Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json)
Hash identifier: Zb3CTeLASwlNnsXV70hCFdcZWUc0AdVqyspZxfDYIBQ=
Subject key identifier: 2E:6B:25:E1:46:E5:ED:C6:8E:BD:AE:7A:46:76:A2:39:51:62:80:BD
Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Certificate serial: 0198D54E0E0FD8384487C7EDF7F3B7790585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 05:01:59 +0000
Manifest this update: Sat 23 Aug 2025 05:01:59 +0000
Manifest next update: Sun 24 Aug 2025 05:01:59 +0000
Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=)
2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: Lw/wLJvuj1eQZ/V/iXhjK/tK1L3/LwHlCowM1Nhh5r8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:0e:0f:d8:38:44:87:c7:ed:f7:f3:b7:79:05:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Validity
Not Before: Aug 23 05:01:59 2025 GMT
Not After : Aug 24 05:01:59 2025 GMT
Subject: CN=2e6b25e146e5edc68ebdae7a4676a239516280bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9a:f1:1d:f8:e4:8b:20:06:21:2f:e2:b9:19:
9b:5a:98:cc:8b:48:f1:c3:4a:ec:54:a3:de:9e:e6:
fa:c3:28:f3:61:08:72:55:73:44:bd:6b:39:cc:a9:
0f:25:4b:3f:4e:ce:0b:bd:bb:a9:f9:9e:c2:63:04:
28:87:5a:7d:39:41:59:99:3e:a7:41:fd:af:a5:11:
a3:00:65:f7:a5:55:0b:7d:48:ea:84:1b:b9:7d:6a:
1e:c9:fd:9d:f8:eb:ac:91:1c:fd:8d:ce:8a:55:86:
33:d8:2c:e4:2c:88:f3:6a:1d:a8:5e:37:30:51:74:
31:40:a7:15:a8:8f:72:0f:b6:4f:e9:0b:f9:39:9e:
2a:79:5c:23:68:3a:ad:6e:07:6d:92:3e:61:35:65:
c4:b9:3b:f8:8b:6c:df:17:22:f7:15:fc:34:ca:70:
8f:dd:1e:ed:ab:59:13:2c:8d:43:89:09:65:48:59:
08:88:ad:ba:ea:98:eb:74:28:cc:ee:52:4b:89:b0:
bc:15:78:b0:8d:86:fc:b8:24:30:9c:82:f9:61:a2:
14:16:ab:e7:88:e9:68:a3:b6:50:6a:bd:2e:d0:c0:
a3:b6:29:b5:2a:92:04:4e:34:a3:dc:74:b7:01:5e:
dc:25:a6:32:f3:8d:6b:00:6e:31:d9:3d:db:a0:bc:
72:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6B:25:E1:46:E5:ED:C6:8E:BD:AE:7A:46:76:A2:39:51:62:80:BD
X509v3 Authority Key Identifier:
keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:69:a8:50:2c:cf:b6:8a:b8:78:4c:17:4e:5f:93:ca:84:1e:
74:33:53:af:99:35:31:20:bd:df:2e:12:1e:dd:bf:e7:52:80:
af:d6:5c:bc:b1:33:e9:80:49:2c:64:a4:b4:e0:34:98:ee:8e:
83:ec:eb:4c:72:fb:c1:2d:21:de:5d:ee:f9:ac:f0:96:08:18:
35:b6:60:a4:54:38:f9:d5:c1:7d:62:54:f9:68:b8:9d:fa:6a:
14:57:1c:8b:38:d8:f4:31:79:96:2e:ab:c5:be:31:3b:6d:b1:
40:bf:3f:5c:33:f3:af:42:ef:8a:9b:4d:02:c1:9c:8b:ef:92:
a4:cc:dc:d2:82:02:49:80:f8:2e:1e:ed:cd:96:b6:3b:a6:a3:
5b:98:64:3e:b8:0d:24:ff:55:96:89:d1:5b:52:92:12:9c:65:
f2:f7:dc:29:01:11:a4:0f:6d:14:14:6f:3c:77:cb:c2:f9:a1:
7f:3b:04:64:fb:3f:34:cb:46:0f:a0:04:31:5a:89:ff:d9:3b:
3f:f3:f5:75:69:7a:fe:6c:20:7f:a9:8b:9b:8c:b7:cd:7a:d6:
de:6b:f7:1b:98:5d:32:b4:6a:04:76:4b:4f:60:6e:2d:ec:b4:
f6:b3:3d:99:d7:01:f1:fa:c8:1c:ed:f7:bb:3f:81:d4:cf:d5:
44:8b:f9:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:14 2025 by rpki-client