Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
File: QukMnRAJsywZRbb45liUg8XqR0M.mft (raw, json)
Hash identifier: diMT/LJjSmcIyP+nupnoTd8trD5nUDuY4G1rbMmcCHM=
Subject key identifier: C0:D0:73:01:3D:43:0A:27:03:10:3E:21:CC:50:F9:EE:D3:5E:8B:FD
Authority key identifier: 42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
Certificate issuer: /CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Certificate serial: 0198D4E0208BD6A0A37396F24E7BEFEA1FC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
Manifest number: 0A31
Signing time: Sat 23 Aug 2025 03:01:54 +0000
Manifest this update: Sat 23 Aug 2025 03:01:54 +0000
Manifest next update: Sun 24 Aug 2025 03:01:54 +0000
Files and hashes: 1: QukMnRAJsywZRbb45liUg8XqR0M.crl (hash: kIs0h7pUPD+ErnS8KRdC7UdylSvbQwFbEmizDXwA6mk=)
2: vdgwFbYVt8R1VSJ8o61nh0Nw_GA.roa (hash: 76jfpsJ1QF75Cjby0A7bmnFhoDcXagSAAfe9ZF5jiZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:20:8b:d6:a0:a3:73:96:f2:4e:7b:ef:ea:1f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Validity
Not Before: Aug 23 03:01:54 2025 GMT
Not After : Aug 24 03:01:54 2025 GMT
Subject: CN=c0d073013d430a2703103e21cc50f9eed35e8bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:84:e4:bb:07:e4:00:52:10:22:ff:2e:16:7e:
54:ac:29:30:15:ee:f3:cb:29:76:c3:e1:8f:ca:08:
81:f1:7c:79:65:72:2f:71:b9:9f:f1:d4:32:51:5c:
95:4b:b1:73:8f:45:02:f0:e1:80:25:2e:ac:f6:a5:
b9:68:69:07:13:29:e9:0e:16:11:eb:dd:2b:e5:ca:
a8:73:6c:d3:60:35:eb:e0:01:7d:e6:76:f8:83:d6:
a2:3a:44:59:3e:5b:94:96:a0:c5:f6:49:d2:0c:c7:
38:d4:e2:84:75:46:f4:3c:ef:42:36:7d:32:b4:0d:
1a:92:b5:11:48:3e:05:7c:0e:48:59:16:51:46:08:
83:c9:dc:2d:12:c4:55:8f:23:c3:2c:a1:4c:2f:8a:
d2:c1:d9:9a:ed:0a:c7:88:ae:c4:8d:3a:3b:84:85:
07:59:67:1c:28:88:4d:c1:80:93:eb:4c:1d:5f:ce:
37:5d:f1:72:22:e3:67:9d:b2:09:f0:9c:04:a5:5c:
80:f0:76:ad:ab:58:82:91:4a:6f:55:d9:ac:33:c4:
a4:af:5a:f7:8d:6c:64:4b:fc:4b:90:65:ea:2e:5e:
0e:49:fe:df:5b:29:10:11:7d:58:d6:31:c1:de:5c:
cd:80:41:38:14:c0:b9:08:97:da:a3:72:0a:15:ac:
7d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D0:73:01:3D:43:0A:27:03:10:3E:21:CC:50:F9:EE:D3:5E:8B:FD
X509v3 Authority Key Identifier:
keyid:42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:cb:34:26:67:dc:9d:0f:d4:b0:8b:b9:72:07:e0:e2:b6:df:
87:d3:e3:c6:0b:06:cf:d6:d3:71:fc:14:75:b3:72:98:bb:2f:
a9:bc:3c:2c:45:83:2b:64:b6:4e:a7:6b:ab:8e:c8:6f:83:04:
f0:89:aa:7a:4f:d0:5f:9a:cf:b1:c5:e4:88:88:f0:69:44:9f:
79:0b:4f:f6:bf:fe:c7:4c:83:a7:6f:06:70:10:38:4a:0e:22:
8e:61:34:e8:1a:22:82:a9:91:2a:3a:2d:0e:86:50:1b:e5:29:
83:37:96:66:44:1a:66:43:76:71:87:3b:ba:bb:c4:d9:d7:18:
db:6f:5d:dc:e9:3c:7f:55:98:3b:90:57:7e:76:35:d5:b5:b4:
a6:06:e9:e1:b3:07:0e:27:2a:47:35:7d:6d:cd:56:02:e4:5e:
83:20:b6:a5:19:2b:1d:fe:b5:ec:29:7d:19:82:7f:b3:71:71:
fa:b9:66:59:7f:fd:da:15:0f:bc:c3:1e:7c:d2:4e:fb:1f:f4:
e9:6d:2e:7e:89:e9:7a:ae:f5:8f:f6:53:16:c7:2d:87:a7:f0:
3f:50:a1:49:fa:41:75:29:a0:dc:49:87:89:9c:08:83:59:15:
56:e7:77:b6:53:54:e4:f3:a3:48:93:b3:55:ec:e9:34:be:17:
39:1f:df:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:38:55 2025 by rpki-client