Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
File: QM_TpJvHHnSg0L9-NGyomylZehI.mft (raw, json)
Hash identifier: ULhcOxXDNHXlujYS4meMZGJYPtO5lqi2mqbyhF9XINs=
Subject key identifier: 76:A0:1F:93:DC:9C:31:A6:F2:2E:A5:76:08:52:E9:48:83:F6:64:3D
Authority key identifier: 40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
Certificate issuer: /CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Certificate serial: 0199277B9C66FE65E54F6A83C2D579B01BD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
Manifest number: 1674
Signing time: Mon 08 Sep 2025 04:00:36 +0000
Manifest this update: Mon 08 Sep 2025 04:00:36 +0000
Manifest next update: Tue 09 Sep 2025 04:00:36 +0000
Files and hashes: 1: QM_TpJvHHnSg0L9-NGyomylZehI.crl (hash: 4cGv3rJNeOx62RFAbXzwnsSHdZdGM92/hwD0iG9Ytc0=)
2: cOU0f1SCKSAnKUQtSDidcXUui3Y.roa (hash: SxetuqQIAbe3h1o0xhzW+JEeQWRKvCIOYuGwJHKjEXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:27:7b:9c:66:fe:65:e5:4f:6a:83:c2:d5:79:b0:1b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Validity
Not Before: Sep 8 04:00:36 2025 GMT
Not After : Sep 9 04:00:36 2025 GMT
Subject: CN=76a01f93dc9c31a6f22ea5760852e94883f6643d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8a:42:ca:c9:93:68:37:44:78:6a:4d:d7:4d:
52:84:40:15:19:01:0b:eb:bf:f1:a9:f9:30:14:1b:
f6:a7:d0:f8:59:8f:85:3a:05:91:d3:db:05:92:70:
5e:dd:9a:33:e1:53:21:c3:fe:13:6a:f6:c6:dc:17:
65:57:ae:75:96:49:dd:e9:f3:74:2e:e7:26:74:d6:
71:86:1f:89:70:13:96:75:64:c1:03:17:8b:70:b5:
63:91:23:c1:7b:70:3b:0e:a4:9b:fa:fa:08:2a:6c:
30:b5:b5:19:1a:f3:2c:86:cd:ac:55:ae:37:22:02:
3f:1a:1e:48:dc:a6:71:4b:25:9b:f6:0a:69:3b:8d:
9f:ee:60:8d:68:33:03:97:b4:f4:cb:64:2c:e7:c7:
a7:61:cb:c8:0d:b7:83:f9:c2:93:a3:4b:07:2b:e2:
c4:85:bd:9c:ae:e5:8d:5a:05:89:1c:86:2b:17:b8:
8c:19:97:a8:c8:ec:0c:02:2e:d7:9b:fa:34:c8:99:
81:48:ef:9d:29:ba:cd:de:48:b0:1f:ac:da:d4:2c:
79:67:a0:2a:65:68:8b:9f:97:f0:7e:bf:68:52:e1:
e9:15:f1:16:94:0a:ad:c9:e0:c8:c1:79:81:ed:b7:
08:fd:27:01:75:0c:60:9e:ad:d9:8c:d4:5e:3d:ed:
ec:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A0:1F:93:DC:9C:31:A6:F2:2E:A5:76:08:52:E9:48:83:F6:64:3D
X509v3 Authority Key Identifier:
keyid:40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:c2:3c:ff:c8:1d:c7:d5:cb:cd:e7:70:9b:aa:87:c5:98:dc:
da:a8:57:b8:c3:37:16:6d:50:a7:b1:3e:85:bf:92:23:4d:2c:
c4:5e:17:52:3c:fa:83:b4:48:dc:3d:ff:5a:ad:07:95:79:27:
53:7e:cc:7e:cb:61:d8:6e:03:55:7c:41:d9:f9:aa:6a:c4:e0:
8b:09:d5:1d:99:38:bc:b3:4e:60:ab:93:0d:ae:9f:d1:f2:65:
91:f6:5d:8b:78:4d:c7:c3:89:8a:1e:c0:e6:35:26:84:fb:1c:
8e:80:cd:7c:81:4d:10:a5:8a:c2:72:83:fa:b6:5b:5d:21:01:
db:98:03:05:c0:df:c2:8d:13:74:c5:30:b1:11:a4:e4:74:8a:
35:73:d2:90:c1:9b:ee:66:66:9d:01:e9:8a:bb:70:70:94:2a:
50:44:0d:8b:70:64:12:2c:88:77:fd:a0:03:e9:a8:65:c7:28:
a1:90:a6:98:d9:a1:de:2f:d1:39:85:55:f2:83:68:e4:b1:43:
9b:73:1f:e5:f8:8c:d1:ec:d1:98:bb:7f:a9:95:78:10:22:64:
e1:a0:62:cc:ec:52:4e:73:67:e2:90:9b:77:8a:5d:2a:4f:f4:
03:de:68:f5:cb:ac:ba:1f:b8:bc:19:69:22:2d:c6:c1:12:46:
c8:c4:ab:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:06:22 2025 by rpki-client