Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
File: QHSniVh1zyxnhUT2zm9LI59JKfs.mft (raw, json)
Hash identifier: 8se2l59jiti82ySTl0xbRJTkiPYqrc61feav8vP3wi4=
Subject key identifier: 98:5B:E9:7A:2E:D2:18:D9:C7:9B:A5:DD:E0:81:74:45:6B:E7:55:37
Authority key identifier: 40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
Certificate issuer: /CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Certificate serial: 0198CAC8DAF8102F3FC3A79075AE738D098A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
Manifest number: 1643
Signing time: Thu 21 Aug 2025 04:00:17 +0000
Manifest this update: Thu 21 Aug 2025 04:00:17 +0000
Manifest next update: Fri 22 Aug 2025 04:00:17 +0000
Files and hashes: 1: QHSniVh1zyxnhUT2zm9LI59JKfs.crl (hash: udAJ4cwsk5reBcIcNBp8U0BQFZIBOQuYzdF1OTUj5VI=)
2: wQqY6GzbDftcPzXJa8kVYZmeUUk.roa (hash: JDvmaY6VGQlVNt+ZPlklOrTqgJ6a+KsUqH/Pcr7SIcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 23:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:ca:c8:da:f8:10:2f:3f:c3:a7:90:75:ae:73:8d:09:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Validity
Not Before: Aug 21 04:00:17 2025 GMT
Not After : Aug 22 04:00:17 2025 GMT
Subject: CN=985be97a2ed218d9c79ba5dde08174456be75537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5a:9e:33:da:45:c6:62:5d:ee:1b:66:4d:93:
59:a6:ce:93:96:6b:6a:96:ed:95:3a:22:6a:0d:96:
8f:be:13:a9:e9:56:4b:a7:2a:83:b3:22:50:63:be:
97:6c:6c:91:b3:2b:60:70:23:c4:d3:ee:8c:34:54:
e1:f6:f0:c7:74:84:c3:8b:12:bb:63:ad:8f:25:62:
ef:50:14:d8:d4:26:57:1f:11:4e:81:18:57:33:2a:
06:72:8e:6b:b0:e2:41:a2:de:60:83:7c:56:c6:85:
5f:3b:60:fd:a0:8a:3a:80:02:f7:d1:ee:eb:ca:91:
81:c8:80:1c:6d:dd:3e:e7:80:6e:8b:90:a5:03:b0:
a0:6e:4b:bf:0c:8a:34:9c:c4:4c:e1:05:53:ad:fe:
8f:dc:37:71:88:97:06:1c:30:ed:e8:eb:99:0d:a3:
b1:03:ba:1d:47:a2:2a:20:b8:b3:0f:cd:58:4e:cd:
e5:cb:16:de:22:e3:98:2c:9e:2b:42:c9:d2:ab:b0:
bd:ba:e8:6f:f6:0d:76:7d:ee:96:6f:8f:77:d4:12:
42:c2:e0:db:3f:37:62:3d:13:d0:5e:f9:33:06:8c:
b4:34:f2:c1:6f:40:1a:c8:4d:3a:ca:cc:6c:39:08:
bf:b4:f6:18:6a:d7:2f:2b:cd:b6:d2:ab:6d:bb:77:
fd:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5B:E9:7A:2E:D2:18:D9:C7:9B:A5:DD:E0:81:74:45:6B:E7:55:37
X509v3 Authority Key Identifier:
keyid:40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:39:28:44:f3:b9:4c:22:d4:72:3d:9c:9d:db:a8:d2:cb:1f:
89:b4:e4:a3:fa:69:0f:61:91:3a:93:f5:e5:cd:31:ee:1f:02:
50:54:1c:33:62:29:13:6e:ee:d1:da:fd:04:f5:70:e0:a6:46:
ac:52:3b:84:4a:e3:a6:69:aa:22:af:31:6c:bd:8d:44:ec:5a:
ce:a4:4f:d6:a8:37:83:3a:70:2f:3d:7e:89:07:85:8d:f0:54:
c8:1c:83:06:df:95:87:76:79:0b:1c:4a:12:a4:19:5a:f1:d1:
c4:a4:42:7f:ea:a4:59:cc:d3:94:ed:4f:dc:81:3b:95:eb:57:
d6:17:a0:ee:2f:a7:db:83:87:94:d0:a6:d8:ca:b9:a4:37:8a:
31:f1:89:7a:1f:8c:1b:05:d3:55:6f:0f:94:3e:bb:b7:ff:40:
66:b0:70:97:ae:40:6c:e5:9f:a4:1c:68:10:9d:c2:bb:54:e2:
03:f0:ed:bb:51:e2:90:41:39:db:8a:40:76:42:7e:ac:9d:0a:
3e:85:88:fd:08:49:a2:a0:4b:31:8f:90:12:86:3b:a8:16:6d:
83:eb:8c:66:e5:5b:5b:98:05:3b:16:38:9c:b7:42:aa:92:db:
13:3d:89:f1:00:ca:3c:7b:0e:17:ee:e6:6f:e6:75:45:15:3a:
ea:68:43:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 07:20:28 2025 by rpki-client