Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: qVvIt8KqaeZNKwWJ+bEVj8J3q3owhy0EeaczCITS8fk=
Subject key identifier: C5:C7:32:DF:5F:18:7D:39:B4:60:52:2A:76:63:37:AC:D0:F7:8A:6B
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 01986BBAD51A9F1E8904357E2B7EF89A4CEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 0997
Signing time: Sat 02 Aug 2025 17:01:02 +0000
Manifest this update: Sat 02 Aug 2025 17:01:02 +0000
Manifest next update: Sun 03 Aug 2025 17:01:02 +0000
Files and hashes: 1: PTvQgS1qnjLwo9s4LdFb_Ohs-14.roa (hash: ISrdGe09G63GrIhvFHUR6KGbQ/gtnJbbuoeTtm56a1E=)
2: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: uv0SG72Gkse+XFf5sJwE2WDUFawR15q2yjX5XJEhXsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 03 Aug 2025 15:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:6b:ba:d5:1a:9f:1e:89:04:35:7e:2b:7e:f8:9a:4c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: Aug 2 17:01:02 2025 GMT
Not After : Aug 3 17:01:02 2025 GMT
Subject: CN=c5c732df5f187d39b460522a766337acd0f78a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:b9:cd:0d:16:bc:ea:e1:39:e5:75:16:53:7f:
32:72:ed:0a:8b:78:b3:18:ca:90:33:37:27:22:08:
a1:67:94:90:29:4c:10:91:07:23:65:43:17:d7:74:
f3:58:3e:1a:2c:53:78:6a:8e:ff:02:11:67:8c:01:
21:47:8b:de:f7:7b:0c:c7:f7:af:7f:05:e1:96:1e:
ee:19:52:cd:47:5d:04:df:2b:cb:a8:a2:aa:b4:29:
95:bc:d0:65:e8:1d:de:aa:b0:fd:08:ee:39:10:a6:
d9:32:e4:4a:fe:52:0c:f8:82:16:fe:66:a9:bf:e9:
7b:9b:c8:a8:fc:c2:84:bb:60:54:0c:46:2b:57:5f:
ec:ac:61:a7:4a:34:0d:6c:a6:83:67:9a:40:01:eb:
39:36:c8:8f:36:bc:0a:78:18:ea:1d:73:d6:bd:4e:
43:7c:72:2c:17:05:f4:05:6b:e1:4b:c3:ba:00:ec:
be:6a:a3:57:c7:ae:ff:35:98:b6:96:ab:f1:2c:58:
bb:0e:3d:fe:bc:21:7b:7b:13:b4:6e:99:2a:30:cd:
3a:db:1e:f7:e7:20:e6:58:a2:33:fd:b5:38:d4:c6:
62:4c:9f:fd:9e:d5:a2:58:e9:f4:10:58:1d:1d:f0:
67:01:bc:6c:08:e7:b8:e9:73:55:e7:b0:8b:8c:59:
cd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C7:32:DF:5F:18:7D:39:B4:60:52:2A:76:63:37:AC:D0:F7:8A:6B
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:c2:52:7a:d9:ac:98:e8:c1:20:32:a3:7a:f8:d8:49:5a:a5:
48:8c:2c:78:29:bc:fa:40:cd:b4:29:15:84:83:51:a8:ed:cc:
76:48:27:20:fd:b9:ed:40:17:c6:e5:4e:03:c5:38:a6:79:be:
23:be:17:c0:bf:45:3e:88:23:0e:98:2c:8c:5c:ce:34:de:72:
51:84:50:15:38:2e:32:4e:dd:6d:bc:1f:ab:0f:50:c8:64:7a:
57:b2:35:92:fa:68:07:69:c5:66:ce:c7:76:fc:ab:11:f5:d4:
71:cd:f1:eb:7e:c1:48:73:ad:18:80:14:f2:e9:c8:38:2d:78:
c1:b1:42:c5:63:82:50:fc:8a:56:53:ad:69:86:23:27:38:20:
c9:17:fa:ca:df:5a:19:f3:d2:bb:4e:b3:89:e3:9a:3f:92:0c:
0d:4f:ba:ef:25:7f:6f:93:e8:6b:fb:53:86:21:f4:3c:eb:6e:
27:fc:bb:4a:86:c5:9c:0a:b0:70:ab:aa:51:7c:7f:f0:3f:9e:
ff:3b:ae:0b:01:bc:47:78:02:34:1e:c4:44:7f:6b:bf:25:e8:
83:fb:1c:0b:f1:87:89:2d:22:2d:86:9a:fe:48:ab:d4:6e:61:
82:bc:14:a9:c3:33:e3:51:08:c9:78:fe:e0:24:b2:bd:b6:b5:
fe:e8:e2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 3 00:43:11 2025 by rpki-client