Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json)
Hash identifier: Ps0W9zH1nS3Nss5VBNzq1b0AkBOp8kNTD6l7IMcYEhc=
Subject key identifier: C4:6D:E3:6C:D5:74:05:51:D5:F6:57:BD:50:0A:28:54:27:50:7A:07
Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Certificate serial: 0198D5BC36C9DDBF680217948BAA88E53C37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
Manifest number: 019F
Signing time: Sat 23 Aug 2025 07:02:18 +0000
Manifest this update: Sat 23 Aug 2025 07:02:18 +0000
Manifest next update: Sun 24 Aug 2025 07:02:18 +0000
Files and hashes: 1: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: 8hvG5IPjaVVyjUFGi99MZQbI9U8qilcjSfxNEccYIRc=)
2: etqHJp94mEXyM-mZRNVFRO7Kziw.roa (hash: Y6iOU/XBP66s91SGzXjQj2BEKS4QjWa/buoOF4uhFqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:36:c9:dd:bf:68:02:17:94:8b:aa:88:e5:3c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Validity
Not Before: Aug 23 07:02:18 2025 GMT
Not After : Aug 24 07:02:18 2025 GMT
Subject: CN=c46de36cd5740551d5f657bd500a285427507a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9a:30:a5:32:ab:ef:2a:0a:b9:ad:47:65:08:
c1:2e:d0:60:c9:ed:7a:8a:34:f8:d6:a9:5e:76:c8:
54:95:7f:eb:f4:83:ce:1e:d5:b7:9a:9d:b7:44:6c:
b1:a0:91:ee:a8:7b:7e:e7:aa:a9:73:0e:2c:5a:30:
13:70:5f:eb:c6:5c:cd:d6:16:c3:ed:6c:14:20:7b:
06:94:2a:cf:81:80:32:a6:94:a9:04:e3:f3:5f:ad:
c7:57:ee:17:34:71:f1:2b:71:db:a1:0f:49:aa:e1:
c1:15:2d:d6:7d:a3:fb:bc:ce:8c:46:e3:a7:2b:e7:
79:24:a4:20:53:71:fa:2f:bc:3a:e0:7a:f3:44:70:
59:d0:7e:19:70:74:b1:68:af:86:af:42:6b:9c:72:
9f:60:3f:29:4b:39:b1:18:b9:d3:e0:3d:74:2e:1a:
a9:85:fd:c3:b3:88:6f:5a:52:7d:c3:d6:ab:0d:07:
aa:64:d6:95:91:ca:33:0d:75:2c:0a:aa:4e:71:10:
a6:a8:7a:fd:6f:af:a1:42:8b:40:bc:65:fe:16:33:
57:0b:72:88:23:e3:1d:3b:82:f8:ca:e2:13:f1:79:
a3:a8:f6:b4:fc:a6:60:1f:09:9a:0e:17:9d:7e:7e:
ef:64:5c:6c:c1:6e:68:35:20:27:06:21:de:c2:91:
78:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:6D:E3:6C:D5:74:05:51:D5:F6:57:BD:50:0A:28:54:27:50:7A:07
X509v3 Authority Key Identifier:
keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:5f:bc:22:d2:10:93:bd:bf:b9:0a:03:6d:5b:8c:fa:4d:06:
fe:8f:7f:17:d8:4f:a7:ff:b5:1c:6d:b5:75:3e:ce:5a:78:f6:
c9:ee:44:45:35:80:8a:ab:aa:ce:3d:e1:78:34:87:ec:a7:91:
6b:a4:78:d8:8d:85:ff:cb:39:80:c5:17:ee:ac:41:a9:50:16:
76:9e:da:83:8b:84:36:e1:88:0e:bb:99:8f:13:be:20:2c:e8:
42:74:d9:df:68:70:b9:b3:7b:81:3e:d3:b0:12:4a:d8:66:e2:
1d:91:ef:3c:ad:ba:5c:0a:bf:26:27:36:b3:6d:77:23:9b:0e:
a2:e9:83:19:91:83:2e:31:58:07:78:e9:0b:6e:96:d3:c0:a5:
69:43:bf:1b:67:66:96:d9:34:37:2b:ce:6e:a7:18:ad:2f:75:
68:a8:6f:c9:e3:6f:c4:c8:ac:b9:62:ff:e6:3e:4b:79:d8:32:
91:bf:28:95:25:88:fc:f3:97:94:aa:a7:f0:2a:6f:a1:f3:76:
ed:43:4e:7f:af:34:f5:a5:bf:50:3d:95:a4:66:56:56:43:76:
6e:53:df:e8:d2:5a:4f:6a:a3:87:5b:23:78:62:4c:c1:0d:fd:
8f:d0:ba:04:55:6e:ea:68:44:23:d9:e3:4e:1a:68:44:c6:7f:
2d:6a:55:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:13 2025 by rpki-client