Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
File: QL_eNYm0RMN59zNggxsd2OovhwM.mft (raw, json)
Hash identifier: mnqaNLueYomTe4kroIKqvqKeVL7dWlkEpG/4uJQ4bSU=
Subject key identifier: BD:41:80:BC:7E:5C:B1:E3:66:28:A7:24:5A:08:E2:32:C6:3B:AD:A0
Authority key identifier: 40:BF:DE:35:89:B4:44:C3:79:F7:33:60:83:1B:1D:D8:EA:2F:87:03
Certificate issuer: /CN=40bfde3589b444c379f73360831b1dd8ea2f8703
Certificate serial: 01988C582573F00A25715380C1258E2ED3D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
Manifest number: 0833
Signing time: Sat 09 Aug 2025 01:00:43 +0000
Manifest this update: Sat 09 Aug 2025 01:00:43 +0000
Manifest next update: Sun 10 Aug 2025 01:00:43 +0000
Files and hashes: 1: QL_eNYm0RMN59zNggxsd2OovhwM.crl (hash: /pqiKrJ0Pul6kw6WmNg2emigb+yn+XI3yNk2YwSKvA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 01:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:25:73:f0:0a:25:71:53:80:c1:25:8e:2e:d3:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bfde3589b444c379f73360831b1dd8ea2f8703
Validity
Not Before: Aug 9 01:00:43 2025 GMT
Not After : Aug 10 01:00:43 2025 GMT
Subject: CN=bd4180bc7e5cb1e36628a7245a08e232c63bada0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bd:fc:15:39:4a:42:34:c5:b1:d5:fa:92:16:
1a:bc:fa:0e:af:ae:08:a1:9d:e9:15:0b:1c:1f:21:
61:eb:9c:1e:1a:a3:01:43:9a:9a:f4:54:15:88:af:
ad:65:6e:ee:9f:90:3f:36:9e:d2:d9:d9:a5:58:f0:
a7:99:42:97:b4:c5:6d:37:25:31:f4:10:a3:f5:df:
8b:da:04:da:4c:8f:4b:3a:f1:b9:d7:bf:74:42:1a:
58:65:19:20:2f:5d:b1:f8:ed:bb:79:ec:e4:28:d0:
7c:f2:68:5a:e2:e7:3e:31:89:35:30:df:1d:62:ad:
5d:6a:9b:b9:6c:2b:c6:60:5d:e5:15:17:ef:9f:10:
b1:ce:2d:5e:bc:b6:12:59:d2:41:48:33:aa:b4:73:
44:41:88:10:2b:9a:0b:82:19:cf:80:03:79:3d:02:
ac:a4:d3:2b:1a:01:ad:4e:21:26:2b:c0:06:f8:82:
72:57:02:cb:2a:b3:42:d4:31:16:b8:db:f8:b6:a4:
ba:1d:c2:ca:30:63:06:45:70:17:a4:14:8e:f3:c0:
b0:77:c3:c9:55:86:1e:ef:13:bb:ae:89:ed:5c:6f:
77:ae:93:90:16:79:59:81:46:d8:d4:94:4c:23:f1:
d6:28:60:bd:34:81:4c:d9:c3:69:8f:a5:b7:c2:35:
28:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:41:80:BC:7E:5C:B1:E3:66:28:A7:24:5A:08:E2:32:C6:3B:AD:A0
X509v3 Authority Key Identifier:
keyid:40:BF:DE:35:89:B4:44:C3:79:F7:33:60:83:1B:1D:D8:EA:2F:87:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:60:09:0c:c7:7c:86:d3:02:a9:f5:19:e3:e5:02:da:02:96:
26:2d:02:20:3c:53:47:14:db:a5:a1:e8:5b:a7:f7:b9:c3:e1:
1d:5e:10:27:0a:04:b6:de:13:31:e1:50:05:ac:d9:3c:1c:0b:
ad:84:04:69:c6:60:ab:5f:b4:ba:b1:b7:46:21:74:d2:c3:cf:
68:e2:a8:1b:1d:b9:40:e7:19:22:91:86:7a:0a:08:f1:3c:8c:
c2:d0:c2:0f:ad:b9:1f:5c:5f:41:89:d8:c9:5a:6b:88:5f:64:
12:84:41:41:54:49:43:b1:2e:f9:a4:87:3c:17:52:44:9e:90:
86:58:e3:5d:1b:f7:de:0b:39:5f:c8:e2:09:a3:23:99:9c:f2:
2b:d0:ad:8d:c9:d7:16:64:0e:11:89:73:34:32:9f:a3:20:83:
bc:21:d9:6f:b9:48:5a:08:45:6e:ff:40:88:09:28:43:7f:5d:
aa:d7:e2:a7:db:da:b7:74:39:8c:f1:31:6a:6d:a3:79:cf:34:
f9:d7:39:1d:9a:77:e1:69:17:98:df:14:60:ca:25:c0:35:37:
7e:11:70:c0:ca:6d:f4:99:5f:3d:f0:dd:c6:83:b3:a7:d3:88:
56:93:38:e0:ee:28:2b:7b:48:96:43:2e:4a:ef:f3:88:50:08:
39:98:d1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:32:13 2025 by rpki-client