Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
File: qLq2HDYOoQjNGSx856ftVWW9--A.mft (raw, json)
Hash identifier: 4gU2nKLKktagX07Yl6FaXy0vOsxYOTKa34a2H3ug6DU=
Subject key identifier: AE:30:52:4D:70:49:3E:76:3B:33:15:0F:F5:CF:E8:81:03:79:09:E2
Authority key identifier: A8:BA:B6:1C:36:0E:A1:08:CD:19:2C:7C:E7:A7:ED:55:65:BD:FB:E0
Certificate issuer: /CN=a8bab61c360ea108cd192c7ce7a7ed5565bdfbe0
Certificate serial: 0198D6CD7457CECFA8305E15B381DB27DBF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
Manifest number: 0DC0
Signing time: Sat 23 Aug 2025 12:00:45 +0000
Manifest this update: Sat 23 Aug 2025 12:00:45 +0000
Manifest next update: Sun 24 Aug 2025 12:00:45 +0000
Files and hashes: 1: llKmEV0JVzIG0_MZWPlP8ygpeC0.roa (hash: jPaOJ8ND+JyHLtdhEIszWBX4EhT8804ihxPfOvX+M6g=)
2: qLq2HDYOoQjNGSx856ftVWW9--A.crl (hash: 2CKN6Tfg/VUFlppYb0DZiqEo9lLk0xRZNrJkWSVy6yA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:74:57:ce:cf:a8:30:5e:15:b3:81:db:27:db:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8bab61c360ea108cd192c7ce7a7ed5565bdfbe0
Validity
Not Before: Aug 23 12:00:45 2025 GMT
Not After : Aug 24 12:00:45 2025 GMT
Subject: CN=ae30524d70493e763b33150ff5cfe881037909e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f1:85:61:b6:48:b5:52:32:5c:d3:54:da:20:
80:ce:8c:8b:5e:38:db:57:c0:a0:82:c4:98:d3:a4:
0c:e1:af:c8:2f:4e:64:36:31:a7:6d:af:c9:6f:8a:
d4:d2:32:28:62:72:8e:b6:b9:fa:c2:c5:b3:cf:34:
cc:d5:24:cf:77:10:25:44:ec:73:18:26:ed:cf:53:
1a:2a:93:36:f7:09:2f:aa:60:c1:d6:42:19:21:42:
fa:dd:6b:9e:85:4c:f0:c2:16:9c:1a:fc:b2:96:e4:
3e:56:48:28:12:59:f4:f9:fd:65:75:ef:7c:7c:f5:
db:00:d7:2f:e4:c7:42:30:6f:83:c6:04:ae:ba:0d:
e2:f6:76:fa:42:27:a6:79:6b:f4:83:73:c9:a1:90:
1e:77:d0:e1:89:5f:c8:d0:ad:f2:77:1d:3f:e3:4f:
21:7c:3f:35:f3:05:4d:41:bb:7d:ca:56:89:76:8b:
70:dc:b6:fe:a9:80:c4:54:5e:7e:4a:d8:3c:7f:b4:
77:39:3e:16:d9:6b:bd:67:b2:64:7b:6f:8e:53:59:
f2:3d:5f:2c:6e:db:17:d2:a4:f7:6d:63:58:c1:bf:
17:20:96:41:6d:14:82:f8:de:1a:c3:37:a3:fe:fc:
8f:79:27:3d:a3:bd:cd:4b:82:de:0b:18:16:bc:ac:
31:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:30:52:4D:70:49:3E:76:3B:33:15:0F:F5:CF:E8:81:03:79:09:E2
X509v3 Authority Key Identifier:
keyid:A8:BA:B6:1C:36:0E:A1:08:CD:19:2C:7C:E7:A7:ED:55:65:BD:FB:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:92:4f:d0:d0:8f:4e:68:f5:04:cf:7f:8c:c4:8d:55:e6:7e:
3f:22:03:c8:e9:82:5f:f9:1f:35:fe:2d:73:e6:a1:b6:47:66:
21:c0:ec:d9:17:70:6e:44:a8:9e:b2:0a:32:bb:ce:8d:57:7d:
82:86:83:a5:c7:69:43:e0:54:e2:3e:64:07:e1:40:9f:1b:d4:
27:58:5d:54:80:be:0f:02:a5:90:15:24:c8:1d:b3:d5:34:8f:
0c:5e:9f:f8:e7:e1:37:34:a8:6a:73:fe:77:75:be:8b:5c:60:
09:74:88:6c:9f:36:ad:93:cc:29:4f:75:17:39:1d:f5:1d:5c:
1f:0e:fd:dc:46:ae:fa:3f:88:af:36:e3:f6:72:61:56:a7:64:
4b:20:f5:22:0f:c9:b4:74:2b:02:5b:4b:c4:60:4a:72:d4:67:
2d:ba:17:71:e0:73:89:a4:bc:32:98:68:67:ee:86:ca:a2:27:
80:6a:de:52:3a:b5:01:a3:6c:8e:93:0b:27:04:3a:62:d3:b1:
a5:9a:9a:c4:86:58:c7:cf:ec:66:67:e0:c8:11:8d:b1:5f:bb:
05:7b:19:d5:30:54:6f:9a:8f:a9:5b:56:76:ba:35:bb:be:af:
b3:e1:cf:7c:92:d9:c6:0e:75:f3:7a:1b:e9:af:d2:73:34:ea:
a1:a2:fb:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:51:11 2025 by rpki-client