Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: n0d1kpDc7+3OTN7YtSrsEQHIdCuKT8KDSnE8Cfmrgxc=
Subject key identifier: 75:CF:33:F9:06:E6:D9:D4:28:B8:84:B5:BB:ED:0A:C9:3F:D6:80:07
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 0199225545ABD297FDFEE546121DA558D4D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 1370
Signing time: Sun 07 Sep 2025 04:00:37 +0000
Manifest this update: Sun 07 Sep 2025 04:00:37 +0000
Manifest next update: Mon 08 Sep 2025 04:00:37 +0000
Files and hashes: 1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: Gu3oorheHYKRn91WSvfFosCG/ucm5pnOD+ZKmq7zIpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:45:ab:d2:97:fd:fe:e5:46:12:1d:a5:58:d4:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Sep 7 04:00:37 2025 GMT
Not After : Sep 8 04:00:37 2025 GMT
Subject: CN=75cf33f906e6d9d428b884b5bbed0ac93fd68007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:01:04:0f:22:e8:3d:31:e5:e4:28:d3:05:12:
3d:ef:00:77:b1:1f:4c:34:04:de:42:77:38:bb:94:
f5:22:34:2a:c8:a9:97:49:04:d2:4a:e1:db:0f:c0:
b2:aa:ec:87:da:fd:b2:67:da:8c:50:b5:32:fe:7b:
24:68:f6:9a:8f:ab:82:f1:8e:18:88:8e:2b:42:52:
fd:f4:35:7c:e1:b3:4c:86:63:82:a6:75:78:33:93:
6a:41:0f:3c:f1:3e:07:3e:48:e7:8d:c1:c8:44:71:
31:c4:46:73:cf:a1:d8:d6:99:94:be:38:e4:1a:f2:
36:55:32:55:d0:78:67:46:57:4c:fc:5e:b2:89:af:
f9:9a:e7:07:9f:80:c2:f8:d9:6f:23:50:22:9f:61:
77:70:49:d7:1e:99:ad:74:f2:d9:84:91:f8:20:27:
a4:46:c9:4c:ca:d6:e1:d4:c6:ff:3b:0a:8e:56:3d:
a0:bc:4b:1c:ae:3f:fb:0f:57:08:e6:1c:f9:05:c8:
ad:d6:c6:90:b9:a6:16:d7:c6:91:22:3b:ed:b8:db:
4a:cf:4a:bf:0f:33:d8:1f:30:71:df:d7:b7:62:39:
29:e9:b2:77:0e:87:d7:9d:e7:51:f7:85:b8:93:d4:
b1:62:be:62:c4:31:04:ed:41:c2:06:39:0b:37:76:
6a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CF:33:F9:06:E6:D9:D4:28:B8:84:B5:BB:ED:0A:C9:3F:D6:80:07
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:11:3b:9c:24:69:33:62:68:6a:d3:31:53:eb:93:72:81:cf:
22:52:db:5d:ba:8b:03:7b:8c:89:80:57:8d:25:29:af:37:19:
fd:e3:98:e6:85:ef:c7:24:b6:af:ef:de:97:9a:ca:10:6b:43:
f4:e3:f2:30:b7:e2:fe:ef:f5:8c:e8:4a:a2:be:14:52:ca:8b:
e1:2e:45:f1:4e:9b:37:63:8d:32:2f:64:7f:f7:7e:24:e5:de:
94:f5:85:6c:57:71:87:12:99:1b:d5:c3:38:7d:4b:3e:18:49:
18:eb:58:33:65:84:12:c7:17:2c:88:eb:7c:ff:d6:71:bd:8a:
23:4f:99:5a:25:0c:01:91:11:14:b1:ba:ab:19:c7:4b:02:1b:
05:3d:37:71:11:08:96:5d:eb:5d:4f:27:08:fc:d0:f7:78:21:
1a:96:d5:cb:87:5d:23:68:69:45:f2:5e:57:50:81:5e:00:ab:
dc:43:6d:13:02:fc:ef:d3:31:1f:4e:27:e1:c7:7a:b2:e6:eb:
48:f6:ac:27:ac:ee:bd:15:cc:08:b7:bf:36:3c:cb:5e:f0:bb:
8a:2c:af:a6:33:79:05:e1:ca:41:8d:11:97:a0:e3:ae:aa:5f:
27:82:ae:6f:cd:c6:c7:ad:2d:a7:2b:21:44:4b:95:48:7e:91:
31:87:64:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:15:02 2025 by rpki-client