Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: jB6eu9j9LgEbmGdrfAesvXjzke0qovuF7N9gjQ6/KiY=
Subject key identifier: 07:DD:D2:37:F1:11:FE:F2:F7:57:81:F4:66:B5:EB:A1:81:5A:EB:19
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 019923A0C1DE27C7A7EB276A6AD54200999A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 10:02:41 +0000
Manifest this update: Sun 07 Sep 2025 10:02:41 +0000
Manifest next update: Mon 08 Sep 2025 10:02:41 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: ZZuwwdltcRz2LUkN+gZKMgiQ72nCRRgLD9QV4SbYMVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:c1:de:27:c7:a7:eb:27:6a:6a:d5:42:00:99:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Sep 7 10:02:41 2025 GMT
Not After : Sep 8 10:02:41 2025 GMT
Subject: CN=07ddd237f111fef2f75781f466b5eba1815aeb19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:89:e7:bc:41:db:47:70:9b:64:de:07:da:5d:
da:06:b1:d5:59:59:38:2e:d6:f1:37:83:84:5f:15:
5b:ce:a2:42:93:19:9b:8b:87:6c:0e:4e:12:61:08:
a1:09:0e:c0:e6:11:5b:ff:a8:ef:92:37:c2:a5:97:
a5:e0:05:2d:bb:df:ae:9a:73:0c:7e:45:f3:82:88:
b0:ea:e3:a7:f0:e0:d5:0e:47:01:38:24:53:07:18:
e4:d9:20:08:89:4a:b3:ed:91:c0:4e:fd:50:ec:e7:
7e:8a:6d:70:03:7c:fe:cd:83:f9:24:41:6d:1d:2c:
3f:bc:47:f8:27:93:a6:18:1d:08:57:e6:54:fc:48:
be:7f:5f:d5:05:e9:d5:64:fd:43:a2:b3:be:80:ad:
81:ff:63:2e:76:85:d6:64:8e:11:4b:79:f0:5f:95:
13:f3:bd:c5:13:0a:d8:14:dc:f9:54:ad:89:d8:e9:
bc:0d:24:de:05:77:eb:08:64:e5:fa:2e:84:3d:ca:
a3:70:d1:2d:0d:d1:55:9e:7d:26:5a:30:49:53:b9:
6e:4e:9d:2f:84:59:03:07:36:7e:46:7e:00:81:41:
dc:30:38:fd:aa:4a:d3:43:be:d0:60:39:a5:24:4e:
06:87:ce:6d:24:2e:58:9f:c6:01:63:88:5c:a1:dc:
80:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:DD:D2:37:F1:11:FE:F2:F7:57:81:F4:66:B5:EB:A1:81:5A:EB:19
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:74:ee:51:9d:3f:48:0e:4b:9d:44:6b:f3:7a:3d:e0:f9:ad:
c2:77:00:bf:d8:e2:5d:7f:9b:26:c5:02:de:ab:c2:50:0d:6f:
26:ae:57:74:57:0c:1f:5b:7e:e1:1e:20:f0:5a:58:96:95:09:
64:b7:37:94:07:c4:24:99:8b:60:67:39:43:17:c6:7f:8f:7c:
6c:0b:18:2b:3f:6c:75:14:97:b1:77:53:a4:ec:78:2e:30:b9:
db:bd:05:a9:68:17:9a:0b:db:14:7b:7b:e0:64:9a:b0:ea:9b:
52:2d:65:e7:e9:a2:9e:0a:cf:0c:75:d6:c6:5d:d3:cf:70:68:
fa:63:54:09:98:4e:ef:da:6d:b4:f2:f5:d1:10:7f:aa:6c:39:
20:aa:43:09:90:e7:fa:d3:81:00:8a:eb:d5:4e:87:ea:23:c0:
ba:4d:d3:85:3f:4c:de:9e:fd:f3:01:6d:bb:61:cd:af:90:13:
c6:7f:37:76:cb:fd:df:79:02:b6:d3:52:dc:6d:8e:07:79:97:
bf:07:99:72:bc:7a:b3:62:ec:69:aa:ee:4b:de:5c:bc:1c:3c:
1e:24:bc:90:e1:7f:44:e5:99:6e:f4:76:7e:c6:77:67:4e:80:
0c:9c:c2:28:55:8f:a0:bc:72:32:3a:bd:08:1d:ac:6a:89:28:
3d:44:c9:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:56:56 2025 by rpki-client