Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
File: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft (raw, json)
Hash identifier: GvYSxmF7UyfhRiqQOjxU/KEfAKzX1fN92XT30up16Oc=
Subject key identifier: 53:E1:E5:B6:D8:7E:24:DF:88:D0:73:54:C0:3D:EB:22:6E:55:39:DE
Authority key identifier: AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4
Certificate issuer: /CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4
Certificate serial: 01992CA21E15626C34266F53D905A073339D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
Manifest number: 0823
Signing time: Tue 09 Sep 2025 04:00:45 +0000
Manifest this update: Tue 09 Sep 2025 04:00:45 +0000
Manifest next update: Wed 10 Sep 2025 04:00:45 +0000
Files and hashes: 1: 4F9izwsHHxNkuKU97mIzesCX1fA.roa (hash: 9EEtKc3sBCyfxrwHugYM/2yhW3k3q6DEwjqGSNZdJ9g=)
2: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl (hash: QA2uUT/HnM6+BhTK1eyo0MlAjTOw9tQsThGumo45eJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:a2:1e:15:62:6c:34:26:6f:53:d9:05:a0:73:33:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4
Validity
Not Before: Sep 9 04:00:45 2025 GMT
Not After : Sep 10 04:00:45 2025 GMT
Subject: CN=53e1e5b6d87e24df88d07354c03deb226e5539de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9a:85:98:95:48:be:f5:f3:d5:6c:9b:6d:5e:
67:b3:5e:45:71:82:5e:25:2b:7c:e3:26:4b:3e:e5:
ce:a5:78:35:1f:ac:d6:96:cb:47:2c:78:be:4a:75:
17:6c:e9:7c:7a:8c:d4:2a:45:22:4b:26:d0:92:f9:
ca:56:e7:1e:64:19:cb:92:35:4f:c6:76:08:e5:40:
d3:68:07:b4:ec:16:f9:33:79:c2:3c:6b:91:c6:14:
71:87:ac:c2:1f:db:6e:8f:d7:d6:0b:e5:af:e5:26:
37:92:e2:ed:b4:25:cb:15:e0:84:ac:45:68:51:16:
eb:d6:6f:9a:e1:21:33:c8:1b:42:76:53:ca:70:ed:
25:e4:30:43:7e:de:a8:3c:b1:f3:9f:2f:00:86:bd:
b3:42:eb:c2:cf:fd:24:de:23:c1:cd:72:26:45:14:
fd:47:3c:39:d1:ea:45:e8:73:b9:17:1d:cb:bc:29:
6b:fe:fe:46:70:3e:d9:35:ae:51:c9:74:03:14:95:
b2:0e:0b:e5:53:cc:ce:cf:a9:1d:5b:13:94:96:74:
7f:60:75:0e:30:61:d1:a2:18:61:1a:9a:48:78:b0:
a4:1e:8d:95:aa:3e:ec:65:d7:50:d2:25:d3:5e:50:
11:00:ff:e3:79:7d:82:22:d7:2e:dd:4a:55:56:c8:
a3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E1:E5:B6:D8:7E:24:DF:88:D0:73:54:C0:3D:EB:22:6E:55:39:DE
X509v3 Authority Key Identifier:
keyid:AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:f1:32:1a:4d:59:54:58:e2:d7:d3:07:ab:43:72:84:21:6a:
0a:45:ac:c4:36:87:af:4f:97:96:ea:72:fc:87:09:56:b8:7b:
d7:f0:da:7d:21:ae:ca:35:51:b6:e9:7b:26:ca:88:9f:f6:e5:
08:95:1b:5e:a9:ff:17:f0:f7:d2:6f:21:df:13:a5:41:c1:3d:
62:be:1d:44:de:07:d2:ad:07:dc:c0:f7:1a:7c:b3:02:52:bb:
45:24:cf:10:74:7b:53:c2:00:f8:c9:e6:07:a8:a8:d8:a1:26:
65:68:72:39:43:ba:85:f2:6d:2c:95:5d:cd:25:4c:2e:76:bf:
59:95:76:44:9a:0d:8e:86:35:d7:d7:fe:13:f3:19:d9:8b:8f:
a9:b2:f6:f1:5d:60:dd:fe:3a:86:f7:67:38:42:4f:b6:0d:09:
48:14:3b:3a:80:95:da:c3:59:25:d0:67:d4:b9:48:18:4c:a7:
9a:0d:34:69:97:19:e9:7d:e6:bc:39:68:3c:8a:ce:66:86:e8:
6f:c4:33:51:dc:0e:df:2a:b4:e2:b4:64:1f:ba:b8:ec:cd:60:
45:f0:c5:0c:9a:21:b9:0d:aa:d9:bb:fa:8f:7e:c1:fa:90:a5:
33:95:e1:a3:1d:79:5d:f3:49:28:73:06:16:89:f6:ab:4a:ab:
d2:86:24:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 07:37:29 2025 by rpki-client