Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json)
Hash identifier: n1Rud6iPa8YNBfRGJ2EsCMv1TTgtMQeqypeR2a6n6X0=
Subject key identifier: 49:56:8B:CB:38:3B:EC:8D:72:2E:E0:A1:EF:06:91:7F:36:9C:70:88
Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Certificate serial: 019960FDB865E5626E0F95E63B2A7DDCC9A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
Manifest number: 02EE
Signing time: Fri 19 Sep 2025 08:01:04 +0000
Manifest this update: Fri 19 Sep 2025 08:01:04 +0000
Manifest next update: Sat 20 Sep 2025 08:01:04 +0000
Files and hashes: 1: UGApytPJPEIPFbzs4L0oU_KIdHM.roa (hash: cf5ZtJTmEf4eW9FhhtNmIkoS04da9/P7WQkJtlas3+0=)
2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: hXsk+ckYmhRDYQ9Vkga3cli46rElC3i2qFZnLtSldPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:60:fd:b8:65:e5:62:6e:0f:95:e6:3b:2a:7d:dc:c9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Validity
Not Before: Sep 19 08:01:04 2025 GMT
Not After : Sep 20 08:01:04 2025 GMT
Subject: CN=49568bcb383bec8d722ee0a1ef06917f369c7088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e9:28:9d:e6:23:3f:8d:06:f8:e4:a5:cb:7f:
9e:51:51:de:5d:94:3b:3c:01:bf:1e:68:18:2e:2c:
6d:e7:55:98:dd:0c:27:f4:d9:7c:e5:a8:95:8e:43:
3d:6f:92:bb:98:1e:aa:80:0a:05:0c:89:5a:3c:1a:
1b:21:34:ea:17:d3:ed:a3:c0:dd:80:c3:15:18:69:
32:8f:f2:ab:1e:22:c1:e0:47:cf:0d:90:e8:f8:09:
a8:0d:15:38:4c:08:d6:63:d3:40:0a:78:3d:d2:bc:
f2:d5:e2:a6:c4:d6:c7:b6:e6:15:95:69:ae:b3:4d:
41:60:9a:c4:98:0c:d5:8f:57:73:1a:08:0d:3b:72:
5e:46:b0:1d:af:fd:08:d8:8c:46:6d:05:c6:2b:f9:
cc:35:5b:38:a3:80:3f:f4:45:85:a7:26:20:9c:9a:
0d:37:76:32:ef:37:75:37:4a:c2:f6:84:36:9b:f2:
36:59:da:0d:c5:1d:d9:03:0d:7a:11:19:d0:88:ba:
3c:98:30:51:da:82:21:f5:9a:2b:ef:fe:36:b3:9a:
58:e6:26:8d:36:3e:86:0d:64:e2:15:8a:b4:1d:3d:
2e:6d:02:cc:0c:a3:c3:08:d3:ed:20:af:15:95:48:
c1:6c:33:69:8d:16:44:22:d9:eb:bc:b3:53:18:26:
bb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:56:8B:CB:38:3B:EC:8D:72:2E:E0:A1:EF:06:91:7F:36:9C:70:88
X509v3 Authority Key Identifier:
keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:6c:bf:29:d9:65:f6:7a:02:41:1e:d8:10:61:dc:c9:96:50:
37:95:0d:f4:61:12:c5:ca:36:37:b9:48:32:67:76:0b:32:c7:
c3:a6:50:d8:83:b8:c6:73:6a:1e:ab:4d:0e:ca:9b:f8:c1:48:
ce:d4:39:6a:9d:c4:4b:9b:97:f6:f0:f9:77:15:86:b8:b4:5f:
33:2b:52:40:61:6e:1f:d5:d9:f4:87:bf:a6:c4:1b:61:9a:a4:
a4:79:92:42:aa:47:aa:4c:62:7b:da:e4:ae:62:39:9e:23:bc:
57:f8:e0:77:f7:ba:eb:67:a8:0a:a4:96:13:a6:d1:d6:77:51:
c2:64:11:22:cb:39:9f:b8:fd:d4:70:6f:40:73:86:09:6f:b6:
85:22:37:5f:b2:0b:4e:66:a4:70:59:8d:ed:0e:06:d4:dc:d8:
d0:f2:18:15:1c:9e:4f:bf:a0:76:b8:c8:27:7b:eb:19:d9:b5:
02:10:5c:e5:8b:7f:05:3f:37:1c:b1:98:26:49:44:eb:53:10:
6c:6e:8b:fa:28:fd:c5:3e:1d:78:a3:48:fd:9f:35:ee:99:38:
d9:29:e0:58:c5:05:de:da:14:7b:08:4c:76:2c:f6:81:1b:9c:
82:95:56:8e:8d:db:dc:e2:1d:05:c4:65:3c:94:a3:81:a3:41:
54:36:1d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 17:02:20 2025 by rpki-client