Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
File: QL_eNYm0RMN59zNggxsd2OovhwM.mft (raw, json)
Hash identifier: JsFTWOMt4Z4T5M/R1O3xuF+MPbEeIEPBrAYDwGf+XEc=
Subject key identifier: C6:6C:73:50:B4:BA:0B:0A:CF:A2:5D:CA:9C:97:21:D9:5C:63:C9:3B
Authority key identifier: 40:BF:DE:35:89:B4:44:C3:79:F7:33:60:83:1B:1D:D8:EA:2F:87:03
Certificate issuer: /CN=40bfde3589b444c379f73360831b1dd8ea2f8703
Certificate serial: 01976C99014E95083A17224A5BED6D5CBE38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
Manifest number: 079E
Signing time: Sat 14 Jun 2025 04:00:55 +0000
Manifest this update: Sat 14 Jun 2025 04:00:55 +0000
Manifest next update: Sun 15 Jun 2025 04:00:55 +0000
Files and hashes: 1: QL_eNYm0RMN59zNggxsd2OovhwM.crl (hash: NSeMLM6FharCDh4hw0nu4Qf2L+2ZB/KdSd7QWpyPQps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:01:4e:95:08:3a:17:22:4a:5b:ed:6d:5c:be:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bfde3589b444c379f73360831b1dd8ea2f8703
Validity
Not Before: Jun 14 04:00:55 2025 GMT
Not After : Jun 15 04:00:55 2025 GMT
Subject: CN=c66c7350b4ba0b0acfa25dca9c9721d95c63c93b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5c:a4:ab:39:43:1a:c0:2b:d1:66:ff:17:61:
55:90:93:a7:31:f4:3d:ea:aa:bd:a9:24:62:89:ac:
ae:ec:bf:74:53:26:42:90:38:f2:24:e3:d6:83:ae:
15:c8:af:a7:2c:71:ec:07:f7:f4:d5:2e:62:b7:23:
09:93:2a:7a:bf:56:00:d6:f3:0a:f6:e6:68:cf:40:
50:b3:6c:a6:34:41:c3:ea:bf:d0:d0:9a:1b:da:65:
09:7d:78:7a:00:35:f6:58:86:69:88:d9:f1:2b:18:
a8:b3:e2:17:3e:79:cd:ad:4c:0c:00:97:2a:2f:b8:
7e:97:8d:44:94:5c:f0:c5:7e:3d:0a:d5:ef:fe:a0:
ff:39:08:ed:ad:0d:ba:4e:28:83:9b:d4:12:b8:f8:
63:a8:7b:1a:a2:80:f1:21:0d:3a:d3:c0:4d:e9:dd:
bc:47:68:a4:fe:f1:6f:89:b1:f6:2f:ed:29:98:67:
93:bf:f7:e3:b5:e6:c0:e0:56:34:57:50:ca:d5:57:
44:40:0a:d1:5d:84:c0:82:01:16:b2:0f:6c:1c:9d:
69:0c:c2:2d:ea:9a:07:8c:a6:72:94:0a:ce:03:c0:
fe:c2:72:46:b4:8f:6a:dd:9e:ec:b8:5b:e4:5b:4e:
13:c2:fd:cf:63:9a:99:56:fd:ec:4c:cf:44:0a:91:
82:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6C:73:50:B4:BA:0B:0A:CF:A2:5D:CA:9C:97:21:D9:5C:63:C9:3B
X509v3 Authority Key Identifier:
keyid:40:BF:DE:35:89:B4:44:C3:79:F7:33:60:83:1B:1D:D8:EA:2F:87:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QL_eNYm0RMN59zNggxsd2OovhwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ba011-dbef-4577-9e00-588019a6b5cb/1/QL_eNYm0RMN59zNggxsd2OovhwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:28:41:03:d6:89:45:16:72:76:59:61:0a:ed:1d:21:1c:30:
f6:08:b7:17:b0:31:da:08:c6:75:a6:0d:31:71:1a:82:62:2f:
83:d9:3b:b9:a4:5f:00:77:c9:53:d4:c4:ba:cd:3a:c7:ab:6b:
35:62:69:e6:c6:d2:7c:57:fd:9c:8f:a8:9e:da:02:1a:9d:11:
e4:bc:6e:a5:b8:3c:3c:6f:27:79:c1:ff:0b:ee:34:fa:22:db:
a6:29:1c:58:b7:a9:f5:6d:a2:fb:7f:69:40:7f:4d:ec:99:c6:
6a:83:5d:49:1d:1c:8d:6b:b4:a1:d9:04:fb:6d:f2:32:f7:29:
1f:c7:cc:2f:4d:fd:c2:2c:d9:f1:18:68:19:e6:3b:e2:ac:ad:
5c:76:23:1c:be:f9:a4:1a:64:df:b9:a8:f8:b7:ec:1a:10:5b:
4b:cb:a4:84:9b:61:4a:8f:8c:11:02:c1:8a:d5:97:4b:28:7d:
f7:ce:12:83:79:5f:eb:50:37:2b:5f:28:2f:70:c7:af:88:f2:
29:e4:97:60:42:c1:89:7c:62:cc:47:6d:e7:62:71:95:b1:68:
af:89:68:81:5e:48:03:73:af:bb:e7:b1:bd:ab:5d:93:94:b3:
bc:99:42:10:5c:f8:85:7e:be:d9:38:0d:ae:0d:0c:47:dc:7b:
ea:ed:46:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:58:26 2025 by rpki-client