Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json)
Hash identifier: YO7ZPU5/5aO9Ca839zQz8JzeMrKgNbvkgxOH8NQKvkU=
Subject key identifier: 4D:DD:43:40:9A:F2:27:C6:6E:FE:01:2D:22:7B:5A:89:61:45:28:97
Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e
Certificate serial: 0198D773424B5BF2CD3C21C11FC7460B227C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
Manifest number: 0519
Signing time: Sat 23 Aug 2025 15:01:51 +0000
Manifest this update: Sat 23 Aug 2025 15:01:51 +0000
Manifest next update: Sun 24 Aug 2025 15:01:51 +0000
Files and hashes: 1: KrtTh6gsfptfdAcGq3CmJjqfV2o.roa (hash: eRRAdGSdFwP7Zvo2rxHWeAe37W0cOjnKNlia+tVBb+M=)
2: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: Tui/03IFMCgJjEiTd15eNgfsK9qMxauRoyWhNdag8p4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:42:4b:5b:f2:cd:3c:21:c1:1f:c7:46:0b:22:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e
Validity
Not Before: Aug 23 15:01:51 2025 GMT
Not After : Aug 24 15:01:51 2025 GMT
Subject: CN=4ddd43409af227c66efe012d227b5a8961452897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:85:24:ec:7a:8f:50:2a:75:6f:dd:38:46:21:
03:40:18:e2:e9:54:a9:80:74:31:7a:a7:07:37:6e:
6b:74:d8:f4:ff:de:0d:76:f9:f1:17:bd:e7:e5:9f:
36:02:91:5f:99:69:29:ab:b8:40:7c:b5:0b:47:5b:
d9:30:24:b2:eb:a4:86:da:ce:86:16:cd:9b:df:30:
71:ed:dc:7a:42:87:f0:a9:0d:11:46:1f:11:f9:6a:
af:28:92:a9:52:cd:24:9d:5b:aa:65:83:40:83:62:
a1:84:7a:df:dd:73:8e:0b:32:e5:fa:a8:14:2c:a3:
1b:cb:e8:9e:4f:73:1d:90:01:f6:00:7b:bd:d3:52:
a2:e4:fa:5a:52:43:e4:2e:cb:e0:18:0b:24:ea:ec:
1f:73:8e:a0:b7:48:78:18:58:e7:5a:25:d1:1e:0d:
82:9e:ec:77:99:85:57:ab:57:94:48:5c:f6:75:45:
1d:0a:f5:b6:0a:2e:96:12:b3:29:8f:33:cf:32:bc:
b3:3e:01:e9:60:2c:cc:6b:db:81:d2:28:92:fe:90:
e6:e6:3e:0e:c7:21:d8:11:15:40:2f:56:f3:e5:98:
84:ae:86:b7:1b:d8:42:f8:e0:f2:21:d7:ff:9e:cc:
08:72:5a:85:2c:ee:67:ab:be:83:a8:fa:91:ef:2b:
6a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DD:43:40:9A:F2:27:C6:6E:FE:01:2D:22:7B:5A:89:61:45:28:97
X509v3 Authority Key Identifier:
keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:54:e3:7a:6f:10:d9:9a:99:ce:8c:29:84:ea:95:08:9c:c3:
74:40:2f:7e:97:88:e9:34:ff:f7:6d:dc:11:83:ef:25:d2:07:
0f:dc:0a:1d:67:d6:e2:c2:bf:12:9a:be:7e:08:c2:06:32:fa:
3a:42:e9:38:49:18:68:6e:bb:46:b1:cf:12:8f:1d:70:42:97:
0f:53:0d:60:10:10:f2:11:1a:5d:60:68:5e:72:7a:64:43:3a:
ba:db:c5:be:f2:ce:9e:f1:3d:22:56:97:4c:97:06:d1:c4:6b:
47:65:3e:3d:f2:69:94:bb:d8:41:a6:f1:5c:92:27:9c:72:e1:
61:6b:72:0d:b1:6f:99:56:c8:2a:f9:67:98:b1:d4:b7:7d:77:
4d:e9:79:a4:8f:12:3e:be:2f:85:b5:92:5a:6b:92:82:9a:ce:
d1:87:28:5f:e0:9e:11:11:e5:4e:82:f4:68:ba:b6:e4:7f:c2:
89:ae:4d:23:81:97:4e:11:2c:1b:3d:ab:78:82:a6:9b:5d:17:
49:72:a9:cd:4e:3e:33:98:d5:33:40:e9:a2:5e:66:78:c3:97:
24:d3:bf:f5:fb:b2:97:f4:94:93:9a:7b:9c:f2:be:c8:26:62:
94:ef:38:8e:b0:09:3f:04:50:01:4a:bb:f7:55:4e:f6:fd:50:
74:78:6e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 23:37:37 2025 by rpki-client