Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
File: QclkksAECK1U1zDA62KeOgtQ2A8.mft (raw, json)
Hash identifier: I/ZK7OkEX9lm5wxtepzVPu7I5Ib0qE6kl/Yk/88EdRk=
Subject key identifier: 1F:6D:19:45:1F:FB:9E:26:AA:C3:61:C2:58:11:0F:C9:F6:24:A9:D2
Authority key identifier: 41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
Certificate issuer: /CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Certificate serial: 0198D6607F4D87D8E51215165D35E283C60B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
Manifest number: 02D4
Signing time: Sat 23 Aug 2025 10:01:44 +0000
Manifest this update: Sat 23 Aug 2025 10:01:44 +0000
Manifest next update: Sun 24 Aug 2025 10:01:44 +0000
Files and hashes: 1: EpeCh_PHvVwvR1jtfMGPQVrMsrQ.roa (hash: XKVWPCeZYhwf3z1v0hUSbNv7x/hm4cVMh5YcJnXqtvg=)
2: QclkksAECK1U1zDA62KeOgtQ2A8.crl (hash: qAhTQZVv6Ls2l5v5OoBuowLaYeHPxYB62PRAQ/fWlSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:7f:4d:87:d8:e5:12:15:16:5d:35:e2:83:c6:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Validity
Not Before: Aug 23 10:01:44 2025 GMT
Not After : Aug 24 10:01:44 2025 GMT
Subject: CN=1f6d19451ffb9e26aac361c258110fc9f624a9d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:95:8d:48:76:9f:25:09:ee:71:ea:92:fa:01:
b2:26:93:fd:cb:dd:ba:3e:80:d2:b9:7f:22:4c:ac:
7b:63:04:28:e0:42:8a:6e:d1:82:0b:9c:4a:bf:97:
a0:0b:df:9d:4a:41:da:99:e5:54:73:75:94:af:02:
b6:0a:ee:f2:ef:38:2f:09:05:bc:60:2e:fe:6d:de:
5a:9c:14:e0:97:ea:94:4e:36:be:f1:b9:23:7f:c8:
95:72:f2:66:6f:f7:ff:28:71:1d:d5:46:87:04:bb:
06:40:2b:c8:53:f2:90:6d:ad:c8:5a:0c:4e:09:71:
5b:65:20:69:03:7a:51:5c:43:e1:b8:a9:b9:fd:73:
bd:34:f6:d5:1c:cb:cb:79:7a:70:28:07:db:77:5d:
01:c7:fb:91:b7:4f:6e:a1:35:00:9d:bf:23:7e:f4:
97:01:ce:9f:b8:a2:55:08:2c:cf:ac:8f:d1:04:ba:
95:01:38:68:ae:f2:8b:12:16:54:73:9b:5f:f8:28:
0b:09:9c:7d:26:01:01:f0:76:f1:11:9c:75:4e:8c:
93:aa:69:9d:36:e9:ce:d7:d8:84:1e:dc:aa:35:f4:
b2:c8:ec:c7:5c:aa:f2:81:5a:7a:00:54:c6:28:9f:
b8:25:5b:f7:f3:96:41:9d:38:b6:a1:e6:07:66:e8:
a0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6D:19:45:1F:FB:9E:26:AA:C3:61:C2:58:11:0F:C9:F6:24:A9:D2
X509v3 Authority Key Identifier:
keyid:41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:99:37:96:a9:84:8a:a4:6a:fe:cb:63:ca:51:b0:e5:13:bd:
86:cd:5a:10:fe:d4:ad:47:af:ed:a5:51:44:5a:0a:d2:2f:fa:
0a:17:63:ea:51:68:49:f1:d8:61:99:88:c6:ba:68:22:02:22:
44:6b:ad:ed:4a:4f:61:21:5b:d8:29:a2:e9:4e:e9:5c:d6:ad:
60:3c:3d:42:74:75:0b:72:88:9d:2d:78:46:5f:c4:57:fa:13:
c5:bf:37:ab:82:ac:47:a6:85:86:b6:66:e2:73:cb:d1:95:2c:
1f:75:74:b2:8e:be:3d:db:69:2b:62:ef:a4:85:95:99:a9:16:
56:b1:0a:4c:f6:0a:36:78:c4:c7:a5:b9:9a:fc:9f:d6:5d:31:
38:06:86:c2:16:de:6e:99:89:52:4c:a2:34:7b:23:13:8b:2a:
15:c7:11:5f:fe:79:39:08:41:eb:b3:df:ce:65:ca:ee:15:a0:
49:66:06:79:b6:d1:8e:99:81:48:12:7c:59:5a:c6:4a:e2:64:
d1:bb:c6:fe:4b:9a:ea:56:c4:44:ec:d5:14:6a:4a:70:cc:09:
8c:5e:24:c1:9c:cb:49:7e:64:01:ea:28:d3:6e:9f:cc:87:eb:
16:d4:f9:20:eb:34:28:15:26:f1:2c:97:c6:27:45:47:91:eb:
26:e7:b9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:30:29 2025 by rpki-client