Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
File: QIyWuStsaY_TT6x9WB1MCQjczpk.mft (raw, json)
Hash identifier: Jie3433s/SotLAzhhbd44KH5V0BTxqnVZT92Ayof1AE=
Subject key identifier: 5C:13:57:92:B2:CD:CE:F9:00:A1:75:55:3E:EA:D6:9B:2C:1D:47:89
Authority key identifier: 40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
Certificate issuer: /CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Certificate serial: 0198D4E039278DD17342749835AC1C8933F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
Manifest number: 1219
Signing time: Sat 23 Aug 2025 03:02:01 +0000
Manifest this update: Sat 23 Aug 2025 03:02:01 +0000
Manifest next update: Sun 24 Aug 2025 03:02:01 +0000
Files and hashes: 1: QIyWuStsaY_TT6x9WB1MCQjczpk.crl (hash: rQxuDZ7ued0DyOIj4TM94djuwCfT4BIV1qAfDi8IiWA=)
2: o7v3w6s-TtM4FqHNx2KIzrdDfyg.roa (hash: E/bv9FlRfrfb8DUNG3s4m8ELhpH6SWFAZyVqbfxptQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:39:27:8d:d1:73:42:74:98:35:ac:1c:89:33:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Validity
Not Before: Aug 23 03:02:01 2025 GMT
Not After : Aug 24 03:02:01 2025 GMT
Subject: CN=5c135792b2cdcef900a175553eead69b2c1d4789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:53:b3:e1:45:52:88:a2:b7:ff:8e:e4:7d:
88:90:26:9d:c5:bf:09:24:31:02:6d:db:21:7c:78:
34:4d:a1:cf:0c:9a:2b:7d:ba:f4:87:3d:57:42:d7:
e3:45:1e:dd:47:a3:89:ad:02:56:07:1b:4f:f4:8d:
58:cb:27:0b:27:c5:11:74:92:1e:f9:98:30:83:fa:
97:25:01:90:d5:39:90:da:f1:8c:35:72:4b:92:2a:
23:ac:6a:4f:56:cd:2a:03:1a:37:4d:b9:8e:80:df:
a9:5d:0f:1d:a8:15:2b:53:90:b3:c5:6d:dd:4b:05:
3c:79:a1:9b:ef:49:61:5a:f6:cd:9f:23:da:ae:f2:
d3:68:fd:4b:06:cd:bf:b6:ec:2e:47:5b:a7:ac:f5:
ad:bd:f2:45:98:67:87:36:b2:41:d1:1b:64:fd:78:
45:a9:43:85:00:41:f5:cf:7f:1e:b5:f3:0f:d2:5b:
f6:c6:46:c5:3b:e5:8f:af:6f:5f:0d:99:21:f9:87:
43:4f:22:18:ef:cd:bf:f6:dc:fd:cf:ba:81:18:ce:
45:01:e8:b6:7b:5d:4c:ce:ea:b2:64:8e:26:d4:95:
c6:40:e5:ec:ff:32:97:d1:35:7f:17:23:cd:a5:02:
e8:97:b6:78:c0:b4:aa:93:88:1b:04:bf:6e:41:9c:
88:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:13:57:92:B2:CD:CE:F9:00:A1:75:55:3E:EA:D6:9B:2C:1D:47:89
X509v3 Authority Key Identifier:
keyid:40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:b3:35:ee:99:9c:d5:8f:14:c0:de:2c:62:43:a7:ce:5b:14:
3b:9f:72:f5:0d:19:76:2e:12:3b:ec:30:28:11:aa:68:fb:dd:
b1:3a:c3:74:11:e6:72:23:4c:fa:eb:a2:68:fb:d1:1b:64:77:
ad:0c:fb:df:42:e6:62:63:c4:67:39:76:7d:f1:04:5d:49:6a:
d8:58:c5:14:cf:05:74:87:ee:2a:16:14:a6:12:9d:de:9a:fd:
82:dd:06:65:cd:0b:e5:1a:a4:a8:59:b9:a8:c6:ff:5f:db:cd:
82:a2:51:a7:7e:bc:7f:50:73:14:6e:4b:ec:99:8f:06:ec:33:
66:96:2e:f4:77:c1:8e:73:ba:c9:15:69:ff:6f:91:8a:4d:d9:
87:63:9d:ed:6e:d7:d3:e0:94:50:fd:b9:5f:c6:62:7f:2c:31:
a7:36:29:39:9a:66:23:cf:58:de:92:fc:41:43:6b:3d:6b:44:
a0:3f:30:bc:74:6f:7d:19:6a:41:de:a2:c8:61:ae:bc:8c:c6:
5b:76:23:02:ef:33:bb:8f:c6:52:7d:b2:76:2d:bb:2d:52:37:
83:d2:7e:d8:92:76:33:9b:0b:05:4d:71:e6:ac:64:c5:9f:4a:
88:37:f5:42:30:7d:52:3e:44:f5:f5:69:93:61:5c:ca:4b:80:
c4:26:43:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:02 2025 by rpki-client