Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: Grl1zNihpHr35Kq+0S+TvP1wMZeMNkyF4deiEiiMq6Y=
Subject key identifier: AB:64:7D:81:44:A3:AC:20:A2:3F:D5:AC:2C:9A:82:FF:AE:54:C3:0D
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 0198D4E078FC24AE4F0E49369C0743053B50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 03:02:17 +0000
Manifest this update: Sat 23 Aug 2025 03:02:17 +0000
Manifest next update: Sun 24 Aug 2025 03:02:17 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: Z23mUVMX5F6l1vb1hNfGfPvP43ZBUnZYuPKo4pdihVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:78:fc:24:ae:4f:0e:49:36:9c:07:43:05:3b:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: Aug 23 03:02:17 2025 GMT
Not After : Aug 24 03:02:17 2025 GMT
Subject: CN=ab647d8144a3ac20a23fd5ac2c9a82ffae54c30d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:23:32:2d:84:44:66:66:ae:8c:2e:dd:ca:c1:
29:44:bf:54:e0:36:53:de:95:66:44:12:46:b6:d8:
a6:8d:3c:9a:74:73:8d:8a:13:7e:23:c6:8f:54:3b:
60:fd:eb:b4:62:ed:ff:45:6e:36:9c:98:21:2a:f1:
c8:2b:32:c8:a1:65:1d:7e:3f:63:01:62:16:8e:37:
14:22:62:39:68:bf:f1:2e:5f:2d:63:e5:7c:ff:03:
46:be:c6:af:5e:a0:1b:fa:5c:32:c9:4f:71:ff:78:
b4:cd:30:0b:e2:59:70:5b:9f:32:c2:07:a4:65:09:
de:03:aa:f4:04:f1:82:75:c1:f9:af:3a:bd:4c:75:
77:4d:3b:8c:0b:dd:14:d4:3a:c7:dc:d1:00:f9:b1:
60:23:81:3c:37:91:d1:d2:8f:d0:3a:7a:eb:59:59:
49:63:27:cf:34:fc:96:ab:8a:3f:f2:d9:48:5b:f7:
30:cb:f3:2a:97:06:79:0c:6c:21:91:3c:c4:25:32:
67:08:d9:c0:fc:ba:5c:64:58:fa:6d:4c:0d:ca:6f:
3a:4c:25:08:70:8a:cb:f4:e0:bf:67:50:0f:85:25:
92:dc:f6:64:95:29:4c:10:ae:a7:5d:67:d7:ad:a3:
80:16:97:51:d0:c5:4d:3b:9b:d7:98:32:73:62:aa:
93:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:64:7D:81:44:A3:AC:20:A2:3F:D5:AC:2C:9A:82:FF:AE:54:C3:0D
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:a4:f2:1c:c8:e2:b7:64:31:f0:29:6e:95:6a:7d:03:7b:51:
05:92:42:f7:46:4d:31:45:16:c5:e0:ac:18:a0:fe:af:c1:c8:
7a:28:fa:90:e5:d7:6b:78:61:6d:ba:30:c2:07:f3:f9:93:c1:
69:65:ee:38:50:96:a8:c0:c0:7c:79:04:5c:2f:bb:7a:8e:08:
a9:b3:a0:13:00:73:2a:3e:34:6d:a6:f4:eb:03:03:a5:e4:ba:
f9:af:25:2f:4d:e2:6f:ef:19:91:d3:53:f0:76:52:3e:71:e2:
9d:33:f6:65:85:25:75:dc:58:80:b7:5a:76:43:ed:ea:a5:ee:
ff:79:c6:59:f0:a2:1a:f5:d2:ff:90:a1:dc:29:c0:c5:57:a0:
83:45:99:bc:de:35:78:71:6e:df:d8:20:dd:57:29:8a:e0:ce:
be:a4:aa:13:67:6e:32:4e:7b:12:cb:1e:f2:7a:88:17:b9:09:
1e:b6:fb:80:aa:51:8e:20:86:63:66:3f:4c:dc:7e:95:3c:78:
96:f9:65:c9:ed:35:0e:6b:82:99:aa:78:fc:f6:14:f4:37:f7:
b7:9b:f7:d5:4b:09:89:7b:dd:1c:25:51:dc:dd:73:96:e7:7e:
21:a4:41:91:b1:39:02:a6:37:62:ec:a9:f3:aa:c0:5a:19:f3:
e7:37:02:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:48 2025 by rpki-client