Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: MOJ2MJ2Wxu2ZroYlwJsjaIuT7zX88iMOUJv/Aq9J7Ww=
Subject key identifier: 4C:16:98:2B:43:36:DA:0B:D3:AC:98:37:E3:A6:AE:3D:30:85:40:06
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 019921B225C78E7C6973C5FD65A5E155CDC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 12D5
Signing time: Sun 07 Sep 2025 01:02:26 +0000
Manifest this update: Sun 07 Sep 2025 01:02:26 +0000
Manifest next update: Mon 08 Sep 2025 01:02:26 +0000
Files and hashes: 1: CRyZWe4rqJ2qdiNWuAP-OJQeZow.roa (hash: g+uZ3IirtTKelPa51RylP3yoQBkp1cF9hHY0LUNHp8g=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: I7EPD6jqSttmiHCIQjT3boiXvqSkfyI7jWLSn4sEqUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:25:c7:8e:7c:69:73:c5:fd:65:a5:e1:55:cd:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: Sep 7 01:02:26 2025 GMT
Not After : Sep 8 01:02:26 2025 GMT
Subject: CN=4c16982b4336da0bd3ac9837e3a6ae3d30854006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:71:cd:79:a3:24:f1:ab:08:4b:a3:11:39:e3:
d1:de:fa:91:86:f6:69:bb:bb:cb:cb:42:32:66:b8:
49:4d:5e:e3:8d:07:7e:d2:ed:81:1e:86:db:cd:1b:
fd:67:aa:0f:60:b8:cf:53:d5:58:a0:52:86:95:4c:
99:8a:84:d7:15:79:f6:9b:56:4a:23:80:bd:22:3d:
37:ab:13:75:b9:bc:f3:70:92:62:60:ef:7a:71:37:
d9:2d:6e:83:a3:98:23:75:14:74:2e:c0:b7:42:ae:
65:b6:df:01:44:2c:6c:df:66:21:e9:9f:75:53:be:
35:51:83:c2:62:30:da:63:f4:be:82:58:0a:90:57:
1b:65:b9:1e:e6:21:f0:e7:7b:05:74:a0:f9:a3:73:
c5:be:9c:af:4e:c0:ef:9f:a0:b1:cb:6d:31:f1:a5:
c9:66:fa:55:93:4b:c3:7c:d4:88:85:93:35:31:9e:
9f:e1:b5:c7:dd:e1:f2:1d:5b:13:14:f2:ea:ac:35:
1d:1e:4f:27:bd:e7:35:41:0f:5c:ea:1c:ce:74:0c:
d3:d4:ac:08:8b:36:a1:fb:a0:62:93:50:a1:1d:67:
52:fd:f9:86:80:94:a8:2b:ee:8d:f8:21:ec:7f:84:
39:7d:8e:56:41:a3:77:83:46:18:73:91:17:47:ea:
fa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:16:98:2B:43:36:DA:0B:D3:AC:98:37:E3:A6:AE:3D:30:85:40:06
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:46:4e:f5:f1:09:9e:21:03:7c:a5:e1:ea:b1:1a:18:e0:0d:
10:5d:98:90:8d:1e:5d:49:2e:ef:cc:0d:15:52:3a:f1:22:9b:
f3:b3:e4:91:bd:29:48:d7:ac:38:52:44:e7:69:8e:33:b2:6e:
ce:fe:a4:af:96:21:c1:b9:97:9a:b2:55:e9:c4:af:44:5a:2f:
56:d0:a4:93:2a:d6:4b:52:15:66:c5:b9:a3:69:30:41:9e:e7:
17:d2:54:e0:72:80:9d:d6:75:2e:2a:14:cd:84:55:69:e2:ab:
c4:50:4a:cd:b9:14:b0:52:ec:f5:d8:9e:e5:44:e2:75:64:f1:
84:b4:94:95:0c:9d:23:c8:77:3c:8a:e1:85:24:d0:55:8c:3e:
dd:ae:88:1f:6f:76:9c:9b:1a:7f:67:36:0f:c4:a8:fd:b9:92:
a7:b7:41:dc:36:40:e2:77:15:73:5e:0a:87:06:31:64:ee:d6:
29:90:29:a8:f7:12:c4:9e:53:cb:55:e3:a2:35:35:e3:87:e5:
36:1b:99:61:45:c9:55:8a:a6:99:90:a7:89:cf:bc:f9:a1:a8:
86:6a:0a:a7:dc:9c:5b:6f:d3:ac:b0:30:34:c1:71:7b:51:d7:
ec:50:86:c8:91:d2:30:61:60:22:40:31:f4:57:57:25:d9:28:
65:59:df:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:35 2025 by rpki-client