Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: lyT5s93WOc8jMUG+q5ymo+O+M3jq1X5V6bzzQSs2X1g=
Subject key identifier: 26:F7:15:81:2F:43:A6:B0:C7:05:D0:BF:A1:45:9A:AC:FB:C6:2A:A9
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 0198D404B23FECC6C9726C82CCC0B9A4B7A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 1648
Signing time: Fri 22 Aug 2025 23:02:14 +0000
Manifest this update: Fri 22 Aug 2025 23:02:14 +0000
Manifest next update: Sat 23 Aug 2025 23:02:14 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: 6ZIUWXbQFfCk0+MQAPc/EXpgYLF6ojh5fUgjWSN1m/U=)
2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:b2:3f:ec:c6:c9:72:6c:82:cc:c0:b9:a4:b7:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Aug 22 23:02:14 2025 GMT
Not After : Aug 23 23:02:14 2025 GMT
Subject: CN=26f715812f43a6b0c705d0bfa1459aacfbc62aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d3:12:48:e5:cb:fb:47:09:2c:be:85:7a:b6:
13:fb:93:20:1d:a7:88:9c:a6:eb:e2:81:2a:31:03:
2f:e6:d3:35:f8:76:d0:1e:c9:02:45:35:de:3a:1b:
72:d2:ec:7d:4a:fa:70:b3:65:8b:6a:10:89:68:43:
12:f7:e2:24:27:15:de:1a:00:39:35:fc:a2:9f:29:
32:96:4a:37:ce:60:3e:f1:eb:8e:0d:2f:71:fe:e1:
fb:65:04:1e:71:c8:37:2f:e4:ea:4b:9b:77:f5:f3:
18:4a:03:73:2c:1e:60:3f:e5:56:fe:19:e8:f0:55:
3a:35:fb:87:19:f5:fa:83:af:ae:b3:2c:92:51:b0:
f6:53:ec:cb:f9:04:4c:6e:96:15:27:15:6b:90:c3:
06:52:fc:b4:0d:bb:b9:7c:d8:7a:a7:98:b3:6d:05:
22:9c:08:1d:39:54:ce:1a:db:88:e2:d4:b6:07:01:
39:73:b9:ce:05:9b:3b:cf:f2:05:a0:2d:7d:32:49:
fd:d8:de:e3:30:ae:e0:9e:82:4f:25:0d:83:76:43:
c3:1f:aa:a2:02:8b:e2:1d:66:8b:d1:25:d8:33:fb:
9f:6f:99:9a:93:9f:e1:3b:73:ae:2f:db:d1:ef:eb:
d1:94:03:aa:87:d6:06:3d:5f:05:53:b0:c3:7d:02:
56:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F7:15:81:2F:43:A6:B0:C7:05:D0:BF:A1:45:9A:AC:FB:C6:2A:A9
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:44:2c:ed:df:4a:e4:24:83:6c:c7:22:08:d0:85:67:9a:88:
82:dc:00:ef:8f:06:11:55:ce:97:69:a9:35:d1:5a:dc:c2:a2:
12:98:92:57:a2:6b:85:06:ec:55:70:21:a7:3b:5a:48:9a:28:
d4:6f:da:67:a4:98:58:d8:89:9b:b6:8a:42:43:ee:ef:25:b5:
e8:c3:23:5e:62:df:8d:b6:3b:bc:95:fc:eb:db:f0:82:e9:e9:
57:7b:18:b3:4a:af:89:99:f4:4b:ea:69:bb:ec:51:3b:25:a2:
07:52:a3:c9:79:05:89:38:7b:89:ae:60:17:ae:d5:68:26:9c:
d8:a2:dc:b7:2a:29:d2:bb:b0:45:e5:cd:75:e6:0c:b2:9a:e9:
8f:ad:75:3e:80:91:c7:36:ab:db:dd:67:e9:0f:9e:f4:61:18:
b7:a7:60:f7:d9:9a:f8:0c:82:fc:a6:2c:49:76:23:9d:6f:8d:
3e:2c:46:5a:26:b0:14:fc:3d:47:00:08:48:cc:cf:3e:80:39:
b1:6c:c6:26:9f:cf:6b:9d:77:a7:45:cd:63:ba:c6:43:56:17:
04:10:59:f1:94:62:c0:7a:30:a0:be:22:2d:e7:1c:d0:24:14:
77:91:01:02:be:1b:fe:cc:a6:7d:55:69:e2:40:e3:fe:6b:54:
dc:c4:89:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:42:56 2025 by rpki-client