Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json)
Hash identifier: 3rOqK+Q50lrJkMwCn79XapbrMYDhyhFflmv1MSWr550=
Subject key identifier: C7:3A:EC:78:FE:FD:5F:06:80:63:24:36:DB:F8:5B:02:08:62:D5:A0
Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa
Certificate serial: 01993794CF820C4B083C6C019BE68D0AC64E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
Manifest number: 167D
Signing time: Thu 11 Sep 2025 07:02:03 +0000
Manifest this update: Thu 11 Sep 2025 07:02:03 +0000
Manifest next update: Fri 12 Sep 2025 07:02:03 +0000
Files and hashes: 1: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: Wi+TzNizDeP/9FaJWaqk/0BqWAbD+OtIarxsbLeLZZA=)
2: Y6QTaw-FjofB_OhkxIXlcm9P4-I.roa (hash: 4Yb+dRFpkkMPfeWzASwoM5NrRtcERhjg7Yl8jCZxXRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:94:cf:82:0c:4b:08:3c:6c:01:9b:e6:8d:0a:c6:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa
Validity
Not Before: Sep 11 07:02:03 2025 GMT
Not After : Sep 12 07:02:03 2025 GMT
Subject: CN=c73aec78fefd5f0680632436dbf85b020862d5a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a5:36:06:a7:c0:da:52:62:7a:8f:01:3e:82:
40:01:d9:9a:c4:70:b2:b8:43:90:e0:08:4e:2f:a8:
be:3a:89:2b:81:6b:78:c0:0a:31:6a:ad:3f:10:ee:
ed:51:dc:cc:eb:d6:49:0e:3c:1e:ef:1c:57:19:36:
04:75:b6:11:55:b3:70:1e:d2:74:9d:ab:28:dd:78:
9d:69:8a:14:ab:e9:a7:8a:e9:dc:c0:8b:eb:7e:ad:
68:1c:79:c8:e8:51:b8:d1:ea:1f:92:20:b7:8d:10:
53:ea:c5:94:36:0c:aa:c0:45:91:8c:cd:8c:1d:c2:
84:a7:f2:b1:6b:f1:8c:56:4e:d4:00:cc:92:b0:7c:
8b:b0:cd:99:b8:77:16:c2:27:61:91:fd:40:18:6f:
f8:f4:99:d1:bc:ab:b5:6d:0b:15:d7:89:6b:fe:60:
a6:7b:56:29:ab:58:d9:ee:1f:e2:4e:55:3d:54:52:
3e:71:1c:f6:3a:92:65:8c:43:2e:77:ec:08:04:da:
9c:2f:d3:62:7f:a2:4a:93:09:c5:ca:7d:36:c1:b2:
15:7a:99:50:44:b5:63:4b:cb:8c:37:6c:32:46:96:
78:46:d6:ce:1f:6b:f0:b3:35:63:80:32:61:7e:97:
5c:43:a0:aa:b1:e3:62:8e:c5:e6:4a:67:34:73:e9:
d9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:3A:EC:78:FE:FD:5F:06:80:63:24:36:DB:F8:5B:02:08:62:D5:A0
X509v3 Authority Key Identifier:
keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:50:c3:f1:12:09:cd:ee:68:66:9c:b3:eb:16:f7:8c:f0:db:
87:99:4a:5e:45:f9:2b:8f:73:09:4e:b2:1f:0e:f2:86:8d:f0:
bf:ba:dd:d5:1f:38:2f:c8:fe:b1:b6:ff:e2:e0:4b:0a:25:77:
1a:f2:ac:55:aa:cb:15:fe:00:76:33:5e:ee:f3:1c:6d:da:7f:
5e:a2:db:c6:38:db:66:06:53:73:b6:14:13:2f:5c:1c:76:db:
9b:3c:29:bb:6a:00:ed:77:43:1d:19:43:d1:4a:a1:dc:d5:d1:
04:3b:fc:a7:79:9c:16:d4:af:de:c7:16:e0:46:2d:61:1b:a8:
0f:08:8a:b1:a5:e9:89:67:bd:b3:51:ed:32:76:52:ab:83:80:
9d:df:c0:39:61:30:46:34:11:7b:6c:1c:8b:8e:e5:b9:a0:c9:
91:39:a7:64:a1:54:8d:fd:97:3f:1f:eb:a1:96:58:6f:c8:d0:
74:90:86:39:56:27:e3:23:b8:71:7a:3d:e0:9e:51:21:d3:4d:
b7:3c:9e:3c:76:5e:24:68:8f:69:72:76:e3:c4:d9:12:6c:e5:
e0:47:19:b4:b6:a7:42:5f:1e:ee:96:29:b5:19:14:30:c1:88:
1d:38:ba:01:b8:26:b7:ff:c6:67:50:25:e0:9c:8c:0d:ba:3d:
ff:e1:03:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 12:57:41 2025 by rpki-client