
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: msz1aOh1K/Nop6W5KU2L3TVS+Egx4pK0/zeiHh0Dlb4=
Subject key identifier: AC:5C:84:B3:31:F7:15:F2:96:9D:FE:E4:2E:04:69:D5:EA:BC:96:D5
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 01976A05F5EA190662A976BF5D5A4F904719
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 128C
Signing time: Fri 13 Jun 2025 16:01:04 +0000
Manifest this update: Fri 13 Jun 2025 16:01:04 +0000
Manifest next update: Sat 14 Jun 2025 16:01:04 +0000
Files and hashes: 1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: 7eGa2+sNWm9LSigkxxMKRiH9rwFAjysq53qJHJ7pJqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:f5:ea:19:06:62:a9:76:bf:5d:5a:4f:90:47:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Jun 13 16:01:04 2025 GMT
Not After : Jun 14 16:01:04 2025 GMT
Subject: CN=ac5c84b331f715f2969dfee42e0469d5eabc96d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0c:e0:db:71:6f:3a:7d:dd:ca:55:49:39:f7:
ed:1e:e7:c7:16:26:ac:ae:ba:63:ef:2a:2e:38:4f:
5e:cf:11:e4:24:2a:db:1a:a4:c5:54:11:11:af:ed:
46:57:5b:16:b2:5e:ec:3a:1a:4e:b0:69:ed:0f:38:
49:ac:ad:81:e2:05:50:4f:43:a7:79:ab:69:86:b6:
3e:35:e7:24:0f:4e:eb:1f:a7:f8:4e:6f:fd:01:a8:
18:85:93:aa:2f:78:08:92:01:30:df:43:e2:6f:40:
2f:53:f0:3d:6f:df:87:18:ef:bf:bc:97:37:e4:18:
a1:a5:ca:41:27:99:2c:03:29:09:82:16:56:8d:72:
ab:fa:27:1d:10:b2:77:05:d7:23:a7:71:9c:67:2a:
1e:cc:32:39:e2:97:ae:27:75:37:ea:db:ac:7a:3d:
3c:a3:cc:02:3a:5b:8a:ea:06:72:89:1b:ec:68:95:
35:fb:f4:0e:e1:7e:ec:d9:d7:e5:f3:d8:57:59:e1:
ee:f0:07:68:ac:f9:c3:02:1f:a9:58:7d:06:eb:f7:
c0:e9:e7:91:09:76:7a:84:3e:7c:67:87:44:9f:09:
fc:7a:25:a8:94:ea:3c:f6:ee:7a:5e:f0:27:a4:9c:
27:a8:75:82:e9:6d:8b:08:85:ae:37:d6:b2:1b:c8:
2b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5C:84:B3:31:F7:15:F2:96:9D:FE:E4:2E:04:69:D5:EA:BC:96:D5
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:ef:ba:f2:99:39:39:9b:cb:41:93:fb:b4:e1:20:8b:e5:7a:
2d:16:47:d0:aa:84:ea:14:4d:d5:29:c5:03:f3:7e:64:ec:72:
cc:f6:a6:5d:fc:11:71:fb:ca:12:f0:bc:7e:15:fa:e8:2a:fe:
15:2b:26:a6:3d:30:4c:97:6d:f0:62:98:20:3e:68:27:d3:be:
90:6b:27:ff:60:6f:65:5e:4b:89:9e:6d:b9:1c:c8:eb:b1:2b:
79:de:67:dc:a3:8a:63:20:73:bb:86:e0:0a:c5:b0:e9:59:55:
e0:3c:5e:74:bb:e3:bd:5d:d9:ea:cf:c9:61:ec:c0:bb:eb:a1:
6b:46:8e:01:82:7d:4a:2c:54:10:0a:f1:3d:f7:c0:d7:e9:8d:
03:57:ed:48:88:2a:6e:41:c4:e9:33:3a:ce:62:98:d8:d5:53:
a7:30:a6:19:46:74:aa:76:56:51:d2:98:b3:90:41:36:b8:a3:
d9:17:50:ce:0b:32:4f:1d:56:11:77:06:b3:27:52:d1:17:6e:
a8:d1:55:50:7d:b4:1a:98:08:53:e3:dc:57:33:ff:17:76:13:
66:a9:a0:41:38:94:77:13:74:82:29:72:c4:6a:e0:9d:4d:9f:
48:b7:91:6a:37:26:04:60:cc:7c:ee:83:4b:50:2d:e5:72:0e:
22:58:0b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:40:23 2025 by rpki-client