Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
File: QRoqlAW9oWccEHdvRCYnPJBOStA.mft (raw, json)
Hash identifier: /TuAWChgLOmcwlkhMOVTRzn/WSqH9tEt+UONcRgSu6Q=
Subject key identifier: D8:46:AB:85:99:3D:09:39:33:0A:08:B8:5D:66:CA:F9:D2:52:6A:FB
Authority key identifier: 41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
Certificate issuer: /CN=411a2a9405bda1671c10776f4426273c904e4ad0
Certificate serial: 0198D54E84D8B134001CEC2E863CA5682129
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 05:02:29 +0000
Manifest this update: Sat 23 Aug 2025 05:02:29 +0000
Manifest next update: Sun 24 Aug 2025 05:02:29 +0000
Files and hashes: 1: 7kOLb5agTvJNiZmHbg7oPOSBoq0.roa (hash: 0jza8HkowMAhNdk3rHbioNC6hwm48YtOGKmOL8x2OVw=)
2: OltzXJJiE9XyxoEWZKwac5KxNNc.roa (hash: MXwRj0eiEFB7lamZjGpRz17XKhXqe6VMpTtPXa7Dwss=)
3: QRoqlAW9oWccEHdvRCYnPJBOStA.crl (hash: nEbIQqhTb/NSov2cllN5Oe9ykVUlRYmwbt93PpLO7Zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:84:d8:b1:34:00:1c:ec:2e:86:3c:a5:68:21:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411a2a9405bda1671c10776f4426273c904e4ad0
Validity
Not Before: Aug 23 05:02:29 2025 GMT
Not After : Aug 24 05:02:29 2025 GMT
Subject: CN=d846ab85993d0939330a08b85d66caf9d2526afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:58:e6:32:8e:a0:09:ac:33:2a:30:0b:7a:ee:
cd:3d:91:cd:2f:c5:0e:57:1d:19:a8:d6:a1:6c:40:
50:fc:a0:68:1d:04:1d:2a:a9:b4:e0:45:32:0c:d5:
9e:71:11:54:75:8b:83:94:62:1f:9c:60:64:ed:25:
b9:c5:8c:01:f7:f4:71:a8:50:8f:25:8d:63:da:e2:
cc:bf:7e:32:5e:8b:10:8c:1a:b4:d4:e2:83:52:34:
a8:8a:94:9b:67:2f:0e:71:98:74:d7:6c:43:f0:28:
09:a6:ad:0d:39:36:87:bd:5e:f5:fd:68:74:72:89:
e3:81:2b:0a:69:48:58:af:2c:0e:bf:ae:4e:fb:74:
c6:b7:3f:76:0b:e2:7d:58:dd:41:f7:2f:62:c6:86:
8d:99:51:33:1b:4d:46:49:59:d1:ce:72:73:b3:71:
cf:a9:95:40:3d:46:8b:38:22:17:65:57:cf:4d:fd:
ae:1b:c7:42:9a:55:8f:cb:44:eb:c0:8d:b8:07:52:
51:68:bc:bf:4e:01:45:61:6c:09:d5:13:b9:e7:44:
68:1a:52:03:c2:90:6f:fe:31:b7:1e:92:7b:01:a7:
7c:f0:07:6d:d8:67:70:69:cb:4c:b9:fa:52:cd:8a:
78:fb:ff:c6:a8:c7:a7:58:fa:7c:45:0f:9c:50:f0:
e7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:46:AB:85:99:3D:09:39:33:0A:08:B8:5D:66:CA:F9:D2:52:6A:FB
X509v3 Authority Key Identifier:
keyid:41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:c6:4f:2e:29:a7:7f:bd:7e:e6:57:55:14:08:e1:8a:c5:d8:
24:6f:a3:b9:e8:ad:a7:73:01:2f:49:3d:ca:7a:a0:20:14:92:
55:2b:0b:b5:b1:43:a4:0f:00:9e:95:10:f7:bb:2f:82:43:9d:
5c:af:be:ea:74:a9:20:79:fe:54:21:d4:29:ac:f3:77:8c:1f:
43:6a:68:c9:c7:64:7f:1e:81:a5:9a:cf:75:72:73:3a:a5:28:
dc:ca:dd:af:41:43:33:ac:84:ed:64:6c:44:3a:91:0b:b7:9d:
ad:fe:e9:04:d5:f0:e7:8e:f5:28:e2:63:1e:99:04:63:3c:6b:
7b:e2:8e:e3:b5:43:2a:c0:dc:f1:8b:20:51:7e:1c:8b:52:8c:
56:33:75:78:fd:c7:bc:76:bd:e7:8d:c9:7c:19:9f:cb:9c:da:
45:f9:55:dd:59:8e:15:4c:90:7d:3d:fb:73:05:f6:76:ed:94:
55:c1:2a:fb:68:e4:77:a4:b1:55:b5:51:1e:03:f3:ce:ea:44:
91:29:89:97:5b:86:30:98:09:22:4a:9f:34:83:b0:f5:0e:94:
68:0d:82:dc:22:3a:63:34:fc:cb:13:19:f0:8e:85:95:b7:ab:
32:3f:ac:87:8f:22:49:3e:13:b6:b1:52:94:6e:6f:d1:dd:20:
2b:e3:a4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:39:54 2025 by rpki-client