Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json)
Hash identifier: oJeI0fiWiL5pPMT1ZeWxHPoOsLAl15xwtNb6SS+iQSk=
Subject key identifier: B1:2C:79:D3:F9:D9:30:DD:31:97:C3:44:E8:4C:3A:D2:07:3C:59:E8
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 0198D40486013DD087A9838993D7350724CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
Manifest number: 164A
Signing time: Fri 22 Aug 2025 23:02:02 +0000
Manifest this update: Fri 22 Aug 2025 23:02:02 +0000
Manifest next update: Sat 23 Aug 2025 23:02:02 +0000
Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: CQ4I2QJgWXmO7HQ9xoyTt+wf0Qam9Z8UFXGcaEuqFyg=)
2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:86:01:3d:d0:87:a9:83:89:93:d7:35:07:24:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: Aug 22 23:02:02 2025 GMT
Not After : Aug 23 23:02:02 2025 GMT
Subject: CN=b12c79d3f9d930dd3197c344e84c3ad2073c59e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b8:d5:d2:ec:ec:c2:4d:94:a0:4f:e4:09:12:
19:2b:31:0b:9f:20:14:70:7c:1e:ad:60:7c:55:3f:
de:b0:e4:c2:ca:e0:5f:af:f4:b3:28:9b:f7:fb:8a:
d9:43:f0:ad:6a:12:27:16:23:29:57:43:27:01:03:
62:7a:05:02:3b:47:ad:3e:26:d4:4c:15:60:05:a1:
71:1b:d2:2c:8c:fa:dd:87:8f:5b:c3:a3:70:4c:cc:
71:7e:df:d9:43:64:06:06:a2:2a:3c:68:f8:e5:c8:
a5:17:15:96:55:85:75:8c:76:c2:49:a6:4c:d7:e2:
d4:cf:35:77:04:fe:75:9e:c9:d5:61:b1:cc:b7:8d:
99:38:1d:50:51:61:e5:f4:bf:46:11:c8:c5:bb:5f:
c8:b3:e9:7e:6b:a1:1a:44:93:1e:34:b9:4c:37:55:
db:1a:39:f3:f2:b0:51:8d:4a:22:fe:0f:dc:03:9a:
1b:e4:53:de:c3:fb:47:bf:d4:4b:4d:16:72:96:be:
91:50:ca:bc:63:a9:7f:6b:f1:38:db:88:d4:27:4d:
6c:2b:5b:f8:2c:04:8b:18:f1:f4:90:02:10:96:5b:
b3:f2:0a:13:81:82:8f:74:06:1a:70:1c:d9:7b:bf:
57:a7:0a:42:d4:7c:30:f4:67:4d:10:a1:1f:29:0b:
2f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:2C:79:D3:F9:D9:30:DD:31:97:C3:44:E8:4C:3A:D2:07:3C:59:E8
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:1a:b9:44:5f:34:43:b8:cb:00:8d:05:ca:46:ef:a5:35:78:
b1:d8:87:8c:7d:56:84:f5:32:b9:aa:25:21:e0:8a:e0:f7:a4:
42:39:78:f0:74:4f:95:03:5a:46:2c:ca:ce:06:f3:cc:6e:d8:
a5:f8:a4:53:f6:8b:52:91:d0:f8:49:77:f8:ba:aa:60:5d:02:
17:86:18:e2:b1:a0:0d:2d:5b:7c:ad:28:0f:e7:a6:0b:a2:df:
6b:ee:d7:45:0e:f7:c9:e4:88:83:00:c6:b0:16:87:2f:7c:50:
6d:bf:2a:b1:c1:21:b6:b4:1b:0b:d0:d5:21:0b:c8:5e:cf:5c:
2e:3e:29:c1:a3:df:96:f0:84:20:e9:a0:3b:23:ed:f5:ef:30:
76:9b:98:90:6d:87:39:e9:4d:8e:bb:4e:4b:06:90:79:44:88:
66:11:ee:d1:0f:7d:91:bd:f3:53:11:31:8d:6a:fd:bf:32:fd:
68:65:16:44:ca:02:03:46:60:79:ef:eb:33:4e:02:e1:8c:8b:
93:27:f0:e2:be:f0:f7:8a:e9:ea:f3:e5:1e:78:c5:5c:f3:81:
53:b5:78:b3:08:3d:70:73:fb:ab:03:34:33:45:7f:31:fc:19:
cb:43:74:f2:86:6d:45:86:1c:a8:c5:bb:09:ea:3c:90:7a:ba:
0b:99:d5:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:21:15 2025 by rpki-client