Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: ySGZWOwNmihldddN34Xxomqe94948ZdmtGVfrrky5i8=
Subject key identifier: 2A:F4:8E:F7:45:BB:93:7A:AF:16:2F:58:0F:5D:CB:BB:D1:82:4E:07
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 0198D660893630AF3C6C8EA484F21D75C113
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 12AE
Signing time: Sat 23 Aug 2025 10:01:47 +0000
Manifest this update: Sat 23 Aug 2025 10:01:47 +0000
Manifest next update: Sun 24 Aug 2025 10:01:47 +0000
Files and hashes: 1: CRyZWe4rqJ2qdiNWuAP-OJQeZow.roa (hash: g+uZ3IirtTKelPa51RylP3yoQBkp1cF9hHY0LUNHp8g=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: DZamctjtifzLGhH5kCU7XByJPQ4LXFQ3LqjlisxyZ18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:89:36:30:af:3c:6c:8e:a4:84:f2:1d:75:c1:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: Aug 23 10:01:47 2025 GMT
Not After : Aug 24 10:01:47 2025 GMT
Subject: CN=2af48ef745bb937aaf162f580f5dcbbbd1824e07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2c:48:2b:76:26:92:86:46:09:cd:a8:ea:d1:
9f:f1:d7:00:82:8c:27:10:c0:9b:1c:0b:e7:33:1a:
5f:6f:5c:cc:30:e2:cd:d2:02:9f:a4:20:72:ad:c4:
53:e7:c0:70:35:02:bc:94:74:bb:3f:3e:45:4f:e2:
91:77:df:6e:1b:fa:28:3e:b8:b3:d2:60:f0:49:ea:
09:a4:e3:02:c0:82:77:01:ff:8e:a7:a2:55:9b:37:
54:a8:d7:50:1a:7f:ab:f8:79:d5:2c:16:1e:91:84:
e8:b3:74:77:48:bc:67:af:12:91:90:58:ce:10:08:
fb:e6:6f:7d:fc:81:ad:90:68:a3:24:55:f5:5b:bf:
44:1e:b6:7c:f7:0f:18:fc:67:f5:cb:1c:13:b4:b9:
c5:bf:dc:46:de:cf:25:8d:67:16:16:d3:83:68:39:
1e:1e:0a:d1:0f:06:93:09:87:fe:34:be:ad:cf:f8:
7e:dc:29:e1:16:cb:f0:dd:0d:14:60:11:7a:11:e9:
66:7f:7b:92:b4:f8:8b:f7:ff:70:c5:06:51:54:e9:
d5:f8:a6:dd:cb:2c:e3:cb:ad:49:45:5c:14:0b:a6:
f2:a0:c7:10:8f:e7:70:8a:ca:ee:a7:ee:a9:8d:2a:
73:de:5d:ef:5e:18:f9:9b:1e:ca:91:f9:21:df:b3:
08:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F4:8E:F7:45:BB:93:7A:AF:16:2F:58:0F:5D:CB:BB:D1:82:4E:07
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:8f:63:67:de:9a:e7:18:8f:f9:ce:35:a1:96:42:ae:c9:0c:
55:27:1c:ad:ca:90:c8:c5:82:bd:00:3c:02:ff:83:cf:aa:c4:
f7:f6:b7:d8:54:d0:56:e2:28:0f:0d:3d:f4:a0:20:5b:0f:e4:
fe:8b:34:63:3c:da:22:80:f5:e2:78:4d:9d:91:70:33:4c:9c:
f6:69:c3:9d:34:ed:cf:59:d8:d3:32:2d:e1:bd:fe:ec:a9:72:
48:c7:44:6e:f4:0b:62:ab:9d:d7:0f:dc:6b:c3:0e:2a:9d:f5:
2a:7b:b5:93:f8:f6:c4:88:0b:06:66:bc:74:59:83:44:5f:11:
e5:54:83:d1:ab:fb:41:df:40:26:c4:ce:1e:3f:4f:d0:dd:35:
ff:7c:4e:a1:ae:41:fa:fe:02:74:32:25:ef:19:48:a1:ab:cf:
75:fa:29:55:74:38:29:1d:71:b3:93:19:dc:fe:e7:22:ed:99:
b5:50:56:2a:43:0f:56:ba:d9:ac:2e:da:5a:95:0c:04:6e:b0:
bd:2b:22:6b:85:85:4c:44:61:f2:b9:88:05:1b:d1:d3:51:18:
eb:9c:34:bd:1f:e4:b2:f5:45:4d:2a:1c:ca:74:63:e2:56:c8:
20:47:bd:56:86:1d:8b:7b:0a:5d:f6:1a:bd:2b:09:d7:56:c8:
d4:77:93:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:33:15 2025 by rpki-client