Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
File: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft (raw, json)
Hash identifier: X6wgpDZhS+EoP2yfi8NaKYwf6wFZfKgCeXVTpzFW1yY=
Subject key identifier: FB:50:37:5D:71:7C:1D:68:86:EC:5C:9E:47:C2:C5:79:62:C9:E6:FD
Authority key identifier: 42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57
Certificate issuer: /CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57
Certificate serial: 0198D7058A9DABB16754FD7F6D07A293C681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
Manifest number: 056E
Signing time: Sat 23 Aug 2025 13:02:01 +0000
Manifest this update: Sat 23 Aug 2025 13:02:01 +0000
Manifest next update: Sun 24 Aug 2025 13:02:01 +0000
Files and hashes: 1: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl (hash: hdzOEtVuZ5tQT6FVsq1yLTJ/eV5U+aaBawMkCQeTK9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:8a:9d:ab:b1:67:54:fd:7f:6d:07:a2:93:c6:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57
Validity
Not Before: Aug 23 13:02:01 2025 GMT
Not After : Aug 24 13:02:01 2025 GMT
Subject: CN=fb50375d717c1d6886ec5c9e47c2c57962c9e6fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:77:46:9d:a9:f8:7d:ad:1e:ff:f0:f8:2a:4d:
1b:bd:56:0a:a8:27:57:d6:41:a4:a4:cf:5f:0f:79:
b5:e8:d3:20:89:32:68:1a:73:76:86:bb:e3:82:80:
92:22:3a:56:a8:7d:60:4d:a1:18:aa:50:89:08:fc:
64:06:00:af:1f:45:b9:e5:92:56:8c:2a:4f:05:82:
63:c7:52:cc:f1:49:e5:b1:99:c1:b0:bf:75:72:6b:
7a:cf:0b:5b:23:37:62:c1:b5:5b:41:de:0a:28:9f:
f1:f0:88:83:fa:0f:3f:f0:a0:4e:9a:41:09:4e:53:
ef:8b:1f:8e:33:39:1f:19:e4:af:b8:fe:44:fd:8d:
3e:e8:71:4c:bd:e6:fa:15:2f:ba:37:07:e9:86:b0:
49:ad:eb:21:a1:c9:7b:02:0f:cc:d3:18:67:3a:72:
57:db:a7:fc:8c:53:76:5f:82:ec:d0:8a:76:49:b6:
24:6f:c0:3f:32:c7:37:a8:8b:f0:f7:e2:0a:27:35:
c1:9c:ab:34:a3:a2:bd:6a:33:17:b8:f0:b8:fa:31:
5d:87:6c:4f:75:b9:a7:60:71:49:f2:c1:89:fd:ed:
11:8c:94:6e:b5:5b:4f:c9:73:81:d2:f5:89:87:cd:
6c:f6:f4:12:d0:f5:f3:1e:79:25:40:9e:f1:d7:d1:
ac:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:50:37:5D:71:7C:1D:68:86:EC:5C:9E:47:C2:C5:79:62:C9:E6:FD
X509v3 Authority Key Identifier:
keyid:42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:61:58:70:26:a5:19:de:fe:19:4d:a1:ee:d3:6e:ec:da:44:
a1:e6:13:7a:1b:98:21:be:db:37:5e:55:0f:f4:c4:dd:ae:28:
37:b5:65:70:52:4b:a2:8e:06:2a:93:26:5a:21:e2:fa:bb:24:
b4:a2:e0:43:4c:1a:0a:67:6d:cb:15:b5:1f:e6:3d:f8:6e:ed:
fa:c5:5b:da:86:36:ff:83:57:7c:e9:ae:7f:0b:ce:b4:ac:66:
da:c1:b8:92:11:6e:95:cd:a8:46:5b:4e:97:1f:b0:5f:d0:55:
73:cf:c8:7f:8e:4e:3f:a7:41:76:c2:48:b3:0f:3f:2a:ac:1e:
86:d5:41:66:eb:50:7c:d2:9b:cc:f2:0c:96:0a:ec:1e:15:2e:
3f:c9:a7:f0:55:55:9f:e3:f5:e0:b3:06:73:ec:05:9e:0a:4e:
5b:7b:af:d9:91:97:64:a1:d7:7c:18:ed:c8:9a:f1:d6:86:cf:
7a:07:27:4a:84:0d:a5:16:c3:90:e8:ec:c5:cd:b8:6f:bd:37:
61:40:99:20:e2:93:12:e3:c3:4a:76:c9:7d:9b:6d:50:e2:fd:
f4:84:f6:fb:5f:7a:de:4c:c5:12:d8:76:a7:fc:31:1d:7b:b5:
13:1a:b7:04:eb:14:bb:18:aa:ce:d9:f4:26:05:1d:3f:b0:78:
37:69:01:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:37:29 2025 by rpki-client