Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: oTSk66YVxzOSO1hWisYuF7G7eVceIwDqxPnMh6hY+xE=
Subject key identifier: BA:70:30:F9:D3:50:88:25:88:25:90:04:FF:AA:85:0E:17:9A:C0:CB
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 0198D404781AADE0AF7CFF00675C83C3433A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 164A
Signing time: Fri 22 Aug 2025 23:01:59 +0000
Manifest this update: Fri 22 Aug 2025 23:01:59 +0000
Manifest next update: Sat 23 Aug 2025 23:01:59 +0000
Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: R6u36VzT9CEoR3AolQzSYgkQXvogHfKFsBEBmgFRNZU=)
2: tBcUVtef6rZ0kSSzgGFNQ0aGmXk.roa (hash: axGcXX34atfoTeccVW4HcK4Aoj164U97BqMvxhWQBsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:78:1a:ad:e0:af:7c:ff:00:67:5c:83:c3:43:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Aug 22 23:01:59 2025 GMT
Not After : Aug 23 23:01:59 2025 GMT
Subject: CN=ba7030f9d350882588259004ffaa850e179ac0cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:25:1e:c3:c6:c6:6c:7d:22:59:af:c0:df:45:
90:0a:d8:1b:22:e8:e0:a1:c5:ef:18:79:b2:1e:5c:
8c:71:2a:f1:f9:78:e3:4e:35:f0:5e:42:fc:6e:4b:
e3:2e:ff:4a:d1:18:49:bf:bc:bf:06:1e:c7:c3:76:
50:23:78:27:02:92:30:e0:66:f4:3e:4b:94:f5:42:
6e:57:f7:d2:ea:9a:e7:c7:f3:cc:57:ff:d6:15:68:
3f:ef:89:00:4a:74:6e:5d:d5:39:df:2d:17:a3:fe:
b9:e5:59:b7:70:64:54:d4:65:99:b0:19:fd:93:0a:
8f:22:f7:76:4b:5f:8d:57:2e:0b:42:45:40:94:a9:
23:86:83:ce:9b:24:a1:3f:97:63:a4:4c:c9:8b:8f:
e7:ed:70:cf:74:7c:ee:c9:1e:f7:e9:09:ef:6f:d0:
f4:2e:ad:c7:47:d7:d2:f7:b8:e1:88:38:6b:8f:e1:
2b:28:16:29:b2:7e:ad:75:81:96:9b:11:95:d2:b3:
86:ca:b0:7f:11:7b:f6:e5:df:7f:30:47:e1:50:cc:
92:df:e1:d8:29:39:f5:2e:1a:28:dc:d0:c9:3f:05:
00:44:0f:3e:30:ed:a8:68:23:67:8c:0c:17:b0:67:
eb:53:40:bf:18:94:9b:a2:f3:e3:7f:93:df:57:35:
20:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:70:30:F9:D3:50:88:25:88:25:90:04:FF:AA:85:0E:17:9A:C0:CB
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:14:bd:16:bf:fc:d6:12:88:7e:90:b1:f5:01:05:c4:73:c8:
38:6b:ba:90:85:67:68:12:0d:ef:fe:03:96:0f:31:9c:db:93:
fc:57:6c:02:4e:45:39:1e:57:ba:c9:9b:91:0c:65:7d:6b:4b:
30:0a:35:16:48:77:96:69:21:01:ad:18:d3:4b:44:5f:5e:ee:
82:b8:0e:9c:d5:cc:5b:72:e5:6f:3c:fe:d8:96:b4:0a:cd:a5:
b6:ea:c1:05:55:0f:01:07:00:bb:2d:c3:8d:a8:75:68:75:eb:
91:c1:30:19:34:4a:bc:cb:d4:5e:af:3d:68:64:d3:69:a4:4e:
61:6c:4a:13:c4:58:15:f7:d3:3c:03:4c:49:51:22:f0:7a:22:
fa:d6:b4:e0:a2:a2:9e:bd:cc:bc:1c:44:53:d4:0c:6f:85:26:
21:36:6c:78:2a:43:40:8d:33:c6:a0:d0:35:c1:b3:9e:08:5e:
b7:85:75:b9:01:01:48:3c:c8:1c:d1:5a:ec:a5:07:e5:a1:a7:
df:89:b7:41:8d:28:b5:27:6f:fd:1d:a7:ce:d8:f4:75:60:47:
72:50:2c:09:87:97:fc:63:ac:b0:e4:6c:20:75:78:16:f1:1e:
67:9f:22:d3:6a:e9:57:6b:9e:69:84:f4:2a:cb:d5:84:91:fc:
28:bb:cf:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:16 2025 by rpki-client