Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: Y7P+GBufpph4wCXFJzdltDqC4/9urd/jq0gPo2ebBbk=
Subject key identifier: AA:DB:1C:92:17:32:81:BA:5F:6B:E1:B0:66:B9:C7:8E:1E:CC:D0:E9
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 0198D54E8B94F0FBB78CA5C4A28FF66674B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 0344
Signing time: Sat 23 Aug 2025 05:02:31 +0000
Manifest this update: Sat 23 Aug 2025 05:02:31 +0000
Manifest next update: Sun 24 Aug 2025 05:02:31 +0000
Files and hashes: 1: Lh_NKL7D2mWFyhzHGugt5SgY5Oo.roa (hash: DjvsQWCGurUIzxMM5VASKrLIiSf6rVM8+QHojBeXG6I=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: 2NhdR11+2Av+aSvUp1Tvlc/RAgzvAC7tKLWxyTwXYCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:8b:94:f0:fb:b7:8c:a5:c4:a2:8f:f6:66:74:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Aug 23 05:02:31 2025 GMT
Not After : Aug 24 05:02:31 2025 GMT
Subject: CN=aadb1c92173281ba5f6be1b066b9c78e1eccd0e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8c:a0:17:be:a8:47:da:7a:27:c2:e5:38:75:
be:3c:06:4a:c3:a8:bf:8c:a5:94:57:b7:a0:03:8a:
22:bd:69:df:f0:63:40:fe:35:9c:f3:5d:c5:4e:05:
ec:38:04:65:bb:61:a3:4b:6e:61:19:04:9c:d3:b1:
54:49:86:a8:67:94:f2:90:53:20:45:3c:67:6b:46:
e4:46:cb:74:d8:bd:87:8e:91:56:bf:d0:9e:bd:3a:
8b:9e:b6:81:62:7d:95:fa:02:14:1c:c5:16:90:3c:
81:7a:2e:da:90:22:a9:de:91:4c:ec:a3:bd:52:57:
04:bf:9d:61:63:54:dd:5c:f9:84:e1:5a:55:65:2c:
4c:9c:f4:0e:5e:71:9d:30:1d:c7:db:e8:9e:a8:5e:
15:99:e0:0a:7c:40:30:c6:68:8a:a0:51:bb:27:2e:
56:e3:04:d2:94:73:f5:de:43:9c:76:8a:dd:b2:1e:
ab:42:20:dd:2b:74:cd:88:34:ca:05:ec:80:f5:2b:
a1:fd:31:53:04:14:c1:0f:73:e5:f1:b4:d1:89:cc:
01:99:2f:ec:72:5b:7a:32:17:dd:c0:64:00:98:4a:
8a:da:28:c5:48:6b:65:2e:48:4e:73:b8:22:b8:0c:
08:6c:dd:1d:4e:eb:f1:1a:15:25:15:75:b5:30:ea:
42:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DB:1C:92:17:32:81:BA:5F:6B:E1:B0:66:B9:C7:8E:1E:CC:D0:E9
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:c6:90:58:84:8c:98:dc:f5:25:29:04:f7:22:de:35:7d:ff:
e7:60:96:ec:04:2f:b4:6a:2a:0f:c0:00:9d:5a:8a:b9:ce:b0:
29:5a:7b:cb:94:79:ea:3d:6e:ac:8d:fc:6b:99:7a:59:93:ab:
89:e6:bb:4d:b3:5b:23:77:64:aa:08:d4:3c:27:0f:13:95:e4:
99:8b:37:15:6b:31:a6:bd:68:2f:4c:22:31:0f:57:55:44:f3:
67:a4:be:cd:1e:6b:ca:6b:24:9d:7f:b5:df:b7:be:32:1e:3f:
66:69:d3:ef:9d:c4:1c:7e:42:51:cd:17:c1:5d:43:82:90:12:
56:64:37:63:5e:cf:7f:1e:a5:c0:d4:3a:25:28:1c:eb:a6:a4:
50:25:ef:bd:e7:14:49:79:72:81:06:5e:ad:28:0b:08:ac:78:
24:65:9a:c9:25:4a:bf:3b:84:72:99:e1:b8:eb:55:76:2d:80:
4f:5a:5c:da:4c:0b:56:c3:e8:21:17:e4:d6:c6:ed:72:ed:d5:
a5:ec:9b:c2:e5:ad:8d:86:42:2a:39:5d:9b:ca:c8:7d:2e:17:
a6:b9:e2:bd:c6:83:a0:74:f8:1b:16:1e:e8:83:9f:ac:2b:06:
29:5d:d7:75:95:08:81:a9:f6:54:f7:78:53:13:9e:8e:01:04:
40:df:ca:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:12:48 2025 by rpki-client