Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft
File: QpoEfERhf8-ynNVy962HR9C5Mms.mft (raw, json)
Hash identifier: /wD0fQuO3PnZkD5vQ8RWD380MGywFh8yXllPypPLUzU=
Subject key identifier: 2B:53:38:A5:47:5B:23:B7:29:19:06:E1:38:A5:C1:78:96:4D:11:6D
Authority key identifier: 42:9A:04:7C:44:61:7F:CF:B2:9C:D5:72:F7:AD:87:47:D0:B9:32:6B
Certificate issuer: /CN=429a047c44617fcfb29cd572f7ad8747d0b9326b
Certificate serial: 019921B178494915811DEA0AE06A54E7E9E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft
Manifest number: 0AE6
Signing time: Sun 07 Sep 2025 01:01:42 +0000
Manifest this update: Sun 07 Sep 2025 01:01:42 +0000
Manifest next update: Mon 08 Sep 2025 01:01:42 +0000
Files and hashes: 1: QpoEfERhf8-ynNVy962HR9C5Mms.crl (hash: luhL6gtHm6DByA+pC1mSzPbjMrgLsBbtyFNd6QhJ/9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:78:49:49:15:81:1d:ea:0a:e0:6a:54:e7:e9:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429a047c44617fcfb29cd572f7ad8747d0b9326b
Validity
Not Before: Sep 7 01:01:42 2025 GMT
Not After : Sep 8 01:01:42 2025 GMT
Subject: CN=2b5338a5475b23b7291906e138a5c178964d116d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8a:5c:b8:8a:b2:5f:84:93:cd:f6:73:a2:d0:
f8:98:83:ff:16:ac:7b:4e:2c:8f:99:01:82:e8:1f:
18:58:17:34:87:32:00:75:75:d6:85:ff:12:fe:05:
50:84:05:71:98:d7:09:e8:3e:ab:d0:85:8d:f5:4c:
97:93:1e:02:d8:b4:27:b3:56:a5:be:2b:20:9d:8d:
cf:2e:da:fe:47:c2:e9:3d:37:5b:09:21:e1:f4:58:
f0:b0:67:a0:20:26:6b:13:b4:77:2c:1b:6f:b5:17:
e5:e2:4b:1e:aa:1f:27:53:c6:10:52:f9:be:7a:30:
ef:68:be:b4:3b:4b:7b:a0:82:5b:4d:9f:82:ea:71:
18:89:2e:47:eb:30:01:c5:95:b4:e9:d3:fb:e6:fc:
91:fa:ba:14:a1:20:e0:11:65:10:37:1a:a2:a6:14:
2e:47:cc:8b:9d:c9:5c:65:ae:86:ef:55:3b:1d:d1:
41:90:78:9f:14:eb:9a:51:0d:c1:ec:4c:d5:c6:2e:
fe:a8:ef:01:c5:dc:a3:9c:8c:dc:00:5a:35:df:17:
52:cf:81:26:f7:ae:78:d5:bb:86:b5:07:9c:d5:47:
1b:c2:92:85:6a:d3:90:ed:c2:7c:f2:02:14:45:a3:
d2:58:39:7a:f1:75:91:fa:dd:5f:83:4e:e0:17:7b:
42:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:53:38:A5:47:5B:23:B7:29:19:06:E1:38:A5:C1:78:96:4D:11:6D
X509v3 Authority Key Identifier:
keyid:42:9A:04:7C:44:61:7F:CF:B2:9C:D5:72:F7:AD:87:47:D0:B9:32:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:f9:4d:6d:72:44:dc:35:17:2e:c4:a5:ac:6f:b0:be:63:9f:
56:8c:fc:4f:d1:49:8e:64:92:17:ab:97:25:13:0d:cd:73:66:
23:dd:0d:1e:28:d6:e5:18:73:48:60:ae:a1:39:76:00:1a:b1:
4c:e5:60:07:70:f6:88:ac:7d:c7:1b:96:69:9b:96:dc:ca:9a:
ab:6e:cc:61:2a:2b:a2:60:4e:65:2c:7a:a7:b2:f7:c4:ad:05:
2d:06:b8:d8:17:53:e4:07:df:2a:b4:b0:e5:ff:f5:5a:1f:86:
75:c7:86:5c:56:5f:d5:91:e2:d4:3e:0b:17:ab:f3:13:6f:6e:
26:a7:94:6f:70:46:c5:ef:96:00:99:62:c8:b5:59:87:85:61:
82:2f:e4:f0:93:1f:8f:a2:bc:8f:66:ff:e7:2c:49:24:e8:66:
72:60:76:ba:e9:a0:25:87:0c:ff:f3:cd:34:17:df:a6:2c:29:
13:fa:38:ff:92:73:fb:dc:61:16:d0:88:6c:57:95:82:2d:a7:
42:1a:98:ca:e8:95:af:58:11:84:0e:7d:17:d5:bd:49:de:7e:
b0:f4:e3:5c:4e:83:a2:1f:b5:b5:0d:67:e1:b7:88:e8:3b:e7:
ff:eb:ea:e1:22:d9:a9:1b:ba:36:22:e0:ff:f6:40:bb:be:5b:
6c:a4:54:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:43 2025 by rpki-client