Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
File: QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json)
Hash identifier: eqFbv/QrdsMFJDR/TY9/WQU6uPnEcZvpMq/iOtm82AM=
Subject key identifier: 54:F9:C3:4C:9E:14:2A:2B:93:62:E7:A0:00:09:3E:53:70:4D:BB:31
Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Certificate serial: 0198D51586BF30DD8420CB8E6CE0BB842687
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
Manifest number: 0616
Signing time: Sat 23 Aug 2025 04:00:14 +0000
Manifest this update: Sat 23 Aug 2025 04:00:14 +0000
Manifest next update: Sun 24 Aug 2025 04:00:14 +0000
Files and hashes: 1: 4aDro6K4uBzQDwqf0WWWDv-WEKk.roa (hash: KqqgAJBLDDctP248xFMqsm3yeCd/FvEIq/xYuv9Vp94=)
2: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: 6ppJGNhK4tqXg9xMA3SDUNxCfkpsF5c4qxei0boDTnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:86:bf:30:dd:84:20:cb:8e:6c:e0:bb:84:26:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Validity
Not Before: Aug 23 04:00:14 2025 GMT
Not After : Aug 24 04:00:14 2025 GMT
Subject: CN=54f9c34c9e142a2b9362e7a000093e53704dbb31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d7:0f:ab:c0:a1:88:41:d5:27:93:0b:8c:f6:
08:bd:a3:a9:97:58:0e:30:46:6c:2c:26:2e:74:f4:
bf:b4:fa:cb:1f:43:cf:37:0a:51:ac:eb:27:d3:75:
61:36:54:59:44:75:f6:f4:5d:be:b2:79:50:09:ac:
98:aa:85:1a:50:82:a5:77:b3:5f:9f:8e:9a:b0:f8:
6d:d4:94:49:72:2d:8f:e7:63:ef:cf:a5:de:a7:68:
bf:bd:26:55:33:64:0d:67:07:ac:96:5d:c1:35:d2:
a1:ce:eb:f4:85:68:95:a6:3c:7c:49:80:97:21:57:
00:36:3a:62:f2:3f:71:c8:4a:f9:af:43:f1:bc:d8:
1e:a0:f4:87:67:26:8b:c0:06:37:b4:45:7a:7f:db:
11:db:6f:5f:b3:9a:55:79:b7:c7:48:df:eb:c2:60:
84:3d:0c:31:60:67:5a:ae:10:af:94:fb:2f:3a:63:
ad:af:6c:d2:1e:0d:63:95:a5:b0:31:b5:10:3a:3c:
b3:22:03:21:bf:43:c6:21:65:b1:c3:dd:5d:0c:38:
7a:26:c3:1f:75:1d:72:9a:80:b7:c4:4b:b7:0c:3b:
df:72:9d:be:8c:39:8c:17:50:47:13:94:62:f9:1f:
a3:c5:0d:a1:ec:35:49:6e:4c:46:ff:62:a0:20:f4:
ed:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F9:C3:4C:9E:14:2A:2B:93:62:E7:A0:00:09:3E:53:70:4D:BB:31
X509v3 Authority Key Identifier:
keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:f0:05:ad:72:ba:22:16:cb:60:29:e6:91:e3:77:8e:32:6b:
0e:47:5a:93:01:85:0e:a1:fb:5f:f1:e0:8c:0b:fc:cf:1b:8c:
94:6f:f7:69:89:74:f0:7a:26:57:95:a5:4e:ed:47:55:85:1f:
e0:0a:f7:50:55:cd:f1:35:eb:58:e9:8c:72:08:3d:bc:09:80:
0a:f0:01:37:13:af:7f:4c:ca:f6:71:97:43:e4:6d:65:41:f7:
11:de:48:7a:45:8e:2d:ef:7e:09:e5:98:89:1e:92:d3:84:cb:
08:15:5e:8b:21:05:8a:3c:10:d3:3a:f0:11:3f:e0:87:d9:c3:
58:b3:90:73:9d:12:ec:42:bd:bc:fe:bd:ac:7c:1c:fb:ee:74:
2d:1c:80:e1:69:88:4d:4d:0a:d1:4d:66:62:ac:8f:cd:c2:b2:
0b:03:93:57:fa:30:bb:ad:83:54:cd:5f:5e:cb:ec:c1:5e:9a:
6d:9c:a6:8e:bd:eb:82:f7:1f:b1:2d:85:45:ea:7b:be:f4:90:
81:aa:2a:ec:f0:f1:39:14:dd:e3:5f:4e:79:3f:7d:2c:92:47:
a0:7e:17:d1:70:de:45:1a:41:77:62:8c:83:45:e6:cf:9a:20:
cd:6a:9a:89:e1:0d:b7:2e:d7:eb:f9:06:0e:e7:89:cc:c2:a6:
98:51:cf:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:50 2025 by rpki-client