Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: 8mVT9+Qg6JsV9tCH5YFhZgHqtyxcetCVnBEwaGMkunE=
Subject key identifier: FC:99:56:B1:C5:EC:45:FA:68:D1:7F:47:E6:10:66:7D:53:DA:01:2C
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 0197B6A1D67A187D34E6190DDB8A57EDA363
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 13:02:28 +0000
Manifest this update: Sat 28 Jun 2025 13:02:28 +0000
Manifest next update: Sun 29 Jun 2025 13:02:28 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: eXObuqlmBjj0B7Ktgn737tEv5kh2G3ipsbZXWepU5Xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:d6:7a:18:7d:34:e6:19:0d:db:8a:57:ed:a3:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Jun 28 13:02:28 2025 GMT
Not After : Jun 29 13:02:28 2025 GMT
Subject: CN=fc9956b1c5ec45fa68d17f47e610667d53da012c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4d:3e:ae:4e:9e:c5:eb:95:73:38:11:7a:ae:
bd:40:63:b1:b9:08:97:13:40:aa:ee:db:13:f4:73:
b3:2e:d0:a0:0f:6f:7a:d3:7e:5e:c2:0e:c2:e1:9d:
40:82:6a:19:b2:cd:8b:3f:bd:d3:43:9f:71:ad:71:
1a:f7:cf:c0:00:ef:3f:af:23:ad:3d:17:5f:92:11:
26:96:2a:e2:1f:a7:ec:2b:1b:ac:89:a7:8d:a2:30:
88:d8:c0:0b:93:68:9d:ba:1f:e3:bb:ad:d6:14:9b:
14:10:31:67:4e:d4:de:0e:1d:cb:35:2e:0d:db:cc:
d8:ab:27:75:d7:2f:17:92:bb:80:19:8b:85:9b:6c:
5a:13:a5:e8:89:bb:17:7e:a8:56:83:d8:4b:c1:6f:
ba:f0:1e:50:55:93:36:6c:fb:26:bc:72:61:27:84:
bd:fd:f0:70:93:c8:ae:d4:48:4f:e9:26:09:ec:b7:
77:2f:c6:89:a6:bf:58:54:94:15:3f:4f:ba:e3:04:
82:49:4b:21:a9:55:1b:88:35:b7:f1:c0:59:a5:33:
cc:eb:26:dd:4d:74:81:03:11:81:d0:ad:92:6f:0f:
3f:12:31:cf:74:b1:1c:27:fe:c5:01:ce:5a:b0:df:
ab:15:01:c1:f8:88:c0:4d:cb:b4:64:b6:19:76:4c:
c2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:99:56:B1:C5:EC:45:FA:68:D1:7F:47:E6:10:66:7D:53:DA:01:2C
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:74:d9:c8:69:e6:12:04:bc:76:09:ae:dd:2a:ea:f6:54:d0:
6e:e8:cf:07:a3:fd:22:e7:95:37:f4:a2:3d:da:0b:15:7a:c9:
6f:ca:35:7b:ab:dd:4d:a0:b5:12:b7:7c:dd:31:23:aa:9c:67:
c2:c9:a1:11:ef:2b:99:21:fa:bd:1a:e8:cc:38:c8:8d:83:3b:
4d:c3:f1:93:79:05:e2:9d:d6:d9:dc:bd:c0:a4:fb:68:fc:5c:
06:b7:ed:53:57:02:6d:9d:1a:56:4d:40:ae:95:f9:d8:1c:e7:
2b:60:35:6d:a2:c6:bc:54:ba:14:68:1b:08:93:51:79:f1:0f:
6c:8c:1c:a7:de:dc:7f:e0:32:fa:4f:0f:8f:f5:43:de:f0:77:
87:9f:e0:d4:1d:57:3f:37:18:81:16:c7:5d:ad:ae:83:c8:40:
e7:bc:96:11:ad:96:b4:ae:78:ae:0c:52:67:56:a6:5a:cf:ca:
4f:8b:25:ee:e3:b8:ca:3c:95:3b:3d:46:fe:74:39:63:39:a3:
17:7e:75:f9:1a:94:d8:7c:f2:25:50:86:ee:6e:3c:a9:27:55:
81:fd:dc:8a:2d:7b:6f:2e:11:f9:02:a9:ef:a0:9b:a1:de:42:
95:4f:c3:3e:33:6e:74:78:10:34:9b:20:82:c5:54:1a:75:2f:
11:08:b6:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:55:49 2025 by rpki-client