Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/afead5-9373-485a-a93a-bc33a54898e0/1/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.mft
File: QzJPJRto_1Rj9rU1B_ZqSwNNwOU.mft (raw, json)
Hash identifier: he32UUuuCR2KkSoGwyK16la/YFzgaH0DD2S/rD+qqrw=
Subject key identifier: B9:57:83:05:80:69:27:DB:1E:95:B5:83:4E:D8:7C:54:2F:04:38:AB
Authority key identifier: 43:32:4F:25:1B:68:FF:54:63:F6:B5:35:07:F6:6A:4B:03:4D:C0:E5
Certificate issuer: /CN=43324f251b68ff5463f6b53507f66a4b034dc0e5
Certificate serial: 01987E2EA881B0CAF24245787C83062F560B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/afead5-9373-485a-a93a-bc33a54898e0/1/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.mft
Manifest number: 1618
Signing time: Wed 06 Aug 2025 07:00:43 +0000
Manifest this update: Wed 06 Aug 2025 07:00:43 +0000
Manifest next update: Thu 07 Aug 2025 07:00:43 +0000
Files and hashes: 1: QzJPJRto_1Rj9rU1B_ZqSwNNwOU.crl (hash: VuQlTPGnMiWzu+Qd72AeOvLEFeTZ876z/8foRY0BVCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/afead5-9373-485a-a93a-bc33a54898e0/1/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/afead5-9373-485a-a93a-bc33a54898e0/1/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2e:a8:81:b0:ca:f2:42:45:78:7c:83:06:2f:56:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43324f251b68ff5463f6b53507f66a4b034dc0e5
Validity
Not Before: Aug 6 07:00:43 2025 GMT
Not After : Aug 7 07:00:43 2025 GMT
Subject: CN=b9578305806927db1e95b5834ed87c542f0438ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:69:fa:39:a6:53:0d:5c:d7:38:7f:a4:d9:a2:
3d:7f:82:8d:48:5f:8c:78:6a:1a:de:91:f1:28:94:
48:55:a3:f5:3d:2e:b9:86:6a:be:2f:6d:28:1c:4b:
50:ef:8c:07:0c:1e:3c:67:c1:47:53:ba:c5:db:dd:
47:b7:de:c0:6c:58:8a:d1:72:55:53:28:58:52:bf:
b5:6c:6c:05:01:ee:18:fc:f4:51:de:b5:16:2c:33:
d5:b9:b1:24:22:32:2b:24:49:32:be:53:78:59:bd:
4e:f7:53:d7:aa:69:48:98:a7:54:2c:89:24:9a:ed:
77:73:3b:a2:98:12:db:34:f8:27:fc:d0:bb:72:0e:
0d:a1:22:a1:08:26:b7:8a:09:bc:bb:e9:18:ea:35:
90:65:a6:52:be:c9:ae:03:88:cd:a7:97:7e:ae:3a:
aa:5e:ac:66:a4:30:28:3b:0f:ae:69:50:a6:7b:41:
9c:55:33:5e:fc:80:ad:18:5a:3b:25:07:ac:13:2c:
b0:13:06:a3:c6:8d:21:4e:d8:db:cf:44:d7:b9:af:
e7:87:80:a5:45:78:c9:1a:4c:7e:a0:be:15:d2:f1:
3c:65:30:db:01:cd:12:49:3e:2e:29:8f:ec:a7:57:
b6:93:27:15:48:8b:85:7d:aa:3c:25:fc:f2:50:6e:
9d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:57:83:05:80:69:27:DB:1E:95:B5:83:4E:D8:7C:54:2F:04:38:AB
X509v3 Authority Key Identifier:
keyid:43:32:4F:25:1B:68:FF:54:63:F6:B5:35:07:F6:6A:4B:03:4D:C0:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/afead5-9373-485a-a93a-bc33a54898e0/1/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/afead5-9373-485a-a93a-bc33a54898e0/1/QzJPJRto_1Rj9rU1B_ZqSwNNwOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:d6:64:bb:bf:99:42:34:22:0b:35:ef:43:48:52:f3:82:b3:
4e:1a:1c:a6:43:93:f9:37:4a:7a:b5:1f:14:5f:b1:b8:40:8b:
0f:19:61:ff:99:4e:b3:6a:00:45:9d:4c:3d:ed:de:c1:5f:21:
e4:93:1b:f7:6c:a1:06:fd:db:f9:2a:23:54:7b:9f:c1:26:07:
87:e2:bc:40:01:0a:e5:3e:f7:ea:94:4f:9c:dd:94:52:ad:ed:
5f:c4:cb:49:01:9d:ec:fd:14:db:87:ae:fe:02:7d:3a:9f:f3:
22:7c:62:45:d4:e0:ae:5f:dd:ee:54:b1:5b:82:57:c6:97:8e:
82:2a:92:b0:76:66:39:5e:21:40:42:c9:07:04:9e:55:dd:d4:
d2:27:e4:8c:82:1f:3e:83:e4:f5:1a:fa:16:1d:55:08:c0:38:
9c:19:b9:33:f9:42:81:23:9a:36:a1:39:13:48:e5:4b:2a:15:
9b:e3:6b:61:5b:a1:33:63:cc:6b:09:43:e4:19:e8:cb:b1:50:
7b:2e:24:a6:07:3e:f2:1f:cb:92:5e:a6:5a:38:2c:b2:7c:f4:
45:68:c8:60:d1:aa:9c:50:fd:ae:61:47:29:90:d2:58:3c:a3:
70:5c:ea:5c:3a:76:ec:eb:65:63:df:0d:90:d2:2e:fd:92:00:
b3:9b:5b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:04:30 2025 by rpki-client