:8e:4c:7c:34:f1:62:d3:
ec:10:e2:a8:2c:ae:77:8f:6a:19:5e:21:54:b2:80:
9f:22:b7:42:43:a0:06:2b:6b:79:cf:1c:9a:3d:29:
5e:ec:ec:a8:e6:f5:9b:a7:66:8e:b5:b2:c2:0e:6c:
f8:87:24:5f:4f:5f:46:12:fd:29:f7:4d:9c:4a:db:
80:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:43:41:97:3E:4C:08:94:27:01:3F:BD:17:8E:F3:E3:18:35:36:97
X509v3 Authority Key Identifier:
keyid:41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:cd:e4:18:67:c9:da:ef:7b:3b:27:9e:2d:23:a8:ea:f5:39:
60:75:24:d1:3d:ce:38:0b:e1:d9:f8:6f:11:1b:a8:d2:8e:87:
2d:4c:ce:82:b9:9c:8f:96:47:ab:2f:64:d7:d8:03:62:2b:bf:
26:c9:4d:e5:3a:74:3e:2b:e8:16:65:63:c6:65:02:58:be:9d:
ea:1f:7f:3f:ca:ed:02:fe:fc:ce:24:7a:ce:1a:71:f1:b4:87:
87:54:8c:20:a1:dd:e8:f9:bb:76:28:02:60:a0:fd:21:67:a0:
be:d8:d0:d7:e0:9a:81:af:28:e7:aa:76:65:14:15:62:e9:02:
64:a1:5c:c8:57:c8:25:37:41:eb:e6:3f:59:33:ef:8b:b4:b6:
bb:4e:53:4d:a1:12:12:b3:42:d3:3b:c2:e3:77:e5:f7:d0:7b:
0b:7d:5c:ae:fb:bb:0f:10:6c:24:fc:40:43:69:d0:bb:0d:51:
1a:1e:ec:19:9b:54:08:19:cb:3d:79:84:98:35:76:94:96:db:
20:e1:4d:58:9c:a0:d9:0d:35:fa:8f:cb:b9:de:58:92:4f:dc:
02:4c:6b:fe:fc:9c:4a:9a:64:3d:39:3b:25:34:5c:3c:e4:24:
3f:da:eb:d7:5e:05:d7:f5:18:71:1f:d9:3d:0e:b7:ab:ab:a2:
14:fd:b9:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:37 2025 by rpki-client