Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: znRr/BYita3qEvGGm3iMc6T/nT2znfeIg31l7mr0Wkg=
Subject key identifier: 74:11:74:C4:E6:67:44:35:08:3C:C8:52:E1:DC:44:B4:9E:1B:9B:78
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 0199228D24C1681125FE3027EB75750C5A71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 036C
Signing time: Sun 07 Sep 2025 05:01:39 +0000
Manifest this update: Sun 07 Sep 2025 05:01:39 +0000
Manifest next update: Mon 08 Sep 2025 05:01:39 +0000
Files and hashes: 1: Lh_NKL7D2mWFyhzHGugt5SgY5Oo.roa (hash: DjvsQWCGurUIzxMM5VASKrLIiSf6rVM8+QHojBeXG6I=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: oSUyi0x+Q58mlEJJn6bJJc6LEx0V++kgR7B9r6FrJMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:24:c1:68:11:25:fe:30:27:eb:75:75:0c:5a:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Sep 7 05:01:39 2025 GMT
Not After : Sep 8 05:01:39 2025 GMT
Subject: CN=741174c4e6674435083cc852e1dc44b49e1b9b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:75:f1:21:c5:82:f2:b1:ef:48:0f:9d:82:37:
95:d1:bf:d0:cf:61:53:ae:48:dd:3c:52:57:46:e9:
5d:e2:de:1f:a9:8b:32:3a:b4:a8:04:76:30:11:89:
7e:95:0a:db:a7:d8:39:0b:3f:f6:13:5e:cf:e4:32:
34:9f:19:53:d2:fa:53:f3:a9:19:26:6e:40:46:e1:
54:bc:f6:21:59:4c:a1:29:b1:3f:e7:d6:41:fb:07:
25:2d:19:44:1d:70:2b:0e:a9:01:9f:bf:f0:e7:b8:
2f:e3:de:a1:bf:d0:8a:52:cf:c6:bd:19:89:21:a6:
e0:52:2c:5b:d6:3a:78:1d:9d:e1:a8:8b:5e:03:38:
f0:c4:68:a2:36:1d:7e:2f:e2:31:4b:b0:3d:c4:e6:
9c:2f:86:ea:ed:e5:c6:29:96:0c:9f:8d:02:e1:1f:
ba:63:02:e2:1b:e8:c8:36:43:b1:5e:19:91:ad:4b:
3f:a5:f3:a5:99:25:e2:79:2f:8f:e3:b3:dc:f9:28:
7b:07:9e:84:7d:06:3c:80:c3:f9:22:0f:d0:96:0b:
bd:28:c7:d9:ba:ab:ee:2f:e6:83:24:99:55:4b:f1:
3c:60:67:7f:d6:63:6b:af:61:1e:a9:d9:8f:d6:f7:
c2:80:54:d9:10:23:3a:6a:2b:b1:75:b0:44:74:16:
04:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:11:74:C4:E6:67:44:35:08:3C:C8:52:E1:DC:44:B4:9E:1B:9B:78
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:ff:60:02:26:75:83:7c:c3:b3:5d:cf:34:95:b0:50:83:9b:
f9:a0:79:48:06:45:62:86:6a:22:d3:3a:9a:30:b7:56:ce:db:
9b:16:f4:a8:2d:41:fc:18:5b:f4:5d:76:f3:c1:db:3e:21:4e:
3d:51:29:22:86:5f:3c:ac:60:ad:14:32:ab:0e:c7:c0:12:1f:
3f:cf:4f:d2:44:4d:1a:81:0e:b0:57:8d:16:55:6b:98:0f:3e:
f0:9e:84:36:6a:0b:3e:00:1f:f6:5b:0d:e5:fe:04:e1:fb:7e:
d9:69:93:31:d4:0e:37:0a:b2:b9:28:e6:ad:36:1d:8b:6d:fd:
75:e0:1d:8b:b9:a1:fd:3c:e1:6a:ec:f7:85:88:b3:16:04:04:
ca:6f:ca:a7:2d:71:c3:39:fb:e9:cb:97:c3:bd:7d:da:b1:4d:
4c:04:3e:ab:f8:fd:86:ec:33:62:d1:52:fe:38:14:4c:91:1e:
40:a7:3f:e2:eb:2c:7b:80:f5:c2:d5:0b:15:88:6b:85:4f:5e:
f9:11:0d:80:54:4b:51:71:18:57:b7:0b:69:a3:de:ec:2c:67:
d8:3e:50:14:de:1f:ca:2e:29:60:9c:b8:21:4d:8a:2e:9b:3f:
5f:e7:a1:6c:39:49:80:95:c3:99:b8:bd:9a:51:e0:6f:be:b8:
5a:d7:30:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:40:03 2025 by rpki-client