Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: D6IhabvTBUa1j/+ZVQvk91aA0kHef9ef8PGZwWpqlkY=
Subject key identifier: FD:A3:EE:A1:73:4D:82:67:97:44:68:84:0D:C5:A7:1A:02:0C:26:74
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 0198D5BBC0CCA6F18E5F08F5C0B70B17D747
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 07:01:48 +0000
Manifest this update: Sat 23 Aug 2025 07:01:48 +0000
Manifest next update: Sun 24 Aug 2025 07:01:48 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: 4bE0qJgeBUzzIinM5RNkHiuxGs7sGUCtcVAt03elehc=)
2: zxt5ioQXS4YKJLP4ilCQM5v8g2Y.roa (hash: RY5SWWwhf3VR6uGt8AADVTrl85kwmlR4e1dP9tOTtrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:c0:cc:a6:f1:8e:5f:08:f5:c0:b7:0b:17:d7:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Aug 23 07:01:48 2025 GMT
Not After : Aug 24 07:01:48 2025 GMT
Subject: CN=fda3eea1734d8267974468840dc5a71a020c2674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ce:58:b9:6b:3e:ee:09:10:10:24:b2:81:3f:
da:55:cb:ae:cf:9a:c2:bd:43:e4:f9:59:ef:4d:73:
e5:ea:cf:45:b1:25:da:41:a3:70:b2:31:66:d9:e9:
90:50:a4:02:64:ab:73:c1:e4:c2:a4:76:db:98:81:
b1:e6:de:36:f4:71:9e:fc:e3:94:68:5a:50:61:70:
2c:70:ef:3d:c7:94:ed:77:88:92:33:d6:a6:b0:e1:
90:c5:f6:80:5a:aa:bc:02:a0:72:5e:7b:4f:05:79:
41:39:b3:ad:c5:5c:67:0f:da:05:d7:d2:cd:71:0c:
04:f9:89:22:ac:48:75:71:c4:c8:3f:f3:ba:a2:d0:
2c:60:bf:f2:14:54:43:0e:de:a4:83:13:09:b7:ed:
bd:2f:4e:a5:79:0e:9d:e2:8d:68:b2:dc:ab:24:1d:
5c:01:fb:79:a1:11:29:2a:85:ac:78:61:f6:34:89:
65:8f:d1:9c:52:c6:7a:1c:68:fa:e1:0e:c5:49:4f:
42:c6:25:af:ae:b7:99:4e:6b:42:9f:17:f7:29:a3:
9d:f0:04:44:7f:ab:7a:fb:c1:db:cd:f2:1c:d3:ad:
6a:14:ef:de:13:ff:58:17:56:cb:1f:30:65:b2:93:
90:f5:2f:0c:c1:1c:f4:21:85:ef:ad:4d:4c:59:24:
25:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A3:EE:A1:73:4D:82:67:97:44:68:84:0D:C5:A7:1A:02:0C:26:74
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:36:aa:6d:3c:dd:93:e7:7b:23:7f:8b:e7:3e:fc:3f:cb:02:
b0:01:b9:66:4b:4a:b9:e0:c8:3d:33:76:ba:22:78:8b:43:b0:
1e:0d:55:a8:37:86:ff:55:5b:32:58:cd:e6:6a:10:87:33:3e:
20:9d:4f:c3:84:b1:c1:c9:5d:a9:30:ac:fe:64:99:b2:37:75:
3e:c5:5b:bd:90:33:20:ba:76:44:64:40:69:11:fb:6a:ae:a0:
5e:19:63:b4:99:96:d9:24:45:97:96:f9:01:06:ba:52:74:b7:
69:3a:84:f9:4e:53:7f:a2:70:ef:ad:27:37:3f:5c:34:65:f7:
0d:1c:3c:58:5a:bc:cb:98:83:0e:cd:2f:3c:79:cf:04:d4:39:
2f:84:84:9d:f8:5c:14:16:cd:ec:68:38:b9:37:98:9b:b4:da:
8f:e8:95:c0:75:bd:b7:17:2b:2f:40:7f:52:d6:8b:60:32:78:
80:bd:bb:6d:f4:8e:93:0e:d2:53:b0:5f:6e:7a:15:19:bc:da:
bd:f9:62:c0:e2:99:e5:0e:2b:14:e1:70:15:37:73:53:36:da:
ee:97:d4:c0:0f:9c:2e:07:6d:dd:41:d8:02:95:b3:28:a8:fd:
b0:b5:ef:d5:69:29:07:87:e6:72:5e:fb:bd:de:f2:50:a3:9a:
9a:34:04:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:15:06 2025 by rpki-client