Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json)
Hash identifier: oKoshkzQ4rx6rw204Xm4jo3tGHL61sXl5bDCrU1w6XE=
Subject key identifier: FC:62:37:E1:2E:C1:F9:E9:06:05:8B:08:53:2E:09:87:26:DA:5B:BA
Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Certificate serial: 01989FA89D676F1786842BC3A4929A4C41EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
Manifest number: 0541
Signing time: Tue 12 Aug 2025 19:01:24 +0000
Manifest this update: Tue 12 Aug 2025 19:01:24 +0000
Manifest next update: Wed 13 Aug 2025 19:01:24 +0000
Files and hashes: 1: 4PjPPpWKgAtzAAOasr7gIk0JbPI.roa (hash: yiKX1aQ5yWrVl7HwLmjfK1M9G+FpWFiXbyU5qVlLbDY=)
2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: 0usmT3uy8HZr8i6NgYv+/EMPHcy6ZjbtBekk+cpom1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 19:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:a8:9d:67:6f:17:86:84:2b:c3:a4:92:9a:4c:41:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Validity
Not Before: Aug 12 19:01:24 2025 GMT
Not After : Aug 13 19:01:24 2025 GMT
Subject: CN=fc6237e12ec1f9e906058b08532e098726da5bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:50:72:6e:f8:c8:76:f1:c7:34:a7:49:a4:b9:
5b:83:c0:a7:3d:3c:36:ce:f3:93:ce:21:15:61:73:
d1:0e:94:90:35:95:50:33:56:a1:50:62:9b:17:5c:
b3:73:a7:d5:1f:69:a7:62:20:73:c7:08:0e:b7:12:
4e:c6:49:5a:b1:aa:c1:73:35:e3:68:5b:b7:34:33:
e8:20:04:1d:8b:c1:86:9c:83:d1:82:42:9f:66:92:
e0:16:c4:64:4e:ad:1d:45:3b:f2:63:32:99:00:47:
4a:44:5a:7b:3e:b0:fb:9b:cc:21:40:d1:8c:e8:a5:
ca:a6:21:15:aa:50:ef:f7:38:b9:a2:42:ca:bb:fe:
68:0a:ef:10:1f:75:40:6e:78:b5:5d:c8:e5:e3:e6:
d0:fb:5a:b0:04:da:b8:7b:fe:9d:87:a8:b7:04:79:
fe:91:50:fb:c3:01:0d:54:15:e2:fa:a4:be:2e:46:
87:f8:75:7b:49:4c:03:d4:ff:9a:c0:28:84:82:d6:
40:9e:b4:26:c1:e9:26:94:34:ef:f1:1b:b4:74:d1:
f7:e9:c6:90:dd:db:c0:71:b0:71:3e:66:3a:0b:01:
d4:44:a1:86:e1:dd:ef:25:83:b6:3a:ba:76:9c:78:
f0:ef:60:d2:c1:79:16:49:2e:4d:63:39:ff:7d:47:
ee:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:62:37:E1:2E:C1:F9:E9:06:05:8B:08:53:2E:09:87:26:DA:5B:BA
X509v3 Authority Key Identifier:
keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:42:1f:1b:8f:01:d4:34:c2:11:0e:a8:6d:eb:8f:db:d4:36:
a0:0d:1d:ee:80:c0:a1:47:0e:02:eb:7a:6d:df:fa:72:9c:6c:
ea:bb:10:91:6d:59:27:4c:58:7c:80:df:94:9b:42:fc:d5:ab:
a1:b3:9c:5a:ef:3b:d7:5a:82:d2:a0:a5:87:10:f7:ee:ec:4d:
95:bb:d3:ef:64:50:0d:54:96:73:03:2a:59:06:f4:51:4d:3f:
6d:3e:e2:82:db:92:0c:b7:db:4d:48:6e:06:5e:c3:02:ce:2b:
ff:f8:3d:5a:87:60:03:bd:c1:c7:25:30:20:51:0f:92:fe:76:
7a:01:c3:fc:30:d6:b6:50:6a:0f:d8:62:08:6e:73:d2:52:79:
46:57:28:7b:84:36:9b:1d:7c:6e:48:00:6c:48:13:66:76:b0:
45:ee:59:6e:14:6b:78:64:d0:5a:63:50:64:42:62:66:44:cc:
9a:5c:e4:cb:4b:a2:7c:d8:69:0a:03:b9:05:2b:b4:28:dd:5d:
b7:ab:0a:91:25:7e:8c:0e:2a:4c:25:96:20:0c:b8:98:94:ce:
52:48:ba:7d:e2:31:1d:b5:ae:f9:e4:34:3e:14:4a:f3:94:4a:
e8:03:73:ed:cd:14:c1:19:01:9c:b7:ae:ff:1a:e0:d0:71:1b:
7a:12:08:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:37:50 2025 by rpki-client