Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
File: QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft (raw, json)
Hash identifier: tlIGJWMh5Xj0/aFvClqk5OSMpW5YT6zw6pciRWUi3Ag=
Subject key identifier: 28:4C:79:7F:F9:5D:80:EE:57:B1:DE:1A:94:40:B8:F6:A7:0D:6D:03
Authority key identifier: 42:4C:16:5B:6A:49:34:95:41:C6:5A:F9:B2:15:80:16:38:19:F2:84
Certificate issuer: /CN=424c165b6a49349541c65af9b21580163819f284
Certificate serial: 01984589B2CE919345A4DD0763227104BD62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
Manifest number: 099D
Signing time: Sat 26 Jul 2025 07:01:48 +0000
Manifest this update: Sat 26 Jul 2025 07:01:48 +0000
Manifest next update: Sun 27 Jul 2025 07:01:48 +0000
Files and hashes: 1: QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl (hash: KvkArW5XY+zKciyq7vNlZc+WScagvMhHN8HMM8YwRy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:89:b2:ce:91:93:45:a4:dd:07:63:22:71:04:bd:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424c165b6a49349541c65af9b21580163819f284
Validity
Not Before: Jul 26 07:01:48 2025 GMT
Not After : Jul 27 07:01:48 2025 GMT
Subject: CN=284c797ff95d80ee57b1de1a9440b8f6a70d6d03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:bb:eb:88:99:de:40:5d:51:62:e1:0d:3f:
87:18:3e:ff:58:b1:4c:08:63:c8:16:dd:c0:f8:27:
65:21:05:dd:78:0f:2f:ef:dd:c1:d8:f6:b0:82:c2:
71:5a:2f:0a:62:d8:53:ca:c9:82:8a:68:83:8d:6c:
4c:42:c2:9a:fa:66:26:08:89:59:d6:11:01:47:6e:
fe:85:bd:1b:f6:0b:ec:af:24:44:12:ba:03:17:3b:
fe:c8:18:b5:24:76:88:12:55:07:aa:ab:f4:e1:af:
e9:16:69:d5:86:0d:c0:81:e6:50:8e:a3:52:20:fd:
cd:00:20:3f:f8:b4:af:8d:a1:62:41:f9:cb:c3:4b:
19:06:91:6b:ba:46:93:c7:05:14:6e:70:94:74:bf:
9b:83:5e:18:a7:47:2b:2b:71:6a:6c:9d:7d:61:0c:
e5:6d:a2:27:d7:22:1a:16:16:da:fa:2b:7f:58:62:
d3:d8:c9:a6:c1:3a:9f:77:7a:c2:f9:8f:d3:57:35:
29:d4:66:6a:ec:bd:c5:0b:cf:2c:99:04:53:46:11:
22:52:4a:57:92:c0:9c:94:ea:10:41:bd:74:44:9b:
28:d7:d0:d0:33:a4:05:c4:8b:15:25:af:33:b4:7c:
0a:2a:86:f7:65:89:53:6e:ff:e6:1c:e2:95:63:e1:
2f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4C:79:7F:F9:5D:80:EE:57:B1:DE:1A:94:40:B8:F6:A7:0D:6D:03
X509v3 Authority Key Identifier:
keyid:42:4C:16:5B:6A:49:34:95:41:C6:5A:F9:B2:15:80:16:38:19:F2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/70c498-6b1d-4d92-a4e8-ec3bf4816d36/1/QkwWW2pJNJVBxlr5shWAFjgZ8oQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:d8:37:c3:e2:70:48:40:81:89:12:d2:35:4b:64:95:67:f0:
b3:e1:60:91:ae:e9:bd:9f:9b:bd:0f:e7:fa:c9:e1:7a:cc:43:
a9:12:9d:ae:eb:f9:bb:08:c8:88:03:38:19:7d:f9:cc:7b:11:
7e:a1:67:99:84:0b:94:65:7a:2c:3c:f5:83:70:09:35:b5:f4:
2c:00:2f:c0:c3:86:2f:c6:c2:0c:1a:98:1d:09:b0:86:1c:67:
91:84:bb:ed:dc:57:ea:74:97:fa:3d:80:0b:56:9d:b4:32:b9:
e0:af:d1:6f:66:fd:64:74:2d:8a:4b:18:fa:fa:78:54:57:60:
c5:97:55:4a:78:ca:1f:59:bb:7c:82:9b:1e:54:af:c9:ee:44:
86:1d:1a:4e:38:51:82:5e:ad:f5:f1:a3:b0:31:2b:f8:bc:c1:
ee:b0:18:c2:0f:96:15:07:37:34:ef:4a:59:c9:1f:42:ef:d2:
ab:75:a8:0d:fe:81:1b:9b:45:90:c8:35:07:0f:57:11:4e:43:
8f:94:f5:fb:62:d7:7d:26:20:29:5a:9b:80:ab:f2:7c:56:d0:
83:76:39:ed:68:2e:93:05:a1:6a:25:5b:61:fb:d5:42:e1:80:
c7:8a:95:77:2e:3b:97:17:25:e6:bc:51:8b:04:27:ce:0d:70:
31:86:07:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:45:58 2025 by rpki-client