Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.mft
File: qoxALCO4BeCVMBFbvkREAg9PIDQ.mft (raw, json)
Hash identifier: TsyWB1n0iz3P3RntDzlns5Jky73fiXiiIxYz5oDOexM=
Subject key identifier: 87:40:F4:29:BB:C3:25:34:59:E6:C1:30:AF:12:72:2A:EF:7E:DF:24
Authority key identifier: AA:8C:40:2C:23:B8:05:E0:95:30:11:5B:BE:44:44:02:0F:4F:20:34
Certificate issuer: /CN=aa8c402c23b805e09530115bbe4444020f4f2034
Certificate serial: 0198D65F51B30BB12D306532A391D31D40B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoxALCO4BeCVMBFbvkREAg9PIDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.mft
Manifest number: 0748
Signing time: Sat 23 Aug 2025 10:00:27 +0000
Manifest this update: Sat 23 Aug 2025 10:00:27 +0000
Manifest next update: Sun 24 Aug 2025 10:00:27 +0000
Files and hashes: 1: qoxALCO4BeCVMBFbvkREAg9PIDQ.crl (hash: YezwspZmOs47Rn+BQd5CW0Zp3UosRJvmexgBhxJYA2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qoxALCO4BeCVMBFbvkREAg9PIDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:51:b3:0b:b1:2d:30:65:32:a3:91:d3:1d:40:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8c402c23b805e09530115bbe4444020f4f2034
Validity
Not Before: Aug 23 10:00:27 2025 GMT
Not After : Aug 24 10:00:27 2025 GMT
Subject: CN=8740f429bbc3253459e6c130af12722aef7edf24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e7:4c:d5:2a:8f:2f:5f:1e:6d:4a:1f:86:db:
2f:c3:2f:af:7c:57:83:6c:4b:62:24:eb:22:a9:19:
39:54:b9:dc:12:9a:2a:11:19:7c:0e:d6:5f:47:f2:
a0:88:82:6a:a0:33:c3:9a:b6:aa:f5:94:34:17:40:
32:27:ed:f1:bf:60:4e:cf:ba:cd:24:fa:c3:c2:d5:
31:0e:8c:f8:cb:d3:7d:1e:b0:88:d1:36:70:b8:77:
13:41:7d:ae:85:51:c3:95:6a:ec:b2:4e:81:fa:f0:
90:7a:62:99:1c:9f:9e:90:18:51:c3:c1:98:42:c7:
10:ad:1a:c9:5c:88:c9:6d:31:c9:5b:49:36:95:7d:
6e:b6:b9:a4:88:bb:4f:00:0e:f1:d8:5d:40:ae:db:
87:95:42:ee:ba:09:c6:88:bc:75:f0:e1:47:4f:6f:
1c:a2:ea:d2:ba:b3:a2:3a:8d:9a:88:fe:59:e0:ec:
61:75:9a:20:0c:bb:72:69:50:e9:85:ae:35:94:e8:
f3:13:0e:10:88:bb:5a:6d:7d:c1:d0:21:25:a0:2d:
22:b9:a9:b1:2f:04:6b:12:69:eb:13:9a:96:d3:3a:
eb:38:ac:f5:0a:13:62:0d:25:8e:ab:f5:de:08:b3:
c3:25:1e:ae:6d:24:1e:82:11:80:9a:f1:ec:f7:08:
4a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:40:F4:29:BB:C3:25:34:59:E6:C1:30:AF:12:72:2A:EF:7E:DF:24
X509v3 Authority Key Identifier:
keyid:AA:8C:40:2C:23:B8:05:E0:95:30:11:5B:BE:44:44:02:0F:4F:20:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoxALCO4BeCVMBFbvkREAg9PIDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:c2:8f:f3:02:f5:95:26:0c:ec:f2:00:e3:55:23:cd:34:17:
eb:84:10:5a:bd:cb:90:de:19:cc:60:77:c6:d8:49:2f:d1:65:
fd:cd:91:45:2b:86:ac:e7:c0:17:a9:7d:19:43:38:9f:7b:43:
59:17:ef:3b:dc:0e:ef:54:ac:d7:6a:b1:7b:90:ff:e7:67:4e:
61:a1:d5:e0:8f:6d:03:b6:08:f2:ef:51:02:ee:62:7f:d8:ce:
4e:fc:e7:74:37:7f:4c:b5:b4:d9:82:d1:c6:ec:16:43:8d:6d:
86:4e:69:17:67:e2:b2:0b:e9:e9:48:e6:8e:af:39:00:c7:79:
9c:92:7c:6f:4a:82:d9:b6:e8:0b:43:82:47:d9:f6:93:62:ed:
b3:6b:ca:53:ad:e0:5d:57:e7:c0:95:07:a0:3b:51:91:69:34:
ed:df:40:1e:0e:f2:ff:35:86:c9:69:c9:32:1d:51:13:4e:d3:
33:3a:0d:2b:30:7d:24:da:95:0e:13:f1:fc:04:ba:1c:c1:22:
f5:de:e8:da:f1:9b:40:02:c1:27:15:8b:30:92:07:7b:3b:bb:
ef:81:58:dc:de:35:6e:f1:45:2b:59:86:08:5d:a8:d9:c4:4b:
ca:49:a1:b3:7e:7a:5c:6c:ac:26:2b:ad:38:48:20:1f:13:55:
4a:eb:8a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:12:19 2025 by rpki-client