Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
File: QpXD7wDP_s4vcbYZkcbG09pJwRA.mft (raw, json)
Hash identifier: T/zRl+1BISnVo6sNBJ3Vi3/KAHWdWvrR+WrsUW9+3W0=
Subject key identifier: 40:7B:15:5E:B6:A3:D2:F7:1A:A5:69:21:50:8A:06:A9:BB:D5:2E:74
Authority key identifier: 42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10
Certificate issuer: /CN=4295c3ef00cffece2f71b61991c6c6d3da49c110
Certificate serial: 0198D5BC05119AED4F32D06A0735375420E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
Manifest number: 0333
Signing time: Sat 23 Aug 2025 07:02:05 +0000
Manifest this update: Sat 23 Aug 2025 07:02:05 +0000
Manifest next update: Sun 24 Aug 2025 07:02:05 +0000
Files and hashes: 1: QpXD7wDP_s4vcbYZkcbG09pJwRA.crl (hash: VCLfkzOF5huang0zcqNI4kTnEvb19EOcFp9E1HZsFOI=)
2: SGxwV5wEplv2xVzvW6jMMH0Hi4k.roa (hash: p0OjWToBEfnkzQw/yjz+AdE3+kwiUg0q1pmwBXRywUk=)
3: eC0FosjTUlbZcnWZVWIH359Lcd8.roa (hash: qDWdvtB5VIYnR+iPBmUfW1ayU92Br+j2BjK1vo1fUg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:05:11:9a:ed:4f:32:d0:6a:07:35:37:54:20:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4295c3ef00cffece2f71b61991c6c6d3da49c110
Validity
Not Before: Aug 23 07:02:05 2025 GMT
Not After : Aug 24 07:02:05 2025 GMT
Subject: CN=407b155eb6a3d2f71aa56921508a06a9bbd52e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:05:0b:44:97:bd:6c:af:73:f1:88:52:43:3d:
dd:f7:e4:25:35:c8:11:3e:dd:b9:48:68:13:e1:ae:
c5:cb:09:42:9c:b6:eb:0e:bd:dc:10:a0:94:aa:fd:
d8:86:d0:05:ff:f2:be:12:9f:34:a9:b6:cf:e1:ef:
43:1e:4a:9c:99:84:b2:ad:af:1d:f3:50:c1:9d:b8:
7a:0e:98:a4:4f:11:b4:fd:85:60:3e:a9:b1:ac:8f:
b6:bb:f2:a4:fb:50:2c:2e:da:bd:b3:a8:60:4e:95:
f8:b2:54:9e:a5:98:d4:0a:31:4d:08:18:d3:ae:ad:
18:20:a5:72:99:67:8b:48:c7:c3:90:53:e4:e7:9a:
56:49:a8:26:3b:58:23:6a:66:97:ad:14:57:e7:9c:
ce:3f:92:58:d8:cb:27:17:24:e3:98:18:03:68:f8:
77:95:f0:a3:c6:39:2f:d4:3e:4c:ec:e9:22:9d:e9:
16:b3:9a:bf:17:c3:a8:1f:3f:aa:4b:86:16:7f:31:
3e:78:9d:d4:3c:00:6d:fb:a8:1f:d2:4c:fe:14:b4:
62:24:54:b8:7f:be:c6:41:14:f7:cf:a1:a0:7b:03:
7c:a9:ef:cf:81:60:d2:89:6f:83:c3:23:c4:f1:f2:
93:e8:4c:a5:7c:60:48:1b:20:1d:0a:9b:c7:5c:b5:
70:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:7B:15:5E:B6:A3:D2:F7:1A:A5:69:21:50:8A:06:A9:BB:D5:2E:74
X509v3 Authority Key Identifier:
keyid:42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:c0:ca:33:04:28:15:b0:ea:32:c8:ea:23:c8:ea:24:a2:51:
7f:f6:58:3a:b5:aa:2a:1d:4a:2b:81:bc:f7:1e:fc:da:78:cb:
c7:ae:ee:2e:54:8b:88:41:c3:d0:30:6f:2f:7b:d4:7b:9d:78:
26:e2:4e:c4:9e:1e:95:36:20:d8:df:4b:37:c5:8f:62:ed:a2:
ac:ee:19:0a:b7:3f:2e:bc:88:40:25:3b:fd:75:01:91:9e:f8:
af:d5:8f:e4:95:a5:d1:d3:ad:28:3c:12:37:60:00:a1:1d:7a:
8e:81:ff:33:c6:a2:1c:08:b7:3f:b9:f1:be:a5:2f:c6:4b:1b:
40:85:a9:e0:b2:09:21:ee:03:6b:ee:3d:bd:9a:a9:c1:d7:3b:
10:97:2d:c9:52:0a:4d:b6:d0:d8:13:ee:88:83:40:a8:19:5c:
67:c0:cc:e4:e0:eb:82:5d:db:26:1e:d3:98:15:60:ea:16:54:
80:40:2e:c8:b5:6f:41:ec:46:c9:13:be:ab:34:f4:37:db:cb:
f2:1f:37:2d:46:e5:7c:7c:a6:0b:a3:8c:e9:d1:22:8a:d3:40:
01:1e:5c:f1:c5:0b:af:eb:72:4c:ba:23:ce:65:98:0a:d9:0f:
e2:b5:2b:72:c0:c1:b0:16:3a:4e:86:74:b2:e2:b6:32:ca:da:
f9:7d:fe:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:47 2025 by rpki-client