Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
File: q4PmT3LdWIn7E9whjGg_bi-s9bI.mft (raw, json)
Hash identifier: 7KRYwY7frBG4QhzVi8sH3tNeYoI73wodaa1Z0A/Yrdc=
Subject key identifier: 5E:92:81:66:72:A4:36:A5:6A:9B:75:82:F0:CB:8E:B0:87:B0:7E:54
Authority key identifier: AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
Certificate issuer: /CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Certificate serial: 0198D4E0A1617A1D058D1111EDD65E5C4EA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
Manifest number: 164F
Signing time: Sat 23 Aug 2025 03:02:27 +0000
Manifest this update: Sat 23 Aug 2025 03:02:27 +0000
Manifest next update: Sun 24 Aug 2025 03:02:27 +0000
Files and hashes: 1: XtZEW_Ge-fj7ts452exDji_sEMc.roa (hash: Z3qqH40xAjBbJprbXnVydXKDBxTyDTfpQSqRlWz/dFs=)
2: q4PmT3LdWIn7E9whjGg_bi-s9bI.crl (hash: NiUifSG26JlZxeSI7dDTDoLx6bXak1bMBx11E7U8lX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:a1:61:7a:1d:05:8d:11:11:ed:d6:5e:5c:4e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Validity
Not Before: Aug 23 03:02:27 2025 GMT
Not After : Aug 24 03:02:27 2025 GMT
Subject: CN=5e92816672a436a56a9b7582f0cb8eb087b07e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ef:47:a5:12:b4:70:a3:d0:9a:3b:5b:d2:b2:
d0:fe:dc:8e:da:08:46:90:7f:a1:ee:7e:54:6e:a1:
0d:19:42:e7:a1:55:79:43:68:31:89:68:df:19:9a:
c1:e1:62:cb:72:e6:7b:b6:b4:48:cc:45:32:a9:14:
95:58:c1:c8:c5:19:76:03:f3:57:c8:4a:22:62:e8:
d8:14:ea:f5:6e:42:65:43:99:05:bf:a5:41:d6:c7:
a1:a6:30:6c:f3:66:26:aa:52:f4:0b:41:56:69:4d:
93:0b:fb:3d:b8:1d:97:f8:a7:84:9a:58:7a:ba:90:
03:d2:e0:ab:6f:fc:16:c1:bd:b1:27:5b:0f:1d:12:
6d:01:b9:03:09:95:29:49:67:52:1e:d0:c8:31:3f:
b8:4a:55:42:0b:06:bd:4e:cc:d8:b2:46:cc:93:cf:
2f:d4:20:51:db:14:52:3c:53:a4:17:cf:f4:8b:9e:
47:5a:3d:c5:5a:c4:de:fb:3d:a1:ee:ea:82:8f:cd:
2c:8d:73:12:62:56:3c:68:f8:c3:f1:5a:bf:59:e7:
53:a8:b0:2b:8e:ad:7f:a4:c2:c4:f0:e9:2e:27:81:
5e:12:3e:3e:a2:a6:f0:fc:55:a2:25:d2:a5:72:e7:
88:46:dd:49:14:0d:8b:6c:9c:42:e9:28:03:f5:1e:
11:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:92:81:66:72:A4:36:A5:6A:9B:75:82:F0:CB:8E:B0:87:B0:7E:54
X509v3 Authority Key Identifier:
keyid:AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:63:a8:ae:ec:db:21:d7:c5:85:9f:24:22:85:93:48:c7:2a:
74:2e:fe:63:db:0a:2d:a7:9a:17:74:59:f8:dd:eb:2a:a8:87:
9d:e0:e6:c9:a4:bc:a6:32:44:1f:f9:28:fc:e4:05:8d:05:99:
b0:65:7a:91:60:3c:e8:7b:e0:c4:db:4c:90:ee:ae:7c:9c:87:
91:34:46:4c:fa:a4:e2:10:f0:08:b1:b1:93:b7:34:6c:70:97:
1d:13:ee:b9:3c:2b:fa:92:36:d5:ea:a8:8a:bf:bf:65:3c:30:
1f:73:a2:d0:22:8c:c0:d7:32:c0:2b:d4:04:5e:db:61:53:1c:
35:70:87:7c:df:82:7e:eb:35:88:86:f7:ee:f5:e9:ce:51:17:
81:71:2e:13:df:d6:fb:86:a3:20:83:80:e6:64:94:44:7a:2a:
7e:5b:eb:b1:dc:82:76:15:2b:78:f0:26:4d:f9:59:fe:4e:8c:
3f:05:87:31:87:6c:23:c5:3e:7e:50:39:a9:d0:a2:44:6d:49:
52:ef:11:62:b3:3f:a5:27:66:14:f5:72:3b:12:45:7b:10:aa:
7a:67:18:1d:7c:d8:d8:2d:50:34:b1:41:5c:e0:30:8f:a8:a1:
fd:2c:44:41:b1:91:ee:47:b7:d5:1d:03:f7:99:a0:ab:86:d9:
8c:60:94:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:04 2025 by rpki-client