Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
File: qqlyrDzBD3FspJhQRaXwgktgyh8.mft (raw, json)
Hash identifier: pMRosFLSKizoZD8S3uCqyfLiqk/kzT38rCtZXoT6Fpk=
Subject key identifier: 2F:51:0D:A4:24:45:89:9E:DD:DD:40:CB:77:E6:B9:A4:C0:1D:B6:DC
Authority key identifier: AA:A9:72:AC:3C:C1:0F:71:6C:A4:98:50:45:A5:F0:82:4B:60:CA:1F
Certificate issuer: /CN=aaa972ac3cc10f716ca4985045a5f0824b60ca1f
Certificate serial: 019922FA12512510B77D917CBB67A0443464
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
Manifest number: 017D
Signing time: Sun 07 Sep 2025 07:00:37 +0000
Manifest this update: Sun 07 Sep 2025 07:00:37 +0000
Manifest next update: Mon 08 Sep 2025 07:00:37 +0000
Files and hashes: 1: qqlyrDzBD3FspJhQRaXwgktgyh8.crl (hash: 7dwWLWX5zM33EDWxk2alCLNcdnd+tr7JKhI2HFRqmE8=)
2: yIGIxees9MuARoWN6t0oVINh_4A.roa (hash: geAsTIsbC4XBTKHwgmaJ0ZNmwh/Z8F8NnaAnGD8ONe8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:12:51:25:10:b7:7d:91:7c:bb:67:a0:44:34:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaa972ac3cc10f716ca4985045a5f0824b60ca1f
Validity
Not Before: Sep 7 07:00:37 2025 GMT
Not After : Sep 8 07:00:37 2025 GMT
Subject: CN=2f510da42445899edddd40cb77e6b9a4c01db6dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:08:49:63:b5:96:1f:83:b3:4f:57:6a:c4:2a:
4e:16:22:91:93:fc:e5:de:80:06:ba:73:ba:0c:93:
80:6f:11:39:e3:eb:ca:5d:47:d6:da:c4:90:71:a9:
8b:63:cd:a7:af:e5:bd:00:ab:69:70:83:25:db:d2:
53:0d:89:3a:b7:42:f7:00:8d:80:5a:93:6c:11:93:
82:b9:42:7d:a8:2a:71:6c:04:fa:ff:7e:8d:b1:4a:
48:73:74:bb:89:7d:70:92:13:b4:de:d7:6a:3c:48:
13:b0:3e:41:20:27:a9:08:78:37:a6:59:d4:de:a8:
e9:4d:87:45:c2:34:b3:7a:0e:a4:75:41:67:9d:c9:
db:08:ac:7e:e0:a4:c1:c2:e5:a1:bf:1d:aa:22:73:
4e:cd:5b:fd:58:dc:04:bd:7c:38:c0:64:97:e5:1f:
4a:2b:a9:f8:97:ef:62:0f:38:51:ba:08:2c:6b:76:
1d:3d:73:5a:c5:0f:62:cf:1b:38:f9:98:28:af:bf:
c9:e5:5a:6f:bc:2a:c5:9d:a0:56:cb:7a:47:e8:32:
c8:3e:0c:c7:05:81:87:3f:c4:03:0c:3e:b5:2b:75:
4c:01:ab:be:9b:64:16:53:f2:f4:f1:d4:7f:62:33:
73:ac:fc:0b:0c:66:a1:a7:7d:52:0f:34:30:d6:a5:
36:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:51:0D:A4:24:45:89:9E:DD:DD:40:CB:77:E6:B9:A4:C0:1D:B6:DC
X509v3 Authority Key Identifier:
keyid:AA:A9:72:AC:3C:C1:0F:71:6C:A4:98:50:45:A5:F0:82:4B:60:CA:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:84:62:ef:4d:1f:da:43:3d:14:60:b3:98:52:ec:1f:c2:d4:
4c:80:7d:cc:4e:c1:eb:6c:f5:9d:3a:94:df:cd:06:95:53:c6:
90:6b:85:53:a6:b3:b6:37:00:f0:39:c2:97:ab:6a:c3:c2:54:
6f:01:3b:61:f9:39:d1:5b:1d:1b:b6:26:61:48:b4:2f:4e:2b:
44:c9:ac:11:dd:8c:32:f7:7e:a6:21:8b:65:c4:c0:31:c6:f1:
38:36:f0:36:a2:c4:16:ba:2d:1e:6a:c6:fe:4f:10:65:c5:ff:
2e:4e:1e:55:25:7f:70:37:2f:aa:33:a0:69:96:78:94:49:be:
7e:2d:ee:97:ac:8b:ca:0a:fd:d8:35:16:c1:65:05:c7:4a:4c:
c4:80:96:8b:0d:3d:d3:70:f3:0e:5b:6e:86:94:3f:a6:28:4b:
0e:d2:77:8a:32:1c:a8:24:0d:22:a5:04:c0:b2:5c:9c:96:43:
8e:fa:ca:ee:2d:7f:98:c8:a1:70:dc:83:d0:a8:80:f8:1e:e9:
be:87:e1:5b:f3:02:3e:70:cd:f3:5b:c3:6e:f0:0b:b5:b8:e7:
af:41:4f:bf:ac:82:2d:a1:8b:3a:3b:79:21:36:31:e6:78:a4:
0d:3d:53:78:9f:d2:84:8d:ba:43:2f:aa:b5:78:69:ab:f8:f4:
77:af:36:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:24:20 2025 by rpki-client