Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: XcjeesnoiF4M5dmoa/uSeoDvn+zvb5d0YS1HyMUPLz0=
Subject key identifier: 06:1B:28:FE:99:94:11:0D:4E:30:FB:97:30:2A:77:57:A1:94:24:8C
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 019881D4B37944F2B10835590425D0774C29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 034C
Signing time: Thu 07 Aug 2025 00:00:57 +0000
Manifest this update: Thu 07 Aug 2025 00:00:57 +0000
Manifest next update: Fri 08 Aug 2025 00:00:57 +0000
Files and hashes: 1: 21zXl1VT2wOLl9fEbNkRa053DOE.roa (hash: 5emuQVjcm3y58xrRXNGECOspFNylmBXZoEALIIh48B4=)
2: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: bfUMAqUJ2XUauTPKK2mN6razs769fV21jLpxd0tE4Cw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d4:b3:79:44:f2:b1:08:35:59:04:25:d0:77:4c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Aug 7 00:00:57 2025 GMT
Not After : Aug 8 00:00:57 2025 GMT
Subject: CN=061b28fe9994110d4e30fb97302a7757a194248c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:75:10:77:44:87:20:c4:a2:ed:c9:43:4e:40:
f0:24:21:6b:14:b9:e4:cf:45:8c:93:dd:60:4f:c1:
f1:2b:5b:77:11:0a:e9:69:d1:1b:11:82:df:d0:f3:
37:4f:b9:93:04:9c:10:64:46:95:a6:79:53:6d:7b:
30:ec:92:14:f4:ae:e4:05:1b:49:be:dc:ed:ae:8c:
71:21:bc:c3:9e:28:ea:2c:5c:12:10:b2:81:75:d9:
f3:66:e9:e9:42:17:4e:32:8b:2d:0e:1b:48:b9:84:
9e:63:ad:e5:31:84:2f:3e:8b:b2:28:59:1e:95:0e:
e7:0c:3c:8d:33:65:14:cc:5d:95:18:f0:c1:75:4b:
6a:90:40:1e:ed:a7:a1:68:e4:88:6e:61:f8:1b:b0:
46:9a:e9:ff:9e:81:e0:fe:d2:cc:25:46:20:94:66:
38:a8:93:8b:ac:9b:1e:c9:cd:ba:45:b4:8a:ec:d9:
a3:c1:cf:1c:25:bb:0d:2f:b8:a9:bc:8a:47:f1:38:
bf:f0:df:0c:51:48:d3:01:55:0b:25:b4:46:03:0b:
01:28:ba:a2:2b:c7:71:f0:de:db:f7:04:64:dc:9d:
45:ba:d1:aa:f4:2e:d9:60:28:9c:e4:f3:5d:d9:35:
27:e4:e4:fd:0f:65:91:e5:9c:30:fb:31:13:13:35:
76:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1B:28:FE:99:94:11:0D:4E:30:FB:97:30:2A:77:57:A1:94:24:8C
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:c3:b7:3d:01:26:2b:7c:fc:e9:b2:60:b3:39:19:6c:7f:e8:
ae:b5:4e:80:b6:83:19:d5:c8:2f:fb:ab:8b:4e:cb:25:c6:a9:
f6:be:5c:47:8b:1b:79:42:c0:c8:a8:fa:e4:e7:38:ec:09:e6:
5a:a9:16:80:3d:bf:d5:43:0e:23:5f:56:dc:80:38:0a:b5:7b:
d4:2c:df:39:ff:2d:d9:b4:04:0e:fa:6c:a3:d1:13:ea:9e:6b:
20:af:6d:dc:8d:a1:b1:56:4f:81:a8:9d:e2:03:5d:02:51:19:
7c:93:4c:2a:b8:42:a4:97:d6:36:5a:05:83:8c:96:5d:e8:e6:
df:4b:04:df:30:7c:55:05:a3:de:8d:cb:a9:21:0c:6b:80:ba:
3f:42:7d:88:13:07:81:72:ef:9f:94:92:0b:26:61:ad:c1:b8:
89:3e:8d:8a:65:57:4e:89:07:f0:15:0e:fa:03:76:67:42:0a:
21:4b:7a:74:f1:da:a7:cf:09:70:89:df:9a:60:a0:92:13:16:
1e:28:b6:58:07:ac:81:dd:13:42:19:ee:04:99:1d:85:6e:66:
d0:d6:83:8e:86:69:f4:58:54:f1:e2:4a:7a:71:9f:3b:08:d8:
e6:98:21:25:60:2b:7c:0d:82:ed:20:ed:c5:86:fc:12:c3:bb:
47:d7:f0:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 07:35:31 2025 by rpki-client