Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: 34y+5IbPbCzjWrN4aVqu/6+izkq0VgQueXQ81BFC0t4=
Subject key identifier: FC:A1:18:97:E9:C2:DD:BF:A6:93:75:FE:5A:88:C2:B9:78:DB:61:77
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 01976D3E54D98EA5B26E83417BD980E7823A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 07:01:30 +0000
Manifest this update: Sat 14 Jun 2025 07:01:30 +0000
Manifest next update: Sun 15 Jun 2025 07:01:30 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: Xd9bhn3fJWEv99Rr6et22mg/cxzsklg9B+3fprlUzYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:54:d9:8e:a5:b2:6e:83:41:7b:d9:80:e7:82:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Jun 14 07:01:30 2025 GMT
Not After : Jun 15 07:01:30 2025 GMT
Subject: CN=fca11897e9c2ddbfa69375fe5a88c2b978db6177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:85:c6:b6:6f:b3:19:5e:76:f7:f7:cd:c6:42:
20:51:4f:4c:a3:55:fb:84:05:28:8c:93:19:94:04:
94:53:c2:44:15:01:93:45:b9:2c:1c:c9:36:09:18:
d6:41:6a:90:95:ba:c4:4a:70:3b:36:ff:1f:03:c7:
e0:c8:6f:7f:bb:bc:fd:85:2d:31:44:57:b5:cb:b8:
33:89:11:d7:00:ce:4e:b4:89:36:3c:1d:66:bc:7e:
b2:cb:3b:c7:df:26:fe:1e:d5:6e:be:50:ce:19:8b:
5a:2b:73:6e:df:86:55:d4:fa:fc:0e:1c:83:0b:76:
1d:c5:54:f2:e4:87:a5:50:ab:2f:d9:49:e4:2f:3b:
ba:82:05:16:59:c5:49:f6:91:a1:f5:01:08:d3:e0:
e6:55:d1:1f:5a:76:84:48:8f:b3:d8:a2:12:16:24:
a8:49:1d:a8:4f:6c:55:3a:2b:55:29:6c:3d:4c:58:
d2:c3:e0:20:ca:40:7e:a4:b9:2c:80:62:85:61:e4:
9a:63:4f:d3:e5:48:83:60:34:67:f7:95:4d:06:d2:
91:4c:0d:4f:89:bb:71:e5:17:3d:f8:ce:d1:70:c0:
06:39:78:92:ae:e1:75:97:0e:71:b1:65:dc:26:bd:
1d:c1:38:68:34:19:cf:d8:a1:6e:2c:98:70:26:10:
03:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A1:18:97:E9:C2:DD:BF:A6:93:75:FE:5A:88:C2:B9:78:DB:61:77
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:53:cf:9a:8c:3f:9c:ae:c8:4d:10:ae:8c:81:ed:b9:78:7b:
2b:1a:3f:a7:06:be:ad:ae:7e:c3:ac:06:1b:55:d0:31:b9:75:
cd:5b:6e:55:32:35:06:62:56:4d:60:df:fe:21:e4:d4:47:96:
45:c7:8c:3d:7c:2a:11:95:88:39:33:39:3d:c3:2a:90:c6:88:
48:0d:fb:66:48:62:ef:51:78:10:79:a3:3f:ba:25:9a:c1:6a:
5e:49:9f:0f:89:a4:27:1a:5f:de:b5:6c:53:c6:f0:2f:72:e9:
bf:37:db:24:e7:ca:4c:5d:79:b4:25:d0:5f:71:1e:19:18:40:
94:06:08:db:15:c8:77:0a:d3:eb:65:9a:42:5a:6d:3d:27:87:
dc:c1:ea:23:3c:91:1d:b6:39:ec:d4:95:29:1c:a1:c1:b7:84:
35:29:ce:48:a9:e9:3e:e8:81:ca:94:12:2f:8f:81:97:44:ed:
18:bf:4b:fd:fc:1e:39:4e:89:14:f3:a9:93:7a:6f:c7:45:fa:
81:00:e0:73:da:cc:fc:c9:57:21:f5:7a:3d:30:2a:22:99:90:
46:47:4d:7a:76:8c:19:0c:03:fe:59:73:20:02:47:98:54:4c:
b4:35:5f:74:de:18:31:d3:b8:a0:46:3d:ac:40:bc:42:bb:02:
8a:f6:12:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:43:58 2025 by rpki-client