Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
File: q33wfyEEN2kvd-7DRpuaSCuW0ao.mft (raw, json)
Hash identifier: lEI5/BqXEceL3200hQCHGXlhBndzuUOpzOsYQ3Yslk0=
Subject key identifier: 69:EA:36:A1:13:A4:7D:A8:7D:72:2E:16:1C:2C:15:5D:F4:88:7D:0A
Authority key identifier: AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
Certificate issuer: /CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Certificate serial: 019922C39A911822C3D38CE2559174CC602B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
Manifest number: 0606
Signing time: Sun 07 Sep 2025 06:01:08 +0000
Manifest this update: Sun 07 Sep 2025 06:01:08 +0000
Manifest next update: Mon 08 Sep 2025 06:01:08 +0000
Files and hashes: 1: q33wfyEEN2kvd-7DRpuaSCuW0ao.crl (hash: mAOITeo1DQ0Mmvpmh8mIvfKKs/7gZ7gG8HFZrjTNPzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:9a:91:18:22:c3:d3:8c:e2:55:91:74:cc:60:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Validity
Not Before: Sep 7 06:01:08 2025 GMT
Not After : Sep 8 06:01:08 2025 GMT
Subject: CN=69ea36a113a47da87d722e161c2c155df4887d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:47:a0:ea:86:87:59:b9:c6:84:0f:db:e7:cd:
c7:29:f8:35:e0:8e:72:4a:f4:da:b1:4a:b5:49:63:
76:71:7d:f3:30:24:40:13:9d:3f:9a:69:c0:78:c6:
25:22:36:5d:0f:de:92:0e:1c:63:54:9a:79:94:2f:
c4:f7:67:6d:66:e1:70:7c:f0:81:c9:62:94:a1:38:
b5:33:75:40:a9:82:07:0a:1d:e7:53:41:ed:81:2c:
80:36:cd:88:54:81:30:47:1b:d1:3f:ec:71:2c:78:
34:8e:36:6b:04:b2:5d:f1:68:d7:89:9b:68:36:93:
0a:4d:33:57:3e:9e:6d:11:d7:37:ca:25:9a:e8:b1:
22:03:a0:40:41:83:c9:5b:68:fe:57:6f:8a:b6:52:
3c:f6:22:cb:69:66:3f:24:e0:73:d9:57:10:d7:09:
aa:74:66:e3:53:8e:3f:f5:04:8b:e7:34:6f:d3:99:
5b:e5:d6:a5:f8:d2:c1:fa:03:23:0d:29:36:df:14:
85:62:e9:35:15:02:5a:8a:da:ae:59:6a:0a:7c:c6:
75:4b:6b:b4:54:64:4c:62:80:ac:df:13:23:3d:b2:
2e:2d:03:68:b0:22:21:e2:66:34:19:31:48:e0:cb:
cc:b5:7a:bc:02:9e:af:48:40:3b:59:8d:b1:d2:8c:
c4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:EA:36:A1:13:A4:7D:A8:7D:72:2E:16:1C:2C:15:5D:F4:88:7D:0A
X509v3 Authority Key Identifier:
keyid:AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:e1:12:30:e5:28:41:7c:c9:74:ba:64:07:b4:d9:92:b8:9c:
90:46:49:ce:cd:c8:1b:5d:91:8f:32:af:41:70:3f:18:4f:0c:
29:31:15:0d:81:65:aa:14:a6:a6:cf:ca:a1:c9:e1:c2:49:eb:
87:5a:df:22:52:cb:64:fa:fc:10:cd:1f:e9:96:cf:8e:5b:23:
73:e2:59:08:77:6a:36:25:19:48:53:39:c0:80:89:44:17:2b:
52:11:67:df:fd:07:80:fd:6b:f2:84:b6:59:95:d6:81:83:f8:
ad:15:b7:03:49:b7:68:bb:62:f0:9a:db:55:0f:6f:76:98:82:
04:1d:46:57:7a:17:82:59:fd:0e:f8:29:6e:8d:70:23:21:d0:
0d:31:bb:86:02:fb:84:cb:da:81:d0:73:79:91:87:2f:ee:15:
24:ae:8c:6c:29:f2:7b:7a:bc:a6:25:9b:a0:fc:e5:04:34:7e:
6d:ed:33:cd:f3:4d:66:01:ba:de:7b:89:c2:1d:4e:66:52:63:
d6:90:5a:5e:9f:34:68:30:3d:f8:e8:f3:3c:ef:83:47:87:42:
07:c8:55:da:6f:62:5a:70:4f:98:0a:82:a3:f9:ab:66:59:5e:
32:d4:0d:7d:e0:d3:ac:c9:74:d8:70:01:cb:22:18:c4:eb:fa:
95:41:ad:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:43:37 2025 by rpki-client