Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
File: qsIj-xlCEV5IqXVCByktAKCC7N8.mft (raw, json)
Hash identifier: LPMb/zYNuQnzNN8s7RWFvLLO6c2W1ED3LygxhiGzZ+U=
Subject key identifier: 21:12:47:72:1F:89:0A:8E:6A:54:C2:90:A8:96:61:3F:E1:3A:E0:30
Authority key identifier: AA:C2:23:FB:19:42:11:5E:48:A9:75:42:07:29:2D:00:A0:82:EC:DF
Certificate issuer: /CN=aac223fb1942115e48a9754207292d00a082ecdf
Certificate serial: 0198D4E044C8F390C9853D0B2C58E63459C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
Manifest number: 089A
Signing time: Sat 23 Aug 2025 03:02:04 +0000
Manifest this update: Sat 23 Aug 2025 03:02:04 +0000
Manifest next update: Sun 24 Aug 2025 03:02:04 +0000
Files and hashes: 1: f7H4NvJn5XG9ZEVLvo3rzyryem0.roa (hash: FIvnUTIH/WyzVRn7SNngTErOpdYKzvrkMjSyoAbXEio=)
2: qsIj-xlCEV5IqXVCByktAKCC7N8.crl (hash: h9XfwhJtkvvbN5+0+zUcS0/TV2n69B3eTlPLm367yp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:44:c8:f3:90:c9:85:3d:0b:2c:58:e6:34:59:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac223fb1942115e48a9754207292d00a082ecdf
Validity
Not Before: Aug 23 03:02:04 2025 GMT
Not After : Aug 24 03:02:04 2025 GMT
Subject: CN=211247721f890a8e6a54c290a896613fe13ae030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d2:92:d5:81:d5:d7:3c:0c:b5:e2:c1:3a:3f:
a8:a3:f1:bb:74:65:e7:41:48:bb:d1:01:55:af:a4:
cd:5e:11:9a:35:fe:a7:0e:46:63:49:bf:d7:af:da:
ab:16:a7:0a:6b:fc:74:04:48:62:d6:10:e6:b9:a0:
e1:dc:08:02:af:98:90:a9:d2:0f:f4:c9:10:77:e6:
72:eb:79:3f:4a:78:c1:70:e4:c1:ba:4c:ae:47:e9:
a6:ed:c2:94:5d:9a:13:fb:7b:48:b7:09:e3:2b:bd:
98:ee:7b:37:23:60:09:f4:af:c0:65:25:c2:8f:dc:
cd:cc:6c:db:f7:0b:93:ee:47:9a:89:cd:28:a2:9f:
2c:0e:11:eb:ad:d7:de:c3:22:cb:80:ab:36:b8:6d:
27:e1:f4:f3:c0:51:2a:8d:4a:bc:8c:3c:70:06:a3:
98:28:aa:8e:91:90:54:cf:09:06:0e:3c:c4:49:63:
93:65:a2:f7:e6:cd:52:7b:e6:08:e8:e6:2b:f2:f8:
ca:e0:2d:5a:08:ae:a0:4f:b3:33:ac:9a:40:79:56:
9a:27:5a:ad:43:5c:df:93:67:0e:b1:1e:cd:1a:f8:
ed:b8:e1:a7:1f:c5:d3:d3:81:ce:6d:00:fe:a6:21:
58:60:fc:de:11:83:2b:18:d9:7e:38:a2:2d:5f:b9:
a7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:12:47:72:1F:89:0A:8E:6A:54:C2:90:A8:96:61:3F:E1:3A:E0:30
X509v3 Authority Key Identifier:
keyid:AA:C2:23:FB:19:42:11:5E:48:A9:75:42:07:29:2D:00:A0:82:EC:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:5b:a5:4d:5f:5e:28:1c:71:31:8f:a8:cd:a3:1a:24:41:9e:
ba:8f:75:98:ed:48:1c:61:79:41:9f:83:08:f9:23:b3:da:bb:
5c:c6:0e:48:f2:7c:17:32:5a:3f:cc:04:cf:1b:f7:6d:2a:4c:
58:4a:b9:ac:b3:47:d4:f5:fe:8e:f9:0e:66:f8:0d:e4:77:82:
16:7e:7e:72:7b:42:fa:f3:03:be:3a:e6:1b:98:46:62:37:2e:
9b:1d:63:ba:71:eb:6e:65:df:bb:59:9e:8a:88:86:28:19:af:
39:24:8d:0b:de:e3:37:42:dd:a2:6b:16:6c:5a:19:e2:50:b1:
76:e0:bb:59:aa:61:7a:99:c1:f9:76:92:89:f1:c7:3d:4a:e9:
61:34:9c:e6:d3:4d:0d:86:40:a3:27:78:10:8b:78:ee:ff:6e:
f2:59:a8:3e:64:ed:65:a1:f0:55:c6:de:ed:3f:1f:f5:0e:e9:
52:e4:f1:a0:de:cf:2b:d4:e5:bb:34:5f:9d:aa:bb:8c:e2:a2:
c0:56:2b:3d:28:6a:14:ee:0e:f4:11:30:27:d6:dd:60:12:de:
d2:3c:44:9e:27:66:ee:96:1f:ee:d0:78:bd:fe:3f:8d:a2:17:
9d:7d:8d:a7:ac:c5:7e:2f:ff:af:1a:e5:73:73:34:7f:dd:bd:
2c:de:b5:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:42 2025 by rpki-client