Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json)
Hash identifier: DxzshpADQtFoX8X9UYckPIF5hCxZd8L6H8XMeOfEh6A=
Subject key identifier: E8:A4:B8:67:F9:3B:DA:F2:9A:8C:04:A5:B5:7F:C3:14:B1:15:F0:20
Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Certificate serial: 0198D47290502433E91D3A89368104902612
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
Manifest number: 0C9B
Signing time: Sat 23 Aug 2025 01:02:14 +0000
Manifest this update: Sat 23 Aug 2025 01:02:14 +0000
Manifest next update: Sun 24 Aug 2025 01:02:14 +0000
Files and hashes: 1: 2K6387yyM5gxakFjGUcn1KUMQ58.roa (hash: KwEJI06hkpRX+nj9eXMKKI3vC9xa4ElKQ9FhYTbVyds=)
2: VNd90Fl0tWahsmhhQvhoAAT8f5U.roa (hash: U+zi8hpH0S9lksZLxaBLhZX/Hg0tdOzYwVmTSHbyaHY=)
3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: mYNjpodn3Nn80RMo4nOIjovhYVnodZDmq6WLyIIUKsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:90:50:24:33:e9:1d:3a:89:36:81:04:90:26:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Validity
Not Before: Aug 23 01:02:14 2025 GMT
Not After : Aug 24 01:02:14 2025 GMT
Subject: CN=e8a4b867f93bdaf29a8c04a5b57fc314b115f020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:29:50:5d:9f:22:61:1c:73:01:7d:e6:1b:b1:
00:61:56:79:73:52:e6:82:3a:a0:1b:93:47:8e:7e:
80:e7:18:45:e7:b3:b6:26:86:d1:51:a0:46:20:b6:
ae:47:97:b8:48:25:d4:d4:ee:9a:37:0d:0e:cf:d5:
7f:9b:ef:8e:f8:96:ad:35:44:45:40:04:fc:06:ce:
05:dc:34:ed:4f:de:c7:4d:cd:3d:1a:b3:aa:8a:dd:
33:2f:f3:53:f8:fb:89:23:1b:17:5b:b9:32:58:2a:
93:bd:e9:6c:dd:b0:31:1b:69:4b:67:09:5a:dd:0a:
62:d8:08:22:40:04:72:5e:6f:30:55:f9:ca:ef:0a:
8b:de:b1:a7:39:c6:f1:9c:5d:5e:f6:a1:da:63:51:
c6:84:39:17:23:c5:b5:11:56:f4:70:0c:76:ad:14:
be:3b:cc:ad:2d:74:54:7d:bc:09:58:a7:c3:ec:c4:
46:58:34:dd:b8:8e:cb:9f:11:ab:4a:dd:54:24:63:
31:2a:5c:07:d2:dc:32:eb:b9:b9:54:5e:06:2b:33:
be:e0:25:3c:98:9d:6e:b9:9d:bd:18:28:40:ce:83:
7c:b8:04:91:93:e4:fd:5a:1e:a1:50:a6:c2:6e:8b:
c0:07:f0:ac:2d:c3:4f:37:18:94:8c:16:7d:d9:7a:
5e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A4:B8:67:F9:3B:DA:F2:9A:8C:04:A5:B5:7F:C3:14:B1:15:F0:20
X509v3 Authority Key Identifier:
keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:c4:bf:cf:1b:ff:23:a1:a5:ce:0b:92:86:e0:a7:de:d3:22:
4e:ec:3f:e2:c1:85:e9:f1:0a:7f:b7:46:8b:7f:b7:01:84:be:
e9:9e:35:3c:5b:87:76:99:52:c0:69:94:32:47:00:45:af:2a:
b3:51:70:01:5d:4e:0d:54:b5:87:b6:4e:68:6d:4b:f1:59:b9:
7a:03:18:a9:ba:5d:f9:e6:79:69:ba:ae:2f:eb:a1:32:3a:b2:
f9:fd:ce:f0:bd:46:5f:0e:f1:2e:c5:76:83:8f:24:f3:f3:93:
fd:83:f4:66:6a:c1:7b:1d:14:2d:8b:e1:df:d3:e0:fa:0c:cf:
80:dc:fe:85:b0:22:ba:43:33:c0:c6:ad:ff:ca:b8:3b:63:72:
f8:59:f1:33:d6:f1:f8:41:c4:3d:5a:5e:31:88:60:03:36:e6:
e6:e4:46:1e:4e:51:f0:8c:a1:32:30:84:fe:78:d9:f0:17:2d:
85:83:35:b5:4a:12:17:82:fc:85:08:7f:de:17:b3:4a:fc:54:
f5:bd:9a:6d:56:bb:26:aa:0c:1f:69:17:c2:21:71:d3:e8:16:
c0:cd:c4:70:a7:85:80:20:84:0d:75:db:1c:f0:e0:8e:3b:52:
8f:5c:b7:37:8a:c9:6d:54:d8:df:29:e5:8e:c8:ef:dd:66:a5:
b6:75:8f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:50 2025 by rpki-client