Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
File: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft (raw, json)
Hash identifier: Iz3nqaiV8WqEBvyX/5/GLUvjK1xSErtoD6QfxXncDQI=
Subject key identifier: 12:D5:70:7C:44:20:E0:44:DA:75:69:FF:0C:B7:73:75:FB:DB:65:6B
Authority key identifier: 40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
Certificate issuer: /CN=4092c47db8a21931154605d576c3b7341d06b4b4
Certificate serial: 01994AAC1D4D4F4F04A1B88682336282836F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
Manifest number: 140F
Signing time: Mon 15 Sep 2025 00:00:17 +0000
Manifest this update: Mon 15 Sep 2025 00:00:17 +0000
Manifest next update: Tue 16 Sep 2025 00:00:17 +0000
Files and hashes: 1: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl (hash: z8YXttFaSxHtoWVCfzdN+qCMdWWppX8lhsRMiPOGprs=)
2: knkqtZcmX5gSTiCaXxHQZfriQgw.roa (hash: E9ZLKfrMdp8ZIK1kQ0GbAJkgNgAmhxZR6M5lJ1uXi1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:4a:ac:1d:4d:4f:4f:04:a1:b8:86:82:33:62:82:83:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4092c47db8a21931154605d576c3b7341d06b4b4
Validity
Not Before: Sep 15 00:00:17 2025 GMT
Not After : Sep 16 00:00:17 2025 GMT
Subject: CN=12d5707c4420e044da7569ff0cb77375fbdb656b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4b:48:3d:38:e6:35:a7:e4:5e:78:29:db:35:
5d:f4:68:7f:e2:71:ac:f6:6e:91:df:9d:ea:4a:f6:
b1:55:18:c1:b1:b2:d7:68:cc:21:8a:04:a4:75:f2:
77:f7:b7:73:81:d2:05:1b:01:d0:33:ff:1f:d4:7e:
eb:a8:f1:4a:b7:ab:85:c2:54:e1:dc:c1:17:62:13:
fb:67:0d:3f:a9:bd:1f:5b:8d:88:12:1a:bd:25:ce:
60:55:33:11:90:a6:8e:ab:42:27:c7:67:15:f6:1f:
76:b9:1d:53:de:fb:e7:21:6a:9c:a9:ed:72:5f:22:
fc:66:4a:bf:d1:45:c3:53:4c:6a:40:34:cf:8a:56:
34:b6:3e:c8:c5:86:be:95:f0:e1:cf:39:82:db:df:
37:aa:8a:00:a8:47:02:e6:2d:51:d4:96:77:99:79:
14:92:8d:7f:c8:a5:80:bd:6c:77:64:f2:1b:63:b0:
6a:d2:b9:f7:d2:2f:98:95:d5:51:cf:b2:8e:ec:d7:
e8:45:e2:b0:01:62:25:c8:2a:98:d5:a1:7a:98:f4:
d1:b8:d0:74:da:e7:2a:f5:ea:17:60:ad:2c:47:89:
22:20:4c:e7:e8:60:8c:98:6d:6b:82:2e:aa:bf:a0:
bc:a7:32:33:ea:84:83:13:c6:81:c1:09:a8:8f:a0:
c8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D5:70:7C:44:20:E0:44:DA:75:69:FF:0C:B7:73:75:FB:DB:65:6B
X509v3 Authority Key Identifier:
keyid:40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:64:74:68:d5:c7:f9:0c:9e:c1:ea:16:21:26:2d:5f:2a:86:
45:80:37:09:45:b3:f6:14:5d:55:95:7a:11:da:50:7d:c2:ae:
b2:f1:3b:fb:71:95:d5:49:e4:8b:32:fd:ff:bd:18:86:63:a2:
5c:18:9b:b9:e4:79:53:d8:e7:9e:b9:69:e4:30:68:11:f3:91:
b2:4c:4c:e4:ce:61:4c:65:99:49:05:a4:df:fe:b6:ad:ac:23:
70:28:19:02:e4:40:bf:a9:e6:b0:c1:b3:dc:eb:3e:1f:02:c7:
b1:37:6a:48:37:ed:1b:85:16:f5:e1:fc:a8:54:22:01:29:d4:
06:d0:4c:8c:39:66:77:d1:87:e0:09:4d:7b:be:b2:67:65:55:
26:91:a4:f0:26:da:62:38:9e:22:f5:f6:40:75:c0:d0:38:09:
3c:a5:25:bf:f4:b9:66:e4:cc:c0:1b:4c:62:fb:75:09:42:a9:
74:88:0e:b4:da:ee:68:c6:45:8e:9e:14:64:13:67:91:cf:dd:
76:42:57:64:8f:b8:12:17:aa:cf:56:7f:07:6e:f2:65:2b:2c:
41:1a:2f:1e:2c:99:3e:f2:2c:eb:0e:28:5e:22:cb:14:fc:af:
52:91:24:0f:a2:da:17:18:be:ec:39:af:77:48:14:b0:13:23:
81:db:5c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 15 10:21:24 2025 by rpki-client