Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
File: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft (raw, json)
Hash identifier: l7iE7jt4YgoVzknXGLHtlGQ9Hk4umm+Lbv4FOfTZw+s=
Subject key identifier: 84:31:3F:1D:9D:16:03:76:6F:E8:2E:C7:A4:05:85:16:4A:1E:62:5C
Authority key identifier: 41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
Certificate issuer: /CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Certificate serial: 019921B0495FE8F231FC75655CF8AAEE849A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
Manifest number: 14F9
Signing time: Sun 07 Sep 2025 01:00:25 +0000
Manifest this update: Sun 07 Sep 2025 01:00:25 +0000
Manifest next update: Mon 08 Sep 2025 01:00:25 +0000
Files and hashes: 1: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl (hash: I5i3WM8ayEwKFmsG7BAgPD5Br0QNXjtzrMiy7BLHQ0U=)
2: tCKYdWD2hSQqFlBHMS87DdwFA_c.roa (hash: P2KIjX/YYHmksRirKKz2Fd1xnQFo0kzJQbDUVFG/Ics=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:49:5f:e8:f2:31:fc:75:65:5c:f8:aa:ee:84:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Validity
Not Before: Sep 7 01:00:25 2025 GMT
Not After : Sep 8 01:00:25 2025 GMT
Subject: CN=84313f1d9d1603766fe82ec7a40585164a1e625c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:56:8f:e4:ae:67:26:18:70:30:6c:b4:22:25:
18:3b:85:de:3c:35:e5:90:70:94:19:3e:a6:b6:47:
83:c4:e2:b3:d9:f7:25:bd:8b:69:43:2c:0e:ab:c3:
2d:db:ed:2d:04:f8:db:62:a1:07:a5:79:d4:08:cd:
bf:79:9e:5c:35:63:ff:1a:37:f1:39:55:80:83:ce:
7d:62:d1:20:d3:13:de:7c:75:82:22:0e:7b:f4:66:
ef:d9:23:6e:92:f3:6e:cd:93:6d:0c:bc:6c:e0:7d:
a1:0f:19:8d:86:50:20:0e:b5:a4:10:d5:1d:74:63:
6e:e1:64:3c:14:f2:9f:cd:df:36:6a:ca:89:b5:8d:
f2:de:07:c1:b9:7c:d4:c6:2e:aa:9b:24:07:a4:70:
c6:36:fd:25:58:fd:e9:33:fb:56:bc:fa:01:d6:61:
9d:6b:8e:87:4f:ac:2d:e9:01:96:7f:0d:c5:25:ae:
19:4a:4b:79:fb:d6:b8:69:26:66:80:1c:0e:a5:61:
09:24:2e:d9:9d:56:5f:72:c3:4a:d5:51:0b:af:16:
d4:30:e0:4e:70:e0:05:0d:e1:fb:0b:64:90:0f:a2:
bf:b4:d2:0b:5e:19:b8:ec:2d:32:3f:44:d2:65:0e:
9d:74:2f:5b:7c:e2:8e:1e:1d:d4:39:40:07:76:04:
d2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:31:3F:1D:9D:16:03:76:6F:E8:2E:C7:A4:05:85:16:4A:1E:62:5C
X509v3 Authority Key Identifier:
keyid:41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:19:ee:66:d9:76:97:2e:3a:f8:21:48:33:de:a7:1f:ab:1e:
8d:d8:5e:14:97:f0:fe:5b:31:8c:2e:1b:79:1c:29:b3:e9:1d:
75:83:2b:67:34:dc:60:3a:66:81:1b:da:35:43:af:38:67:24:
d2:33:2f:38:40:fc:20:2c:f6:11:46:79:38:d1:7d:db:16:59:
3b:28:71:62:94:16:48:04:5b:4b:08:6b:7a:11:5e:af:8e:3c:
f9:b7:20:f1:0c:69:c7:35:8f:20:74:ee:f3:1b:70:f4:e2:40:
4d:6c:cd:39:61:aa:65:d4:50:d6:58:45:2f:e0:4a:de:fd:07:
da:bd:c9:6f:9a:3c:50:5e:75:96:17:e4:d1:88:ba:c3:c4:68:
da:33:0c:6f:9c:78:11:19:fb:df:6e:d5:ea:fd:92:3e:8a:de:
9f:1f:6f:35:47:38:e0:85:49:e2:43:c7:43:a6:88:70:aa:0e:
1d:f6:82:d8:0c:69:39:ec:10:51:99:41:2f:76:68:c7:0d:be:
d9:55:e5:85:38:99:d2:39:11:b2:6b:58:77:8e:67:23:e2:f3:
0b:b0:94:4a:86:72:d5:fb:24:d8:46:9d:bf:73:71:cd:80:35:
da:a9:2b:b4:63:2d:c5:b0:ff:bf:1b:d0:67:a8:4b:02:b3:f3:
98:b1:38:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:07 2025 by rpki-client