Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
File: QM1aUDjV4S_hydn1yGZAdMPdCsc.mft (raw, json)
Hash identifier: FApkzTWtYn9+5Uh8kyxfSEqFENTTjc7bWrjx/5DKJuk=
Subject key identifier: FE:DE:CA:6F:92:D6:C9:7A:37:32:D2:18:08:22:17:34:08:CD:A6:EF
Authority key identifier: 40:CD:5A:50:38:D5:E1:2F:E1:C9:D9:F5:C8:66:40:74:C3:DD:0A:C7
Certificate issuer: /CN=40cd5a5038d5e12fe1c9d9f5c8664074c3dd0ac7
Certificate serial: 0198D5BC0E7C5BFAB75108654D1A5A13297D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
Manifest number: 07F7
Signing time: Sat 23 Aug 2025 07:02:08 +0000
Manifest this update: Sat 23 Aug 2025 07:02:08 +0000
Manifest next update: Sun 24 Aug 2025 07:02:08 +0000
Files and hashes: 1: KVvOGYEyHhWhRHwS9LQjG3XK8EI.roa (hash: AFMADJ+EdA++truR6oHaQkzeXGaM562uJumCeUqnVzo=)
2: MHGZA5Y3PVpWBImn85tARMZRftQ.roa (hash: bnJhZwRrO7KGALVUCy1om+i/htb3dvM6lJ1uAmGl2G8=)
3: O1UMqFY4UYla6Wia0-cx5UTbNYo.roa (hash: yk9XmbWdQVbHd1Fk+ePRsax442yqoQX1eANsND8ceoU=)
4: QM1aUDjV4S_hydn1yGZAdMPdCsc.crl (hash: 5I7rv6rfevlM90OmcvFn6Pj/KULa8vcWBQXCVmjkT1A=)
5: TNSMUQvHGS8vGJs7QmyW0_jz86Y.roa (hash: qI6N5+Q6nkQDs5kBZ+Upq2gzqwGu3xE2kqSgmDsGATI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:0e:7c:5b:fa:b7:51:08:65:4d:1a:5a:13:29:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cd5a5038d5e12fe1c9d9f5c8664074c3dd0ac7
Validity
Not Before: Aug 23 07:02:08 2025 GMT
Not After : Aug 24 07:02:08 2025 GMT
Subject: CN=fedeca6f92d6c97a3732d2180822173408cda6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6c:f6:08:f2:37:aa:a0:c2:f0:0e:c6:35:7a:
70:c4:63:aa:0d:95:9e:a9:52:26:be:20:02:28:83:
23:eb:4a:3d:d2:f0:e2:2e:50:cc:af:20:c3:c0:f1:
90:72:8c:29:86:7a:c5:a3:f6:e7:5f:b5:ff:46:e2:
14:1f:68:bc:97:ae:40:24:52:1c:a6:c8:1b:d7:4f:
55:54:ba:47:3d:8c:fb:92:97:de:e8:13:34:c9:2b:
0f:eb:57:f6:3b:fc:79:a2:6f:bb:b5:12:d1:e6:9d:
a8:c3:f2:a5:f1:93:17:f8:d3:a6:f9:b3:86:a2:ae:
b3:1b:87:67:f4:56:9e:f6:7e:9c:98:90:ad:62:5e:
4f:d3:0f:60:55:26:89:fd:11:7a:43:71:1c:8f:76:
3a:2b:4b:88:3e:70:8d:0e:28:b7:0f:4b:96:6a:2e:
30:70:32:24:9d:c8:35:b2:88:ba:f5:72:50:ee:b0:
09:18:ba:20:c9:de:1e:2d:97:3d:6a:01:bd:25:8a:
38:62:af:42:e2:0f:cc:ed:7b:3a:b7:1f:f9:5f:3f:
10:4d:f9:75:4c:0e:7d:21:04:0c:5b:36:83:a8:22:
50:b2:36:1f:c1:20:e8:ea:4d:8e:72:a5:66:67:d7:
14:d3:dc:78:66:cd:e0:58:f6:99:7a:42:8f:96:47:
6a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:DE:CA:6F:92:D6:C9:7A:37:32:D2:18:08:22:17:34:08:CD:A6:EF
X509v3 Authority Key Identifier:
keyid:40:CD:5A:50:38:D5:E1:2F:E1:C9:D9:F5:C8:66:40:74:C3:DD:0A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:e5:4b:e7:41:b3:ba:ed:ee:48:90:60:9c:46:ee:4e:37:dc:
e0:a5:ef:5d:8b:e1:32:eb:6b:00:bf:b4:3c:0c:f4:57:e8:b2:
13:36:79:cf:bf:98:3d:37:b7:16:e4:d1:b4:79:0d:9e:0e:8a:
f3:50:26:c0:63:85:ab:a7:cc:b3:c2:89:89:3f:4f:c2:6a:e4:
43:c0:70:d9:7b:a7:fd:82:a6:09:12:ee:dc:0a:28:c8:fb:00:
db:03:54:ec:3f:5b:00:5a:ae:5b:36:5e:cb:55:16:21:d0:33:
11:14:22:bd:48:d1:e9:6e:64:23:dc:78:9d:dc:c0:70:7f:81:
f6:01:f5:35:b6:e8:73:bd:94:ac:11:5c:0e:d2:87:23:af:f0:
e4:7d:8d:69:47:f3:5f:b5:28:93:03:04:26:89:35:9d:38:96:
18:56:3b:34:54:4c:eb:49:ec:18:b7:01:b3:e5:9f:6b:4e:14:
a5:08:f4:bb:32:77:d4:b3:18:45:25:57:fb:c4:20:96:96:28:
cd:39:e5:26:a9:ed:02:40:cd:1c:16:9d:26:e2:0d:1c:be:32:
92:d2:38:4e:c2:b0:2d:00:d3:4f:db:1b:7c:dc:ac:89:58:56:
15:37:bf:ac:c3:f0:86:2c:ad:95:ce:fc:81:9d:6e:e1:5e:dc:
a7:1c:eb:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:27:41 2025 by rpki-client