Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: aUOIyVVQGeQs3452aWnlEi8/e6NXLcGLdiTgMJwXB2o=
Subject key identifier: 49:8F:65:0D:B1:3A:58:59:79:3E:6A:D1:66:8A:D1:B5:C9:32:B7:1D
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 0197B88F0EF386391D8ABACF342BEA9DD118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 121A
Signing time: Sat 28 Jun 2025 22:01:12 +0000
Manifest this update: Sat 28 Jun 2025 22:01:12 +0000
Manifest next update: Sun 29 Jun 2025 22:01:12 +0000
Files and hashes: 1: CRyZWe4rqJ2qdiNWuAP-OJQeZow.roa (hash: g+uZ3IirtTKelPa51RylP3yoQBkp1cF9hHY0LUNHp8g=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: yKS/lSav7SXrC+p/XFsfYlasY2YD05DwzuBD2N/gjb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:0e:f3:86:39:1d:8a:ba:cf:34:2b:ea:9d:d1:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: Jun 28 22:01:12 2025 GMT
Not After : Jun 29 22:01:12 2025 GMT
Subject: CN=498f650db13a5859793e6ad1668ad1b5c932b71d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:0d:cc:60:6a:36:97:1f:c5:01:9c:14:19:aa:
a5:93:c8:fa:69:0f:eb:0b:00:5a:d1:9c:6e:b2:09:
ca:50:ff:b9:60:19:87:2e:1b:aa:89:f9:f6:f6:2e:
da:27:80:20:fd:c2:03:0b:fb:0c:4f:82:d6:1b:ea:
95:71:cc:90:07:c4:2d:4b:14:b6:2d:95:23:53:25:
df:eb:b6:6f:44:10:eb:22:f1:f3:99:0c:0d:3e:16:
52:1a:27:27:13:e0:94:54:96:9b:56:71:cc:5f:a0:
91:5d:87:cc:26:7c:d5:e0:cb:1c:86:2c:39:0e:e9:
13:e5:08:71:57:c3:b0:46:82:d0:c2:0a:67:11:79:
8a:12:05:a4:fc:f9:2b:87:7e:db:a6:6d:d9:76:f3:
57:96:6a:00:d4:57:73:eb:da:4b:a7:6d:72:5f:16:
84:bd:94:6d:ad:19:11:dc:19:3a:e1:8d:62:18:b3:
e7:55:9e:46:30:b7:f6:0d:b7:32:e0:1b:5f:6f:68:
b6:84:63:38:12:54:dc:86:e0:52:df:07:26:b3:e1:
20:c7:e6:f2:e9:28:63:b1:cd:62:65:42:ac:29:c8:
09:28:ba:17:ec:f6:e7:9d:97:62:ff:4f:63:be:42:
a5:13:19:2b:7f:24:82:e8:6c:aa:a6:53:19:95:8a:
17:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8F:65:0D:B1:3A:58:59:79:3E:6A:D1:66:8A:D1:B5:C9:32:B7:1D
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:ab:39:9e:19:f8:b1:e5:8d:4a:54:b9:b9:31:50:ff:5d:fc:
f1:1d:4d:66:c5:12:3e:fc:7b:7b:71:99:ae:e4:85:c6:fd:70:
ee:f1:dc:14:b1:90:64:30:85:b9:6d:d5:6f:37:43:0a:d4:c2:
b8:91:f5:63:70:2f:77:db:6d:27:b2:e5:35:ce:71:65:de:0f:
97:5f:a9:ed:5a:f0:31:db:d8:4a:59:47:25:83:f4:27:80:71:
6b:00:ea:c0:ce:74:3b:50:f3:e5:0c:72:21:4d:7c:b0:a9:86:
1a:32:26:35:b2:10:c0:29:6e:11:f9:b4:af:4d:87:ea:f0:47:
45:53:75:d4:d6:f9:a8:5b:b6:1b:2e:10:8c:b8:59:4a:59:e0:
16:fb:de:11:95:e1:ee:6b:10:28:2b:53:9b:85:79:77:49:6b:
0e:35:56:90:82:c5:19:6d:af:ec:de:7a:60:d5:20:ef:11:3d:
f7:5b:15:8c:7c:05:0f:b2:c7:4c:dd:1e:b2:90:4f:43:01:f9:
4a:b4:ab:ad:45:74:56:0c:f9:50:35:b4:d9:b7:2b:c5:1b:76:
63:ef:95:79:a4:bd:37:40:03:a5:f1:7e:fa:dc:5e:23:97:ff:
29:08:08:65:cc:a0:4b:33:46:c8:bc:a2:28:4d:72:55:03:8b:
3c:4e:b9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:01:35 2025 by rpki-client