Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json)
Hash identifier: IyFyPSZkgtAo0hb5WejI5aBFOAjwB6ITVsPEi47qwnU=
Subject key identifier: 02:D0:3D:59:19:72:51:47:A9:55:36:9B:7B:F6:FB:FF:87:83:81:67
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 019921B13328F489CF6A895C8E663A63DD8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 01:01:25 +0000
Manifest this update: Sun 07 Sep 2025 01:01:25 +0000
Manifest next update: Mon 08 Sep 2025 01:01:25 +0000
Files and hashes: 1: JDPCHXAUbfBXZ-JAE6cFE-tGXMI.roa (hash: bOxTgT+7J9XF4HocPumdm4M3ak6meIWnJq5cg5Hpmfs=)
2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: TMSy/lIdAHxUrekWSXjvumSnMKf+d0QOmj0CaE3a3o4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:33:28:f4:89:cf:6a:89:5c:8e:66:3a:63:dd:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Sep 7 01:01:25 2025 GMT
Not After : Sep 8 01:01:25 2025 GMT
Subject: CN=02d03d5919725147a955369b7bf6fbff87838167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:bb:16:77:04:3d:47:af:00:fb:6b:56:cd:3f:
b7:d9:0e:04:76:01:09:c0:c2:5e:96:0f:90:de:40:
19:7f:87:85:37:5c:e5:9a:2a:a4:53:3a:53:0c:1c:
de:d7:ad:07:a6:5a:0c:9f:af:03:e1:bd:47:d3:96:
a2:12:ba:2f:6d:38:c0:46:99:0d:df:0e:fb:67:a5:
6d:f9:5d:5c:7f:02:cb:a7:ba:f5:e5:8b:6b:47:55:
10:f1:d1:79:0e:a6:96:18:42:70:c1:22:3d:a3:8f:
8e:fb:15:e7:53:1a:46:84:30:67:79:53:c8:33:23:
87:ec:35:cc:5e:61:05:c9:2a:47:13:e8:23:4c:68:
b9:cc:a9:fc:dd:ad:a4:7e:6f:57:8f:0e:17:67:18:
fd:48:44:3d:8e:ca:1b:42:d0:4f:bb:9e:4a:9b:b8:
c4:a3:64:73:a7:6c:5f:1d:21:fd:f0:17:25:1d:5a:
02:74:6d:e7:62:72:c9:f8:55:16:34:7a:63:9d:2e:
02:ec:13:d0:5a:41:80:dc:38:0b:5e:28:37:da:29:
74:21:06:22:5a:6e:33:8c:0b:18:42:30:14:e9:a6:
cf:e3:d1:5e:fd:0e:fe:3e:0c:cf:ff:62:a0:96:84:
82:c2:b5:ad:a0:f4:17:76:ee:a3:38:a1:dc:1c:f4:
3f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D0:3D:59:19:72:51:47:A9:55:36:9B:7B:F6:FB:FF:87:83:81:67
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:a9:27:81:98:15:a4:d3:a7:25:65:79:66:a4:fe:0c:d9:27:
2c:85:7b:3a:6a:60:6c:85:42:38:af:a7:10:02:b1:96:54:1e:
68:28:7d:78:62:ec:d5:f3:79:4c:53:66:43:ff:d1:5b:e1:e3:
7e:2f:05:94:3d:05:58:3c:5a:80:ef:a6:71:8d:78:3c:88:e6:
cf:ac:40:be:e0:f9:0d:ae:1e:c4:9a:74:ef:3b:2c:ad:91:7d:
4c:b6:97:fc:49:3d:96:b0:0c:01:71:72:8b:d3:01:87:7f:ef:
10:b1:d4:82:9b:13:64:37:12:5e:85:4c:e9:83:3e:63:c6:ae:
ee:bd:77:ae:6a:b0:5f:06:57:f9:38:79:bf:14:01:2c:e7:0c:
29:f2:bf:b5:ef:c4:57:a0:0b:23:2e:14:99:79:69:5c:03:30:
34:cb:cd:c6:a0:db:87:93:44:1e:b9:8e:6e:d9:19:61:06:cc:
9b:e1:10:3c:19:70:58:3e:56:b6:e7:a8:7a:12:e6:a5:a8:a3:
40:da:a0:a8:28:5c:ab:ea:b1:40:a6:4d:a1:d8:6f:9d:f1:dc:
6d:7e:21:87:29:93:8a:7b:a3:95:d6:e6:76:ec:0d:97:80:e5:
45:75:7e:6b:71:bb:b5:33:cc:3a:5a:e5:9b:e0:af:ef:29:88:
4e:9b:f3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:06 2025 by rpki-client