Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
File: QCzcwN4_54S70vviah2BZWpGfSI.mft (raw, json)
Hash identifier: cwV4/XXNUnfyXc61qF3hdHj8cxa5f7W742jIjg1mUzE=
Subject key identifier: 20:56:BA:81:90:97:72:C5:A8:79:2B:39:37:70:41:61:71:02:A7:81
Authority key identifier: 40:2C:DC:C0:DE:3F:E7:84:BB:D2:FB:E2:6A:1D:81:65:6A:46:7D:22
Certificate issuer: /CN=402cdcc0de3fe784bbd2fbe26a1d81656a467d22
Certificate serial: 0198D47453B2C90134A89F008B7F32AFAE07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
Manifest number: 08BB
Signing time: Sat 23 Aug 2025 01:04:10 +0000
Manifest this update: Sat 23 Aug 2025 01:04:10 +0000
Manifest next update: Sun 24 Aug 2025 01:04:10 +0000
Files and hashes: 1: QCzcwN4_54S70vviah2BZWpGfSI.crl (hash: FpZXcdXKsu7aoKzJJ12AB6CZqz3BofpRdtBudW9Quyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:53:b2:c9:01:34:a8:9f:00:8b:7f:32:af:ae:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=402cdcc0de3fe784bbd2fbe26a1d81656a467d22
Validity
Not Before: Aug 23 01:04:10 2025 GMT
Not After : Aug 24 01:04:10 2025 GMT
Subject: CN=2056ba81909772c5a8792b39377041617102a781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2d:bc:7a:cd:29:8b:d5:b5:33:53:a7:cc:81:
a3:d2:7a:41:a7:ba:10:cd:15:bd:fd:a4:8b:1e:a2:
56:92:0b:ec:92:e7:19:06:ba:65:56:68:10:b5:51:
23:89:5b:4e:02:44:44:ce:85:ba:9d:1e:08:fa:e1:
8f:a6:95:aa:6e:5c:44:74:ce:14:92:66:e1:3f:35:
ce:63:b9:44:d5:38:69:77:d3:94:77:e5:57:43:4d:
04:d9:7e:de:ce:40:e7:7e:3d:57:c8:b2:9f:c5:0c:
7d:f5:f1:ee:7f:6a:31:7d:9a:a1:c7:6c:88:8b:f3:
7d:5a:84:fd:89:79:64:39:a4:03:22:cf:9e:5d:9c:
8c:18:57:4f:9a:0e:e2:f7:18:a9:4d:c5:62:44:58:
46:d7:ad:f7:43:42:ed:3f:0c:20:ab:15:3c:46:f9:
fb:33:e4:01:f2:62:a0:a2:2c:d3:59:b3:6a:32:57:
3d:e4:f0:9a:83:18:43:a8:40:13:74:2c:90:a1:19:
14:11:85:aa:fc:5e:e0:5b:89:33:de:b4:6a:cd:58:
4c:aa:78:69:8a:9a:e8:b3:2c:35:58:84:53:dc:d1:
d4:30:16:70:c9:d8:14:d3:3d:8a:70:05:41:fb:00:
3a:8a:11:65:8c:f5:b8:ad:c8:35:99:87:20:2d:fd:
ea:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:56:BA:81:90:97:72:C5:A8:79:2B:39:37:70:41:61:71:02:A7:81
X509v3 Authority Key Identifier:
keyid:40:2C:DC:C0:DE:3F:E7:84:BB:D2:FB:E2:6A:1D:81:65:6A:46:7D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:9f:01:15:67:c9:37:01:5c:4c:ab:67:39:49:bf:9c:5c:03:
12:7c:06:85:65:34:ba:20:23:43:62:47:1d:45:4e:22:82:1d:
17:05:d3:a6:dd:9e:44:64:81:16:d9:d5:1b:e1:52:d5:b3:1b:
0e:32:de:04:75:5f:a1:fd:94:33:a1:59:d5:f2:53:37:58:a6:
54:d7:a2:b4:57:1b:e4:e4:d2:e6:55:a0:c0:8f:23:ab:9d:2d:
06:11:49:cb:eb:d3:d5:64:f4:de:2b:52:a7:b0:5a:67:1f:24:
ac:eb:90:15:a7:f5:92:73:82:b6:2b:ff:a9:93:16:c9:57:ac:
1e:72:7e:6a:e2:9b:e5:37:6e:be:f5:cb:24:dc:0a:e7:d9:83:
f0:3e:29:89:60:74:6c:1d:36:f6:b8:d1:07:e3:c8:51:1d:81:
3b:fa:ec:8b:dc:a5:e8:7a:10:e1:7d:02:bf:50:b5:a3:26:e7:
67:ea:09:60:eb:fd:41:30:e0:41:4a:9e:67:cb:52:1c:cf:8a:
b4:75:38:30:34:6d:e0:22:15:16:89:45:47:03:98:fb:b9:c4:
ed:fa:47:ee:71:8f:1f:fc:8f:b2:98:2f:f3:65:ec:50:7a:4e:
92:94:f7:70:6e:63:cd:ae:20:c9:78:83:cd:ac:f2:97:91:b6:
eb:16:fa:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:56 2025 by rpki-client