Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: c8j/WBCcGCfmvjNR22B6ze7lb1l1YeD5/GMNJgIocVw=
Subject key identifier: DB:0D:58:E7:A5:93:F9:2D:09:B0:67:E9:99:06:B3:C4:0A:FB:81:A3
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 0198D660D5A4CFA9D23114DBD1E26E4DE785
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0D6B
Signing time: Sat 23 Aug 2025 10:02:06 +0000
Manifest this update: Sat 23 Aug 2025 10:02:06 +0000
Manifest next update: Sun 24 Aug 2025 10:02:06 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: g0SkNH0+htLdCVxoTafx0AyauBsLHGs4viv+Kbfqx5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:d5:a4:cf:a9:d2:31:14:db:d1:e2:6e:4d:e7:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Aug 23 10:02:06 2025 GMT
Not After : Aug 24 10:02:06 2025 GMT
Subject: CN=db0d58e7a593f92d09b067e99906b3c40afb81a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8c:de:b7:15:df:33:44:af:a0:1d:0a:cf:45:
3b:82:bf:85:9b:26:c2:62:53:70:71:7f:7d:84:ab:
e5:55:6c:36:b9:b8:f9:90:32:5c:8e:1d:a2:be:b3:
e6:a2:10:d7:59:de:e9:71:ea:40:c3:72:6d:62:f9:
38:47:90:39:5c:6e:77:f5:10:bd:8b:37:a9:6c:83:
55:be:f3:1b:41:ca:1d:d7:42:18:21:a0:8c:34:a0:
15:65:52:6d:5f:48:6c:df:b8:67:37:87:1a:f4:75:
86:e3:89:b2:88:2c:80:5f:66:1b:8c:dd:5e:24:c3:
43:25:c2:99:2d:19:1f:4e:9d:ea:26:24:c3:4b:2a:
fc:19:a8:45:71:ee:68:7a:48:6d:ae:f7:65:39:85:
27:5f:69:e6:6e:ca:05:91:e3:ef:e4:5d:9a:41:91:
99:6f:07:45:15:06:2c:a2:1c:9e:b6:19:ac:3d:2a:
d6:5f:5c:89:ee:d2:66:7f:2f:9a:02:14:fb:21:78:
5d:61:56:78:83:1a:35:fa:8a:a4:68:18:f7:09:fb:
3a:18:b3:cc:1b:9c:62:4b:47:ea:66:52:8a:66:9e:
65:9d:63:f1:8d:1e:99:94:2f:b9:48:b7:fa:59:28:
b1:2e:b3:4c:cc:a3:5b:b3:c5:df:b8:c9:7c:3c:32:
eb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0D:58:E7:A5:93:F9:2D:09:B0:67:E9:99:06:B3:C4:0A:FB:81:A3
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:ef:4e:0f:5e:66:92:b6:98:85:75:26:fb:78:16:8c:25:ba:
55:b4:03:63:70:e2:d3:2a:d4:4e:79:73:ad:98:9c:d7:1a:fe:
bc:f1:2e:00:d9:a8:a8:5d:af:81:7b:71:dc:22:93:45:49:36:
ae:00:c0:d3:24:28:1e:d1:23:e5:49:bf:e3:a7:e6:37:7b:a9:
06:3c:f4:c4:7f:eb:0c:13:9b:95:d7:56:3a:49:3b:4e:95:15:
62:39:92:4d:6a:2d:87:c1:fb:cb:32:27:67:a9:4d:9d:ce:28:
1c:0e:ac:09:4e:ae:b3:42:2f:54:ac:98:25:95:49:00:1a:38:
dd:94:0f:f3:99:22:3c:7c:88:8e:13:f9:9c:5f:35:fb:56:f5:
b7:e1:fa:c0:94:d1:a0:c0:2c:32:17:e0:57:98:3d:ec:f2:05:
ff:2a:15:5a:e6:dc:61:81:1f:0f:91:ca:a4:74:54:b4:09:e0:
78:bf:f3:4a:e7:7b:30:f9:c2:4f:6e:98:07:a4:1e:f5:a8:c4:
e2:e3:6a:7e:04:aa:1c:9a:08:a9:93:6d:25:6f:10:bd:00:73:
bf:d0:ab:ad:81:9b:29:50:bd:87:a1:38:24:c9:8b:95:06:05:
1d:71:96:28:29:e5:07:00:bd:1f:cb:d2:67:51:3f:96:9b:64:
9c:05:60:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:17:19 2025 by rpki-client