Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
File: qnv9Qg21yuutoaIFXYe8faKwnAc.mft (raw, json)
Hash identifier: FAt02SX0MaokgT0b0M24RveWXtooPaN6EiN8P+gimtg=
Subject key identifier: 77:1F:DC:B9:CE:11:F0:D0:E1:A3:E5:88:33:83:D8:AF:46:5B:E2:0F
Authority key identifier: AA:7B:FD:42:0D:B5:CA:EB:AD:A1:A2:05:5D:87:BC:7D:A2:B0:9C:07
Certificate issuer: /CN=aa7bfd420db5caebada1a2055d87bc7da2b09c07
Certificate serial: 0198334BCEF91E6A6EC08D0A8EFC9659F85E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
Manifest number: 95
Signing time: Tue 22 Jul 2025 18:01:02 +0000
Manifest this update: Tue 22 Jul 2025 18:01:02 +0000
Manifest next update: Wed 23 Jul 2025 18:01:02 +0000
Files and hashes: 1: du9Q9bL5BOWedJK9qhvdrfuTC6E.roa (hash: yMHVcCfWCQ3tfd7XRi0bmpwcyLFeWTkztgI3BA0HK6Y=)
2: qnv9Qg21yuutoaIFXYe8faKwnAc.crl (hash: tFzBBp84doUD42EUOsTafySEP2j+axi/ZGfDhPpz+hg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Jul 2025 13:47:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:33:4b:ce:f9:1e:6a:6e:c0:8d:0a:8e:fc:96:59:f8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7bfd420db5caebada1a2055d87bc7da2b09c07
Validity
Not Before: Jul 22 18:01:02 2025 GMT
Not After : Jul 23 18:01:02 2025 GMT
Subject: CN=771fdcb9ce11f0d0e1a3e5883383d8af465be20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f9:f9:ac:48:8f:90:df:67:46:67:1d:97:8a:
0e:73:da:b9:fc:70:ac:07:60:bd:b5:cf:a9:6a:bf:
1b:9c:2f:b1:66:78:d7:b4:44:51:28:0e:54:cd:3d:
de:c2:44:dd:60:0a:a5:07:7e:c3:ad:e9:2a:c0:95:
31:be:b6:df:4d:4d:59:68:f8:ea:46:04:4a:fe:63:
c2:83:20:70:2a:cd:c4:3f:d9:11:c0:c3:66:04:ea:
4e:a3:e8:c5:1e:a8:6d:9f:36:9d:d9:76:34:45:ac:
50:ba:f5:36:c9:b8:fb:bd:79:69:52:25:54:93:c6:
5d:d6:16:b1:e7:86:e6:ac:da:1b:ba:a6:24:75:c4:
ca:82:19:fb:cf:7a:51:42:b2:98:a3:a8:c1:48:d6:
0a:a6:16:0f:16:7b:ea:73:dd:f9:9d:2d:39:88:58:
a3:30:7d:95:2b:e7:2a:0e:ff:68:99:1b:cf:86:aa:
f7:ac:63:45:56:5b:d1:69:64:8c:ce:a8:75:87:db:
42:20:a0:84:23:a1:21:4a:dd:39:0b:3f:ec:11:5e:
f0:01:6f:bd:98:d3:8f:7f:49:4c:69:20:b4:0b:7b:
4d:4c:07:42:1c:f5:23:28:af:9f:a3:0c:29:df:1f:
b6:e2:d5:d6:be:cd:cf:7f:f8:14:bb:29:7d:47:18:
d2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1F:DC:B9:CE:11:F0:D0:E1:A3:E5:88:33:83:D8:AF:46:5B:E2:0F
X509v3 Authority Key Identifier:
keyid:AA:7B:FD:42:0D:B5:CA:EB:AD:A1:A2:05:5D:87:BC:7D:A2:B0:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:e6:01:b5:1e:af:26:ab:91:29:ef:a6:e0:1a:d6:64:28:05:
70:86:53:1a:98:df:1a:6d:53:51:76:a6:04:6e:14:d8:4c:81:
33:9b:fd:69:98:08:7c:d2:21:4e:a8:ff:17:2f:18:4e:dd:b3:
7e:75:f4:80:df:1f:9f:13:36:db:1c:a3:73:c0:e6:91:59:3a:
ee:67:eb:3a:62:0e:45:7b:9d:f4:ee:08:de:2b:28:09:ed:5b:
e9:57:b6:41:b6:aa:c6:a8:11:a7:55:94:a6:c3:28:06:51:46:
a8:04:31:d9:66:59:73:aa:f8:30:7f:90:bd:4e:56:f0:67:0e:
7b:e5:74:69:fb:b2:e6:b6:0c:11:73:df:88:82:c6:65:ef:cc:
2d:a9:22:69:1b:f8:13:b2:9f:35:16:1d:e6:0b:cb:fa:f9:e9:
3c:c4:1b:cb:af:1d:ee:9e:73:e4:de:0f:91:39:83:ef:74:c5:
12:4b:84:b0:aa:a3:d7:2b:56:f6:b3:55:7a:ce:ba:e2:ea:50:
92:4a:bc:3f:61:91:fe:44:58:d5:82:84:de:af:f4:fc:9f:81:
7c:40:32:78:88:64:22:97:09:5b:58:73:10:37:03:bf:2a:3b:
bf:07:df:c4:e3:1f:06:78:dc:e6:ff:24:3e:bd:f8:90:5c:51:
1c:19:61:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 19:31:14 2025 by rpki-client