Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
File: QA4H15n7NVyVICXz0nsA6bTuNO0.mft (raw, json)
Hash identifier: WQrLcVgW+seUf0aTDX0f8s9RbeFcWqurX+z1GWtoas4=
Subject key identifier: 84:8D:7E:0D:61:80:32:1F:B8:AB:75:62:53:6B:26:55:F1:AF:21:9E
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 01987A1BC46F35032DFFE73D4BBF9E92FF06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
Manifest number: 0883
Signing time: Tue 05 Aug 2025 12:01:36 +0000
Manifest this update: Tue 05 Aug 2025 12:01:36 +0000
Manifest next update: Wed 06 Aug 2025 12:01:36 +0000
Files and hashes: 1: QA4H15n7NVyVICXz0nsA6bTuNO0.crl (hash: 5r3Tskc/BDXI+S1M+27a/qNPysNolyrukU6uzzOV0yA=)
2: bysUciiIqYU9vJ8UfK9pbwZkqG0.roa (hash: JZVYwqtyAp0nMHO1FDIE6qYD96KGmAzDi7aqiaMlMrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 12:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:1b:c4:6f:35:03:2d:ff:e7:3d:4b:bf:9e:92:ff:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: Aug 5 12:01:36 2025 GMT
Not After : Aug 6 12:01:36 2025 GMT
Subject: CN=848d7e0d6180321fb8ab7562536b2655f1af219e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:88:f2:f3:8d:cf:ab:42:08:9f:d0:4e:0a:d9:
06:6f:62:af:65:94:70:8b:4b:4d:44:ae:d9:e6:1a:
5f:7c:e4:2c:4f:9a:c2:f6:39:00:43:b9:86:3a:5a:
97:b2:f5:12:f4:62:a3:bf:68:d8:1e:77:fa:56:5b:
ff:bf:cb:b6:27:93:c4:ee:dc:b4:96:71:a6:bb:3d:
28:f2:50:1a:01:ec:3b:ef:ac:80:06:66:94:a5:b3:
b2:b5:33:64:5e:21:53:35:cb:dd:f2:ac:99:35:61:
1c:0e:b2:0a:d0:99:ab:c9:2f:fd:29:5f:d7:92:b1:
4d:41:aa:a3:ff:cb:45:c4:02:15:0d:da:da:e3:6d:
87:1d:b3:73:95:2d:10:c4:a7:58:79:5e:ce:43:47:
5f:af:58:16:ce:0f:23:34:3d:13:99:04:85:b8:be:
9e:0d:03:97:b1:e2:83:b0:84:c0:b2:5c:69:de:20:
f4:93:ca:3b:1d:4e:35:4c:b5:55:3f:17:0a:ea:42:
62:93:e5:1b:5d:c5:8d:a0:1c:8d:dd:fe:83:8f:57:
f0:0e:76:a9:3d:c6:5a:a3:31:26:ac:37:e1:41:8f:
92:41:2b:3c:ab:25:7b:8a:0d:d6:45:a9:ff:c9:52:
4b:54:b0:dc:b2:8f:81:f5:ef:b1:e2:5f:3a:70:f9:
b8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8D:7E:0D:61:80:32:1F:B8:AB:75:62:53:6B:26:55:F1:AF:21:9E
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:7b:ec:4a:73:98:bd:d6:72:df:f4:bb:0c:9b:86:f1:a8:af:
1c:fb:bf:88:18:e1:24:3b:a2:3e:4b:eb:b5:01:aa:e9:ca:56:
5e:7d:3a:ac:fc:6a:ec:98:43:23:ad:10:0f:81:aa:c4:07:d9:
f0:75:29:48:3b:a6:f2:b2:23:17:32:20:43:09:3e:a6:a4:05:
dd:6d:9f:d9:87:60:13:58:30:32:86:f3:5b:e5:10:5d:e5:a4:
35:a6:e1:ba:93:f4:b2:e1:b5:64:4f:ac:a1:7c:75:c8:38:da:
85:10:03:99:21:da:85:00:c9:58:b9:b4:30:b2:97:26:1d:79:
6e:84:77:1c:14:a8:70:13:42:23:ca:f9:72:fc:e4:e5:3d:95:
02:bb:bf:c1:ef:83:bf:98:e2:d0:ce:68:fd:1a:50:ae:0b:71:
03:7f:67:1d:58:9a:02:eb:26:32:4a:86:63:69:93:12:25:35:
47:7f:22:98:06:84:18:74:96:c8:73:20:73:af:d6:a6:37:88:
4c:02:f3:96:6a:df:41:0e:4f:58:25:e3:e9:7d:7b:8b:30:ab:
7c:72:98:07:fc:ef:17:dd:5a:5e:31:89:11:a4:b5:36:d5:9f:
c2:90:71:84:ef:e6:8a:64:3a:8d:e5:75:14:a2:40:a4:0c:f8:
7a:14:23:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 16:43:53 2025 by rpki-client