Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: 7xhgeyR82qTxRS+e+tCKDx79ZtiiX6uRttSvOLVyQ50=
Subject key identifier: 40:C8:F1:3D:C7:62:A8:49:73:B0:03:40:9E:A3:52:E2:11:FB:0A:BA
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 0198D69813EB6A4D615C36F90A2A61477D85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 0E39
Signing time: Sat 23 Aug 2025 11:02:27 +0000
Manifest this update: Sat 23 Aug 2025 11:02:27 +0000
Manifest next update: Sun 24 Aug 2025 11:02:27 +0000
Files and hashes: 1: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: sYmWUx33GBDg5mhYwt0clJ4IXwyVp9g/08rAmWP/n+A=)
2: Tt9cDnLqp2SOeeoElhH21A1JSmo.roa (hash: g7FEq0smlg0TkkjLfygzTEzTD8KkWT+7GvQHUxPqdJo=)
3: pSYXiKXGXABhmANIG0Y2vhGLRUA.roa (hash: kjXcWabBcy+Nz9B+eKiIbdHIvrnXu/XwD/9ZftdegXw=)
4: uJ1wgWjtfF_PUvxzUj8noSaLQx0.roa (hash: 5K3mYspcTrH8J1dlAJJG2SBHWuIALi8AQG16SYzuq8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:13:eb:6a:4d:61:5c:36:f9:0a:2a:61:47:7d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Aug 23 11:02:27 2025 GMT
Not After : Aug 24 11:02:27 2025 GMT
Subject: CN=40c8f13dc762a84973b003409ea352e211fb0aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d8:37:45:28:18:ef:d5:83:ed:a4:34:9c:94:
a7:56:3e:06:c3:6c:05:1c:09:f8:b0:aa:5b:5e:04:
1c:f7:ef:cb:e6:c2:bc:5b:b8:18:24:62:32:83:9e:
c3:30:ec:4e:c7:a0:d5:c8:c8:e6:96:6d:52:71:d7:
56:c7:f8:9c:4b:90:99:8c:df:b0:a1:9e:f9:bc:db:
d2:cf:0d:e8:e1:a3:66:b9:37:bc:a3:ba:2a:86:58:
7e:38:78:a6:ab:38:9e:53:84:8f:09:95:ee:b4:ee:
9b:cc:8a:ab:c3:9e:f4:ff:7a:85:f2:f6:a6:87:1d:
1d:59:08:15:9a:c0:ea:d4:c6:12:a1:01:e0:d0:df:
52:aa:ba:f1:bc:6e:bc:28:de:e6:7c:5a:0e:de:91:
36:d9:59:44:98:bd:6d:78:e0:b2:3a:5b:81:f5:9d:
79:53:c7:25:35:02:1e:13:8b:22:e9:a4:f3:4f:78:
6b:35:12:58:52:6a:d3:1a:dc:7d:80:ac:0c:d2:dd:
1c:30:b6:db:a4:0b:46:03:20:50:2a:b1:44:84:73:
e8:42:c9:cf:ad:68:5e:b7:96:f6:bd:5c:ac:06:77:
dd:c0:40:c5:2e:39:3b:79:44:71:68:47:e0:fe:49:
e2:91:36:1a:e0:b3:f9:fb:74:dd:0b:8c:27:3c:d6:
72:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C8:F1:3D:C7:62:A8:49:73:B0:03:40:9E:A3:52:E2:11:FB:0A:BA
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:41:fa:10:69:b6:f5:cc:e1:26:d8:ab:24:6e:9f:68:39:ec:
95:69:e6:01:37:6b:63:dd:54:e4:73:11:5e:c7:de:b4:a7:65:
38:9f:08:f0:4b:11:28:f1:5e:ea:0d:d8:43:b2:ad:0c:d0:4d:
a0:a7:82:d8:b9:98:62:84:34:c4:ec:3d:30:2e:19:58:c9:a5:
ab:e0:43:b2:10:7c:80:77:48:0b:24:52:9f:69:b4:d4:f7:d1:
77:5c:9f:3f:7a:f6:27:14:99:04:7a:9a:4b:f5:99:c3:9f:f9:
00:e6:a7:74:2b:65:4e:56:0f:1e:97:d0:95:d2:70:64:97:01:
8d:8c:50:97:c3:1b:f1:52:62:5d:9e:3c:7c:39:c1:98:20:e4:
ce:52:04:39:7f:7b:54:7b:6c:7a:9f:9f:3b:1b:9d:b8:08:4f:
fc:2c:61:4c:e3:ea:ff:a3:e1:1f:f6:16:7a:52:cb:ca:30:c3:
d4:cd:fb:1d:d2:f0:e2:dd:7c:87:57:7e:b1:0b:41:e3:0b:b4:
39:81:29:9f:8b:b9:a1:17:b1:af:cc:ef:a7:5c:da:43:7b:30:
7b:9c:65:3d:e4:23:a5:de:40:0b:e8:55:44:83:4b:7e:6f:27:
06:2e:38:d4:82:ff:51:49:2d:39:11:db:ca:9a:ed:75:17:b1:
83:1d:03:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:46:57 2025 by rpki-client