Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json)
Hash identifier: sMcjNyy4Tld7JB0f85cLGjvBc/xXXYvorUW0wQ86ANo=
Subject key identifier: 87:81:E6:1A:92:B1:69:94:8C:73:4A:24:CB:FA:F3:67:03:F7:03:BC
Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Certificate serial: 019882B086D006C7BA587D362B90DE401971
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
Manifest number: 0174
Signing time: Thu 07 Aug 2025 04:01:03 +0000
Manifest this update: Thu 07 Aug 2025 04:01:03 +0000
Manifest next update: Fri 08 Aug 2025 04:01:03 +0000
Files and hashes: 1: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: ON+qHHCjhhhLB6teqUR5bFxirIUQdNwJ4QNN1RRPiJk=)
2: etqHJp94mEXyM-mZRNVFRO7Kziw.roa (hash: Y6iOU/XBP66s91SGzXjQj2BEKS4QjWa/buoOF4uhFqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:b0:86:d0:06:c7:ba:58:7d:36:2b:90:de:40:19:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6
Validity
Not Before: Aug 7 04:01:03 2025 GMT
Not After : Aug 8 04:01:03 2025 GMT
Subject: CN=8781e61a92b169948c734a24cbfaf36703f703bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:46:11:17:7b:33:0f:9e:ad:43:66:06:8c:69:
4c:09:9d:74:b2:1b:f5:c7:ed:a8:0c:62:9c:a8:7c:
91:a4:ae:d2:e6:46:26:1e:5e:fa:7e:6a:f7:93:5b:
b3:b6:2b:0d:7b:77:86:1e:a5:0d:ad:9e:31:8f:c7:
8f:16:91:3c:ef:ed:ab:ce:6e:81:63:51:a4:24:3f:
06:b6:12:0f:aa:bd:e3:3a:ec:9f:3c:82:84:b1:7c:
5c:e5:14:4a:8f:5c:7f:08:0f:28:8b:46:09:1f:e3:
fa:d0:ff:77:58:9a:18:4e:f8:07:6a:0f:a3:68:f7:
14:42:e6:08:ea:b7:8c:12:6b:d1:c6:22:bc:d1:11:
b6:8c:16:b8:1e:f4:1b:19:ba:ef:aa:79:7e:ac:df:
7a:30:f2:6b:7c:ca:1f:ef:a0:db:e8:a5:ef:79:eb:
a1:95:17:62:43:ca:a8:09:98:ce:62:70:c7:ec:ec:
fe:fa:56:e5:37:cf:a3:40:0d:6d:a2:2a:c0:a4:2f:
84:23:e8:dd:bb:a7:ee:8c:a7:50:ea:ef:d3:eb:75:
d7:3a:8c:88:32:0c:ce:bd:bb:d0:83:ef:0e:8b:fd:
71:32:5a:63:dc:6a:da:81:17:47:6b:44:be:b3:d9:
0b:2a:1c:7a:71:d8:28:50:b8:b7:92:6c:17:b6:d6:
49:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:81:E6:1A:92:B1:69:94:8C:73:4A:24:CB:FA:F3:67:03:F7:03:BC
X509v3 Authority Key Identifier:
keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:5b:a9:9a:6c:4e:f8:e0:b6:a7:0d:58:c4:b5:10:7a:40:28:
cf:08:96:3f:b0:c2:a8:6b:be:21:8c:b4:99:4a:c3:55:5e:31:
99:56:31:e3:39:09:17:ba:94:f4:ef:bd:1a:5e:0d:d6:80:94:
a8:12:fa:13:a7:82:4e:b7:5d:52:ad:88:eb:e9:4f:6d:44:7a:
03:ea:80:54:48:1f:0e:68:72:ac:ad:79:77:fd:9e:ad:2d:6f:
5b:8a:8c:6f:bc:7a:a9:71:28:f7:5a:f2:18:7c:3a:8d:de:1b:
39:33:eb:f0:f1:d9:11:67:26:4b:65:fa:ca:76:e8:3c:05:5b:
a8:19:73:1d:e3:e8:22:ee:4e:35:fc:78:5f:8b:18:dd:50:6b:
19:f6:c8:5d:a9:51:27:89:97:36:90:1c:61:78:ea:52:c5:11:
00:e8:c7:2a:e6:c1:77:b2:5e:94:31:b2:46:f4:cd:7b:b5:a2:
6e:7d:19:df:e0:36:a8:85:7e:fe:08:6a:5f:fc:01:2e:f6:8d:
32:0c:59:1c:83:1d:11:b5:43:8c:ac:5b:40:98:f4:eb:71:7f:
52:44:9b:56:c4:6d:fb:fa:9f:d1:67:92:c5:f2:31:6a:40:a0:
b3:32:b4:92:e7:e4:f6:b1:f0:4a:e7:e2:91:cf:0d:1a:26:30:
c6:33:40:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 07:32:48 2025 by rpki-client