Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
File: QIVi4riWGyLinHYtbJkDMbo2Zm8.mft (raw, json)
Hash identifier: DBlWTRgJ4fJlDhgQqxyy0qEKQ8l5knxS7g0bZzwbkpM=
Subject key identifier: 47:4A:66:F3:96:0E:5E:DA:F2:61:77:7F:F7:CE:D0:F6:49:28:BC:3C
Authority key identifier: 40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
Certificate issuer: /CN=408562e2b8961b22e29c762d6c990331ba36666f
Certificate serial: 01987418DBBCA09FA8F4FAD8A9210E6BB9D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
Manifest number: 12D0
Signing time: Mon 04 Aug 2025 08:00:42 +0000
Manifest this update: Mon 04 Aug 2025 08:00:42 +0000
Manifest next update: Tue 05 Aug 2025 08:00:42 +0000
Files and hashes: 1: QIVi4riWGyLinHYtbJkDMbo2Zm8.crl (hash: s2bxowQx5EG987dYuEJNpQkKfltmeYRwrQr75P+xXNw=)
2: TH3iTyQHdiPtwrxen-ik0aBRXKI.roa (hash: 9e3J8Nl+Dc6K9RH7KE3BYQUYhRYoAJ/tNPR6z9IBOhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:18:db:bc:a0:9f:a8:f4:fa:d8:a9:21:0e:6b:b9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408562e2b8961b22e29c762d6c990331ba36666f
Validity
Not Before: Aug 4 08:00:42 2025 GMT
Not After : Aug 5 08:00:42 2025 GMT
Subject: CN=474a66f3960e5edaf261777ff7ced0f64928bc3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c0:b2:35:9c:82:e5:e9:c5:bf:36:1e:80:7f:
ee:37:21:ed:02:31:00:85:e5:b3:43:b0:37:3a:21:
42:f2:64:85:51:8b:9f:ae:a0:42:d8:3f:c6:d4:ff:
ef:c1:5d:b6:2b:b6:c5:10:e5:e8:f6:77:e0:d8:ff:
92:36:75:66:60:19:cc:d9:da:af:39:03:9a:8b:45:
e5:64:26:fd:7d:c1:4d:4a:e4:03:1d:ee:3e:3c:54:
e5:68:12:c9:dc:63:55:de:16:45:08:9b:81:ae:a3:
99:c0:13:8e:ef:5a:d9:7a:9e:dd:0a:19:e6:89:4c:
fa:65:ea:00:56:cc:e2:ff:5c:be:95:87:ed:b2:e4:
01:93:3c:c5:34:1a:6d:db:6b:da:29:17:bd:63:ba:
92:14:ba:23:73:cb:91:44:df:6a:e5:bc:fc:86:77:
78:de:c5:3c:18:57:47:e1:c6:91:6b:b4:c6:77:19:
07:21:de:33:db:c3:f0:5f:ab:06:14:13:b3:e4:38:
4e:b8:4d:b6:53:52:e1:ca:be:00:3e:ab:c1:36:57:
87:56:ab:89:b2:e4:6d:bf:fa:ca:ef:b5:b6:ea:4e:
83:f4:73:bb:e7:6a:2e:4a:e5:06:1a:2f:db:5b:20:
68:d7:7c:e1:5a:c9:2e:3b:eb:12:7c:7a:fe:61:d0:
42:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:4A:66:F3:96:0E:5E:DA:F2:61:77:7F:F7:CE:D0:F6:49:28:BC:3C
X509v3 Authority Key Identifier:
keyid:40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:73:6a:6e:8c:a3:97:ea:63:a1:08:21:ba:45:a0:f6:e9:f8:
e3:5d:be:e2:c6:fa:5c:6c:62:66:1c:65:4c:e6:48:b1:68:41:
b2:80:fd:17:6a:7c:a3:af:cc:83:8e:b2:6c:8b:f7:dd:8e:be:
b3:c4:39:56:dd:0d:4a:78:f6:51:15:b5:97:ea:b4:d9:3a:d9:
37:cd:d1:b0:ca:7e:b0:73:ed:35:15:62:7c:b4:24:9f:b6:e3:
67:09:48:f4:7e:07:75:c6:b0:1a:55:a7:3f:cd:f2:83:a4:f7:
99:ba:4d:26:52:29:f0:bf:3c:99:61:6c:97:e7:39:4c:4d:2f:
d4:2c:9b:fd:ad:1a:72:4b:1e:30:fc:30:ee:57:db:bb:0c:49:
a7:17:78:ad:f1:ad:e5:84:45:98:25:6c:e9:cc:f8:47:4a:1b:
86:9d:ca:b7:08:5d:90:0d:45:50:c2:61:14:a7:2f:3e:7d:f9:
f6:14:18:97:39:b2:3c:83:11:7c:7f:4b:49:3d:bd:be:ee:bd:
cb:58:8f:8c:de:1a:99:c1:f1:c7:47:0e:54:10:53:c9:3f:9b:
c0:82:06:f4:76:fb:56:e4:9d:46:52:2b:0a:ba:f5:8e:74:44:
d1:e3:ec:4b:14:2c:14:94:85:e6:18:5c:1d:fd:d0:70:ce:c0:
b4:0d:d1:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:53 2025 by rpki-client