Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
File: QVHWtEHT9XdiwDL4-tIXYIoi96E.mft (raw, json)
Hash identifier: 0MWksprdKdM7fWsEDaqzusaOvZsPrMj0G2WGurXdVPA=
Subject key identifier: 95:41:3B:38:B4:FC:E8:0E:44:F3:81:79:14:67:5D:8F:89:49:B7:06
Authority key identifier: 41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
Certificate issuer: /CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Certificate serial: 0198D5BBEC74D60CE9A59611E4AC4ADA65AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 07:01:59 +0000
Manifest this update: Sat 23 Aug 2025 07:01:59 +0000
Manifest next update: Sun 24 Aug 2025 07:01:59 +0000
Files and hashes: 1: Im-QceSwk2rydy4UnBzai_RFayI.roa (hash: 7cmPd6tOwgpnXHTZZ7ExgoosfdS4LnMMgIaEbvg4EPQ=)
2: QVHWtEHT9XdiwDL4-tIXYIoi96E.crl (hash: JVoBvaZMkYu+ilEJSVwgTe5xo5ic6QUoqlwQLd7OadE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:ec:74:d6:0c:e9:a5:96:11:e4:ac:4a:da:65:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Validity
Not Before: Aug 23 07:01:59 2025 GMT
Not After : Aug 24 07:01:59 2025 GMT
Subject: CN=95413b38b4fce80e44f3817914675d8f8949b706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:17:1a:80:61:e4:d3:0c:92:b0:8f:14:10:
5e:a7:1b:bf:52:a8:a8:31:4d:ba:31:a1:30:73:0b:
0b:43:17:79:7e:70:c4:d3:45:01:16:2a:7a:12:39:
36:32:98:80:b8:e4:b4:09:20:62:e9:5e:54:52:aa:
de:a1:7d:ad:61:dd:c0:36:da:1c:89:c5:ad:69:eb:
79:c2:c7:a6:7f:12:70:c5:7d:35:89:b2:8e:f8:de:
7a:b1:f2:a5:bb:fc:73:86:7b:b9:6c:78:a6:7f:fd:
28:53:a4:ad:f4:61:b3:1b:4d:52:c6:60:98:43:91:
8d:ed:5f:a2:ba:21:ea:59:b0:9c:ff:9b:b4:c9:c2:
33:61:96:47:3b:63:e7:4e:8e:16:15:27:46:f3:5b:
d6:ac:b8:b6:8c:d9:26:d4:ba:1b:86:07:8c:4d:85:
84:5c:0b:d8:22:76:21:e8:6f:fd:3f:16:56:6c:3e:
c8:7f:24:6b:74:71:d7:79:93:b0:de:82:b9:09:a3:
87:34:30:26:d0:11:52:e5:7a:9f:b1:f0:20:b5:28:
94:a2:27:23:e5:7c:07:7e:6c:b7:b8:ac:1a:83:43:
53:71:b7:0a:be:bb:40:f9:8c:36:c1:8e:24:d4:6c:
ed:2c:9e:80:c8:3c:db:a7:b8:b2:db:62:e4:0e:5b:
21:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:41:3B:38:B4:FC:E8:0E:44:F3:81:79:14:67:5D:8F:89:49:B7:06
X509v3 Authority Key Identifier:
keyid:41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:00:8b:0a:f3:56:ed:4c:ea:bf:e4:55:fa:95:a9:ff:20:be:
2e:1a:a0:d2:fa:30:95:e6:eb:e2:3b:89:0d:fc:c5:12:ca:0f:
8e:09:25:92:d9:f0:8d:15:c3:de:82:cd:ac:76:ad:28:03:32:
ea:35:85:aa:4c:5a:ae:8a:ad:82:02:00:62:87:ac:5e:d9:32:
f0:9e:af:c3:1d:0e:d9:3c:ce:53:93:f2:92:c7:0b:7f:82:cf:
67:5a:15:b4:98:91:1e:20:f6:1c:aa:81:2e:74:2d:f0:fd:2a:
91:75:18:4b:91:dc:04:56:90:9f:19:1a:23:d4:82:db:af:40:
59:0f:6b:ec:d7:7f:0b:f8:42:df:66:67:ab:8a:85:e9:f5:14:
53:06:b6:ea:30:b3:8e:e1:b2:5c:6e:1b:09:96:ba:c4:3a:08:
6a:06:f8:ea:f6:06:a1:bc:c5:44:46:6a:ee:4d:75:fd:82:af:
78:09:69:ac:ca:f7:7d:8c:0c:c5:3a:e5:31:1a:4c:e5:5e:97:
fe:33:5b:1e:a5:5c:a2:98:88:ab:f4:00:10:8c:d6:58:f1:27:
59:31:fa:c4:ee:c3:32:8b:2c:b7:e7:49:2c:aa:06:02:79:f6:
3b:31:a6:34:79:54:bd:8d:d6:5b:36:b9:fc:c8:d3:4b:31:b0:
72:25:6c:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:33:14 2025 by rpki-client