Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
File: QH75-Xcjo9WiGTasNNMZl_JWHrk.mft (raw, json)
Hash identifier: 0LzJZIWgC0u4e6tXFrROkgj2eVm4m77iF0ehC4GV0uE=
Subject key identifier: 27:B1:6B:D4:56:0D:B5:32:53:3A:37:87:6A:45:6C:44:AB:F5:39:A3
Authority key identifier: 40:7E:F9:F9:77:23:A3:D5:A2:19:36:AC:34:D3:19:97:F2:56:1E:B9
Certificate issuer: /CN=407ef9f97723a3d5a21936ac34d31997f2561eb9
Certificate serial: 0198D5BC0F3DC140C81D95F3CAF8AE681C26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
Manifest number: 0D29
Signing time: Sat 23 Aug 2025 07:02:08 +0000
Manifest this update: Sat 23 Aug 2025 07:02:08 +0000
Manifest next update: Sun 24 Aug 2025 07:02:08 +0000
Files and hashes: 1: QH75-Xcjo9WiGTasNNMZl_JWHrk.crl (hash: VIuTcnyhK0zk+Q2o77rgbWEFIsTD9AEdVXRC4O21QzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:0f:3d:c1:40:c8:1d:95:f3:ca:f8:ae:68:1c:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407ef9f97723a3d5a21936ac34d31997f2561eb9
Validity
Not Before: Aug 23 07:02:08 2025 GMT
Not After : Aug 24 07:02:08 2025 GMT
Subject: CN=27b16bd4560db532533a37876a456c44abf539a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9e:18:2a:99:fc:ee:2e:80:cd:dc:23:83:65:
89:9d:9e:7b:e5:c3:c0:46:f5:32:52:f7:c4:bc:61:
95:84:89:cb:82:6b:94:ba:15:b7:19:9b:14:fe:5a:
47:67:b5:06:79:bd:69:05:77:e7:26:19:ee:7f:fb:
b1:ef:1b:38:a7:b0:cc:97:73:db:32:bc:fb:b6:c1:
66:0d:1e:69:a9:d8:41:3b:ce:c6:36:76:52:a4:69:
3f:57:c9:bb:3a:fd:df:52:e7:0a:78:2d:75:20:01:
cb:80:e7:cf:31:4e:4a:56:a9:65:11:77:e4:7d:8d:
b8:8c:81:4b:9a:54:2a:28:a2:d9:83:0a:3c:49:44:
24:97:b4:7e:7e:ad:02:fa:cf:d3:aa:25:3a:c7:f8:
e5:15:0c:c8:67:04:09:ea:37:3f:7c:6d:f3:9a:ba:
e0:d2:76:46:65:96:4b:cd:16:51:e1:84:0d:6e:55:
55:0b:12:4a:f4:7f:13:29:79:46:a2:8a:49:cd:7b:
b1:fe:b0:9b:37:65:33:9e:22:4a:13:40:a0:6d:9b:
f9:2b:11:57:a5:39:f3:04:c3:0d:d7:cf:d0:c6:bd:
79:da:62:70:40:22:a5:d6:14:e9:e1:b0:41:3d:a1:
68:1a:af:8c:06:2b:ee:eb:4b:cd:29:73:96:37:85:
63:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B1:6B:D4:56:0D:B5:32:53:3A:37:87:6A:45:6C:44:AB:F5:39:A3
X509v3 Authority Key Identifier:
keyid:40:7E:F9:F9:77:23:A3:D5:A2:19:36:AC:34:D3:19:97:F2:56:1E:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:17:d2:d8:d4:f8:93:4f:ec:33:c9:cd:4f:ca:a5:d5:88:52:
3b:36:37:0a:e8:51:36:13:f8:a0:21:b4:93:c7:ab:a7:a6:f4:
ca:00:5b:77:f1:06:72:36:07:93:46:70:17:3e:4a:b8:ed:72:
5b:06:e8:73:fa:c6:e3:72:6a:43:d7:b0:f7:60:21:da:78:07:
39:0f:7a:13:fb:f6:2d:9d:73:2b:4d:81:fc:9c:bc:fc:f7:0f:
a2:7d:3c:d5:16:a9:f0:70:4a:b0:85:6d:ac:98:21:15:00:a3:
6a:49:c6:62:cd:f0:bb:44:82:50:db:2f:60:28:4e:6f:84:7c:
a4:1e:dc:0c:80:66:92:e7:8e:c2:36:a1:fb:cc:03:8d:c5:d9:
ba:a7:b4:e9:ec:b9:fc:af:1a:ab:80:f1:43:e9:9c:f2:5b:4b:
ec:f3:1b:98:c2:17:dc:51:91:70:bb:91:28:f9:63:d7:95:45:
d8:b1:5c:05:7d:61:f6:04:52:c2:41:cd:ce:07:81:c5:3d:57:
4b:fd:5b:ac:28:c9:73:2e:96:04:1a:9c:e6:c6:67:ce:5b:56:
e3:d6:cd:01:15:25:8b:19:6d:02:13:52:90:c2:1b:a4:25:42:
52:30:e1:30:dd:95:bd:5b:52:64:85:f1:82:0e:45:f9:cf:9f:
e8:31:98:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:27:56 2025 by rpki-client