Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
File: QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft (raw, json)
Hash identifier: VYz6ws3EsSI3+KkUsWR6NkCDf0sHImULWJdJ5YwWMsM=
Subject key identifier: 6D:6A:88:2E:BA:F9:19:A1:A5:A9:4F:5C:F1:38:4F:6A:9E:B0:BB:C1
Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Certificate serial: 0198D7E174C374A3A3095E5E7691F0EFB40C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
Manifest number: 0C68
Signing time: Sat 23 Aug 2025 17:02:13 +0000
Manifest this update: Sat 23 Aug 2025 17:02:13 +0000
Manifest next update: Sun 24 Aug 2025 17:02:13 +0000
Files and hashes: 1: QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl (hash: 42JTxaUapcyG15rCDtvVPzMyRLsX0JSn9Kkk/m3Q4H0=)
2: vfjUIsx7CDVuZMrXZKkgTFoznUI.roa (hash: kc2fyWr6FJL7rTi0mPaMQj4eZbP6Y0dyJoouX+alOvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:74:c3:74:a3:a3:09:5e:5e:76:91:f0:ef:b4:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Validity
Not Before: Aug 23 17:02:13 2025 GMT
Not After : Aug 24 17:02:13 2025 GMT
Subject: CN=6d6a882ebaf919a1a5a94f5cf1384f6a9eb0bbc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f0:9e:c6:40:98:7a:3f:36:9f:d1:fd:a4:ae:
33:99:09:a2:b1:0c:6d:a2:2e:24:a8:c1:3e:c4:ab:
2f:2a:07:5f:f1:06:8c:a6:be:40:a0:55:72:1e:33:
ea:f9:81:1b:2d:83:f5:90:51:6b:c7:57:48:ac:42:
e1:16:e0:2b:46:16:bb:75:8b:53:5e:a9:9f:c6:2e:
06:af:64:cb:c1:36:81:c7:ae:da:69:ad:7d:ae:12:
68:82:c8:19:e0:22:90:74:a0:87:3a:a2:ae:d2:e4:
14:98:d6:22:18:02:61:0b:f2:27:1f:c8:b8:fb:89:
1a:49:d4:a3:29:7e:a7:cb:63:f0:65:85:2a:0e:85:
cb:a6:06:64:41:af:dc:21:1e:8a:af:da:c1:90:bd:
be:db:0a:98:32:bd:45:80:7a:5a:18:77:f9:bc:a8:
0e:2e:42:2d:83:47:58:53:77:04:9d:07:fb:a0:3b:
bb:ca:da:38:14:19:f1:9e:01:55:8e:0b:85:ec:79:
39:8a:4e:a5:bd:5a:28:a4:ba:6a:b7:9e:f7:d3:6b:
9c:83:49:18:57:75:b1:ad:3f:0d:0a:a4:bd:1f:60:
e4:81:ae:da:1e:b3:fc:74:96:d8:ef:1c:24:49:eb:
4c:5a:c9:40:d5:44:ce:22:e6:8f:28:a5:75:d3:3d:
99:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:6A:88:2E:BA:F9:19:A1:A5:A9:4F:5C:F1:38:4F:6A:9E:B0:BB:C1
X509v3 Authority Key Identifier:
keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:da:d6:5c:14:e2:27:4e:54:2b:7c:28:06:0f:cc:68:8b:37:
81:25:bb:9a:3b:b5:c7:2c:63:d9:83:24:23:0a:ce:04:0d:de:
91:94:ae:bd:85:a8:10:46:8e:1a:ee:fe:af:aa:d7:77:a2:e4:
1e:bb:70:3c:3d:89:b8:16:87:ba:fc:43:e3:40:5b:23:b8:ff:
0e:3c:2d:1a:c7:ed:29:52:27:f3:d8:96:72:da:8d:87:b2:82:
28:98:b6:72:c7:44:c2:db:ec:dd:01:cc:50:d1:60:c8:36:9a:
4e:29:2b:e2:8a:83:b9:28:45:e4:dd:33:76:f5:62:a5:a7:47:
ca:8d:5b:21:1c:dd:24:36:99:26:cf:0f:07:3b:ae:5f:47:c5:
9c:89:fc:ed:5e:37:12:b0:f3:b1:7b:ce:7d:3f:81:09:ce:20:
81:46:0a:1a:e2:a7:17:af:a4:8e:e6:92:50:f7:2b:3d:23:c1:
84:03:3f:0e:c1:d6:33:48:7a:fa:6d:35:8f:07:6d:1d:42:21:
fa:2d:1f:38:16:0d:b7:0d:e6:b5:a4:da:cf:c6:3e:a0:9c:73:
90:06:f7:6d:04:44:f6:85:ab:b5:aa:a5:28:38:f4:07:4a:6f:
a9:b0:fa:6f:c0:8d:91:fe:e5:63:99:f5:cc:09:f7:94:73:be:
34:1d:f8:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:44:16 2025 by rpki-client