Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
File: QgOHyUE02aCP_TJjCWdwOtxYK2w.mft (raw, json)
Hash identifier: dNPH+ELQCWebK4a+F7GQeJgCjCqUsx6KHUy/8SR+NDA=
Subject key identifier: 48:B4:A7:C9:AB:EB:28:32:E2:49:5B:ED:3A:72:C6:3E:46:8A:67:3B
Authority key identifier: 42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
Certificate issuer: /CN=420387c94134d9a08ffd32630967703adc582b6c
Certificate serial: 019882E7BA79922449616A1A279E9F5384C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
Manifest number: 0D3F
Signing time: Thu 07 Aug 2025 05:01:21 +0000
Manifest this update: Thu 07 Aug 2025 05:01:21 +0000
Manifest next update: Fri 08 Aug 2025 05:01:21 +0000
Files and hashes: 1: 6rV9eDtLqjrWZLXprUqcr99pZaA.roa (hash: dlsrhoQ5PwXdAjp/9r3Vgwhl3pAOBofCxgLlYlDOE18=)
2: QgOHyUE02aCP_TJjCWdwOtxYK2w.crl (hash: D9ZesMxmBcBtibPEIDz083V0TALu2QlT1DAvJwbGk9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 05:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:e7:ba:79:92:24:49:61:6a:1a:27:9e:9f:53:84:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=420387c94134d9a08ffd32630967703adc582b6c
Validity
Not Before: Aug 7 05:01:21 2025 GMT
Not After : Aug 8 05:01:21 2025 GMT
Subject: CN=48b4a7c9abeb2832e2495bed3a72c63e468a673b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b7:a5:aa:12:ef:aa:c0:48:61:28:58:84:fe:
f8:75:2d:43:a0:6f:d2:bb:05:f4:0b:00:6c:7a:86:
77:bc:3b:9c:2d:cc:c7:6f:9b:cc:ba:cd:08:f7:bf:
bf:ae:43:df:89:0e:4d:6f:95:ec:f8:14:4b:c1:a9:
13:11:39:00:50:46:d6:8f:0b:72:9a:14:ca:a3:da:
6c:14:c9:e0:cf:63:eb:47:33:b5:83:93:3a:9b:d3:
f8:30:e9:ca:38:2c:6b:13:cf:28:48:1c:31:3a:94:
67:f6:95:23:7d:e2:8a:e1:c8:2f:72:54:23:ae:83:
b1:89:4c:7d:26:88:f1:3c:cb:79:49:c2:dc:93:70:
28:16:d2:a9:99:9c:ee:de:f4:6b:45:58:20:06:c6:
0a:4c:1a:67:d0:94:00:85:8a:a0:df:55:c6:30:5e:
a5:c4:20:15:89:2d:86:70:3b:7b:91:1a:3f:a6:d4:
dc:dd:9a:e8:9d:1b:45:bc:65:47:7b:92:2c:03:af:
f7:fd:31:4e:5d:68:f7:f2:e2:a1:d9:98:a8:86:ad:
22:7e:54:7e:af:0b:2e:f7:7b:01:45:c4:d2:c2:ea:
4d:db:ad:e9:6b:82:1d:5b:08:8e:47:15:c0:cf:8a:
00:3d:b9:e1:55:aa:d4:c5:ec:a2:35:be:0d:50:ed:
fe:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B4:A7:C9:AB:EB:28:32:E2:49:5B:ED:3A:72:C6:3E:46:8A:67:3B
X509v3 Authority Key Identifier:
keyid:42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:85:1e:46:ac:79:33:1e:e3:12:c5:04:bf:a6:54:96:d9:e4:
f2:4d:c2:10:0b:3d:4a:1b:98:cb:69:f7:58:8f:fe:3c:92:04:
89:8f:38:90:af:49:26:0a:40:a7:eb:de:40:1c:7f:cc:77:72:
69:e4:d5:cb:39:ef:75:7d:35:ae:c0:67:51:db:9d:83:52:2d:
f2:f3:22:03:0d:f8:ec:37:2a:62:34:b2:6b:2b:b9:31:f9:d6:
38:e9:ff:d1:23:11:a8:e8:03:c3:e7:d8:ad:ea:b1:fb:2c:7d:
4c:bc:2e:fa:55:0b:36:9f:5c:e8:0a:77:8b:a4:5e:7d:f5:7b:
7c:3b:45:99:4c:25:23:1d:fd:9f:5d:e1:d7:30:fd:b2:be:4f:
e0:13:ff:dc:67:b3:5d:ab:fb:3b:93:94:4a:53:b9:f9:39:45:
92:38:13:20:4a:b2:50:cd:5d:79:b2:31:13:21:ad:12:f3:bc:
7b:4d:87:bd:b0:df:18:85:85:85:9c:05:44:4e:eb:9c:ba:c2:
22:2a:de:7d:f6:61:c0:38:0e:cc:fb:f9:7d:12:97:05:9a:dd:
b7:5f:0e:88:f0:fb:ea:c3:42:0d:8e:0f:1d:60:3a:37:b7:82:
20:70:a1:f5:2d:4c:82:b6:11:a8:5e:9b:ae:66:bb:2c:36:8d:
ca:b6:f2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 11:07:20 2025 by rpki-client