Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier: Fqc5KgDVfjHQb5KasDchK1jJ8cXvGIc6JWSc77sml7I=
Subject key identifier: 4A:65:F2:FF:2B:26:BC:A9:63:75:83:30:79:43:1F:1E:4D:1D:E6:BC
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 0198D65FF6B757B9A5D5D68C93EEC0647F43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 10:01:09 +0000
Manifest this update: Sat 23 Aug 2025 10:01:09 +0000
Manifest next update: Sun 24 Aug 2025 10:01:09 +0000
Files and hashes: 1: USQ6h1BmGX_5l6r9JsziO1Ui1Vw.roa (hash: W3xrS1zgc7QMM+ux8ilDAtn6lUWxhEYKoHwrzSB4Kb8=)
2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: d8Nq1LhpxqIv7tKhKGfO+SVhdnGpVBaMdE9/KiMzY6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f6:b7:57:b9:a5:d5:d6:8c:93:ee:c0:64:7f:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: Aug 23 10:01:09 2025 GMT
Not After : Aug 24 10:01:09 2025 GMT
Subject: CN=4a65f2ff2b26bca96375833079431f1e4d1de6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:41:d1:78:cf:4f:cb:9b:af:7a:df:40:ef:e9:
56:ae:4f:47:25:cd:18:84:0f:8e:9b:c9:8d:f8:d4:
f3:6b:8a:ff:38:25:29:cf:d6:3a:05:01:f8:3f:14:
55:98:b1:c0:c0:86:44:9a:53:4f:8d:ce:bf:df:6b:
11:95:77:51:84:e8:37:2e:de:99:4f:36:8a:ec:b3:
c3:3b:6b:fe:5a:cf:30:fb:2c:17:63:05:bd:9f:73:
b4:70:d7:f6:5b:40:91:a3:61:de:c1:af:25:63:8d:
22:b9:33:75:60:6a:34:65:e9:7f:75:f7:6e:e8:8b:
ac:01:4d:80:b8:f9:02:16:32:af:6e:54:9f:83:a6:
2f:68:ba:b0:95:06:1c:c6:50:82:f8:10:5f:6f:3a:
31:16:e8:d3:da:20:d2:6d:0d:ce:91:ee:f4:f2:70:
b9:c1:f1:69:74:a7:c4:42:55:cf:46:33:1e:e1:51:
68:0a:9c:60:b3:55:36:26:c0:34:63:19:23:a8:42:
c5:2f:ba:a6:e5:35:d3:e5:8e:2c:8d:d1:97:8e:7c:
13:23:2f:3d:de:48:04:42:f4:bb:5c:08:55:a1:2c:
92:64:a1:1a:5b:10:07:70:82:8e:61:d8:78:44:4d:
d2:ba:1f:de:4d:9e:e8:4d:9d:76:87:50:bc:ab:54:
91:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:65:F2:FF:2B:26:BC:A9:63:75:83:30:79:43:1F:1E:4D:1D:E6:BC
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:51:ac:7e:f3:83:9e:29:31:65:6e:6c:2c:e7:ba:0a:71:e3:
20:97:99:d6:77:a9:4a:1a:5e:1d:c2:85:26:8a:a3:5f:7a:56:
b7:79:9b:f1:65:0e:1c:9a:9c:f0:40:93:1a:f9:04:43:1a:02:
6a:49:43:02:bb:14:76:97:14:ea:7c:c3:ae:d2:e9:14:18:5d:
94:dd:02:3c:b5:ef:49:2e:19:5b:d6:92:c5:cd:95:8c:23:3a:
8c:b2:0c:29:b0:60:b6:14:dc:0c:86:3a:c6:b9:1f:17:67:7f:
5c:8a:47:11:ea:c5:65:95:ea:c1:e1:84:3a:53:55:b6:d0:93:
d9:1f:a3:29:3c:ce:c4:d8:a5:37:b4:8a:71:07:64:27:29:9b:
5f:0e:a0:57:7d:e4:62:26:13:8f:2d:eb:ca:26:bc:9f:57:b7:
c9:a1:6c:2c:e4:19:80:d6:a6:b7:65:33:0f:ec:3c:a2:1b:c8:
b0:0c:bd:37:32:32:25:c9:81:45:df:dc:e7:46:74:5c:b0:ee:
fc:37:f5:d0:1a:84:b4:f8:e1:2a:9a:6b:fe:27:8e:f4:1a:c6:
0e:04:73:b9:ea:0a:b0:04:d1:23:41:45:95:ae:d7:e4:15:ed:
d1:ab:c1:86:67:44:d2:f0:30:cd:d4:15:47:2c:65:79:f8:a3:
7f:50:5f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:34:59 2025 by rpki-client