Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
File: qGBXhZ0WYOjYcpee5tamssQzowU.mft (raw, json)
Hash identifier: EfUuRvsFsZ+58fhlp89T3Q6mx3ZdM7Dq4G4b+unRtgc=
Subject key identifier: 32:E3:2B:3B:BD:19:70:9D:59:0F:60:54:97:4E:B3:8D:8D:0B:CC:DF
Authority key identifier: A8:60:57:85:9D:16:60:E8:D8:72:97:9E:E6:D6:A6:B2:C4:33:A3:05
Certificate issuer: /CN=a86057859d1660e8d872979ee6d6a6b2c433a305
Certificate serial: 0198D4A7F577A4E93D2A8B05E74F804DB5CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 02:00:33 +0000
Manifest this update: Sat 23 Aug 2025 02:00:33 +0000
Manifest next update: Sun 24 Aug 2025 02:00:33 +0000
Files and hashes: 1: PW17_Y421OHbEdWMpqGOAItDAMQ.roa (hash: L2gpot5aAwJ9/O+fD4LlOhf1tqLhMij+IcuFZyDR7dA=)
2: qGBXhZ0WYOjYcpee5tamssQzowU.crl (hash: NKfgEjDYQUlmhWUzsh9Oyyt83fGkYR66+yyH51NPuqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:f5:77:a4:e9:3d:2a:8b:05:e7:4f:80:4d:b5:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86057859d1660e8d872979ee6d6a6b2c433a305
Validity
Not Before: Aug 23 02:00:33 2025 GMT
Not After : Aug 24 02:00:33 2025 GMT
Subject: CN=32e32b3bbd19709d590f6054974eb38d8d0bccdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ac:af:89:6c:45:60:7f:13:8f:14:ea:0d:e7:
10:34:8d:be:15:61:b1:b2:2b:55:aa:84:1f:46:44:
71:08:20:26:5d:de:e0:60:3b:c4:0f:bc:51:dd:e0:
32:2c:4c:b7:c5:b1:c1:aa:5d:9a:46:51:25:db:64:
81:84:ad:bc:10:26:cd:e3:f6:21:fd:96:1e:b7:cd:
6c:c7:58:68:b5:6e:2b:78:0e:dc:8d:eb:10:33:19:
35:3a:a1:88:de:7e:8e:60:e2:1f:8d:28:fa:b4:11:
ca:c1:0e:f2:11:26:08:a9:30:c2:af:78:d9:7a:f2:
22:09:d2:1e:e9:08:93:ba:01:de:d5:39:ce:19:01:
3f:f4:4d:9b:71:3c:34:03:3b:9a:77:0b:dc:aa:ec:
71:19:40:ed:2a:77:2c:7d:ed:62:1b:f2:e1:9e:24:
37:2f:3a:0c:dd:b9:95:07:6b:f2:91:db:27:bd:25:
36:8c:39:87:9d:1e:4f:51:ad:e7:20:c4:4a:f3:24:
82:f3:fe:16:f2:bd:e9:0f:9b:8a:a7:c2:27:cf:43:
07:e3:3e:c5:76:a6:ee:86:ae:ff:96:2e:65:0d:b4:
fc:98:f4:4f:a0:da:aa:f5:aa:cf:8d:3b:e7:5e:4d:
60:42:be:1c:b4:5d:8b:e9:8e:e2:37:8f:96:a3:56:
00:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E3:2B:3B:BD:19:70:9D:59:0F:60:54:97:4E:B3:8D:8D:0B:CC:DF
X509v3 Authority Key Identifier:
keyid:A8:60:57:85:9D:16:60:E8:D8:72:97:9E:E6:D6:A6:B2:C4:33:A3:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:f7:1a:aa:32:73:03:c0:ab:08:58:8d:db:ab:af:61:e9:86:
11:d3:50:f1:c4:16:44:d1:1f:ea:f4:38:ae:87:b5:f1:ca:e0:
c9:a4:6d:6f:90:68:06:c9:04:1d:91:12:9b:4a:94:88:ca:7c:
1c:1c:e7:08:fd:c4:89:51:21:f6:6b:5c:11:7a:e2:d3:e9:e0:
01:dc:d1:22:32:80:cd:77:31:41:d6:d0:38:c6:11:b5:2f:a6:
08:73:26:41:48:83:fd:0d:a1:c6:8e:24:d5:3e:d4:09:97:64:
fa:33:1b:47:0e:c4:53:41:5e:ec:83:38:50:98:07:0f:df:e0:
02:dd:8a:1c:cb:01:24:6a:aa:4e:76:30:82:b2:3d:92:9d:4b:
58:b4:cd:a8:91:d4:0c:39:ae:02:f9:dc:71:cb:41:7f:7b:cb:
08:c8:8c:31:12:60:8d:7e:19:b1:57:44:3b:b7:52:87:91:8b:
31:d4:66:b5:ec:33:d9:d5:71:d0:0a:2e:7c:c8:14:00:ad:3e:
55:6f:ca:f8:9c:3c:f5:6e:ee:95:26:03:f3:00:2c:c0:d6:c4:
a3:bc:c7:a2:1c:51:ce:f6:b3:15:53:fd:3b:47:a3:c8:28:67:
ab:3c:18:b5:56:f3:52:5e:70:73:04:d6:9d:29:39:cb:3c:e5:
1e:35:c7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:43 2025 by rpki-client