Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json)
Hash identifier: ump73/DLQkPZzoNpnNe9edmX3uNTq6do1iCnbo5wVo8=
Subject key identifier: 69:FC:71:6E:B3:6C:7A:2A:C9:F6:2B:91:1B:A9:36:53:87:A2:2D:4E
Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Certificate serial: 0198D54E0BE00A679521852D7354C593E00E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
Manifest number: 164E
Signing time: Sat 23 Aug 2025 05:01:58 +0000
Manifest this update: Sat 23 Aug 2025 05:01:58 +0000
Manifest next update: Sun 24 Aug 2025 05:01:58 +0000
Files and hashes: 1: HitPQyHhpEoVidVOwqr2ddK23LE.roa (hash: UNtTyCfc7GR1gxgfjG0Y/XLw7gBd/DnSW8H0cz2SvrM=)
2: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: SLS3MWbfgU3nAyHAYVH9JjKmnEVI2Y+bxHgcQwyqa2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:0b:e0:0a:67:95:21:85:2d:73:54:c5:93:e0:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Validity
Not Before: Aug 23 05:01:58 2025 GMT
Not After : Aug 24 05:01:58 2025 GMT
Subject: CN=69fc716eb36c7a2ac9f62b911ba9365387a22d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:32:f5:72:80:98:fe:7b:85:f7:fe:05:33:1e:
1b:e9:e7:75:46:2d:ea:a1:49:ed:a5:ea:7a:8a:d2:
c2:7c:50:85:aa:47:bd:44:5c:b5:fd:9f:82:b5:07:
d1:9c:b4:8d:ed:58:e6:ec:04:1b:5c:6f:0e:1a:e1:
6c:5c:45:ec:89:87:a4:be:7a:47:9a:f1:2a:55:62:
60:55:2b:6a:40:47:d6:80:c5:02:cf:d6:97:8a:65:
0c:fa:de:5c:7c:9f:bf:8b:cc:0a:b2:72:10:33:12:
39:e7:de:32:55:35:be:f3:d6:66:2e:fd:fd:28:93:
6c:0e:ac:8b:7b:e7:4f:ce:97:9c:f7:04:17:4e:a2:
4e:9b:c5:a8:df:f0:3f:98:e4:aa:91:f3:66:81:87:
bf:4f:2f:fa:14:64:11:39:79:f0:21:9b:c3:2a:68:
c0:01:50:bb:a8:a7:be:70:b3:aa:c0:3c:ad:0d:23:
28:df:ff:65:b0:6a:04:f6:8d:9f:33:0a:16:de:41:
12:56:f8:52:6f:88:06:16:c1:db:70:f1:da:13:db:
76:89:05:67:a5:8a:61:a2:77:dd:30:c0:a4:d7:f1:
a3:0d:0e:60:92:a6:8d:2b:f9:07:24:02:f2:af:96:
78:e1:8b:fe:5c:97:a3:1b:db:92:5a:b2:69:03:cc:
53:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FC:71:6E:B3:6C:7A:2A:C9:F6:2B:91:1B:A9:36:53:87:A2:2D:4E
X509v3 Authority Key Identifier:
keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:13:64:cc:07:27:07:df:6b:05:d1:f5:b9:0d:fa:c0:80:ef:
4f:eb:e9:25:16:85:e3:7d:c5:53:0f:96:e4:d0:a6:ad:27:9a:
7d:0c:bd:73:ca:65:bb:dc:0e:ba:70:cd:cc:9f:5b:82:9c:2f:
8a:18:40:b8:51:4c:09:0b:23:2e:79:ca:5b:ec:69:34:02:be:
80:96:0f:c1:75:f9:e4:19:4e:a7:59:0c:2f:08:3f:f5:9d:2b:
36:2e:55:e1:2d:3e:b4:84:15:80:aa:4c:96:43:4d:a4:39:8f:
73:b0:a6:83:41:aa:0c:f6:69:14:05:7d:bd:cc:24:f8:b0:0e:
f7:a8:02:ff:27:fe:a4:e6:fd:38:2e:23:aa:bb:58:1c:1d:2a:
c9:85:9a:e2:00:a9:ec:3b:c7:06:44:4b:29:44:3f:f2:5f:80:
d1:e0:44:01:c4:2a:0b:77:bc:23:cf:49:a1:12:c6:8f:81:d3:
7f:22:e4:5f:4a:ef:36:f2:09:04:0d:02:e6:bf:21:ab:3f:89:
f4:5a:3a:3f:e8:2d:25:be:32:b4:fd:32:70:82:05:ae:b7:fb:
89:16:89:90:93:94:de:e2:45:48:6f:a2:3c:9f:c9:b0:de:bd:
84:f5:01:8a:7e:8a:62:de:85:a4:78:fb:a6:f3:62:cc:ed:ae:
10:6c:a2:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:32 2025 by rpki-client