Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
File: QA4H15n7NVyVICXz0nsA6bTuNO0.mft (raw, json)
Hash identifier: p6rlnZWy59Oxo3gxGRIf0HeozdaGJbVhpiwapskdsxs=
Subject key identifier: 34:2A:A2:BB:67:B0:37:9E:96:25:AB:9D:16:E7:EA:70:22:56:CC:0A
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 0198D6CD3124E3B1E3A75997F064D6BB3E6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
Manifest number: 08B3
Signing time: Sat 23 Aug 2025 12:00:28 +0000
Manifest this update: Sat 23 Aug 2025 12:00:28 +0000
Manifest next update: Sun 24 Aug 2025 12:00:28 +0000
Files and hashes: 1: QA4H15n7NVyVICXz0nsA6bTuNO0.crl (hash: XVu9ybjxapYXyf+w0a/9Lk7BbqcIdMKozgAIfOJpvks=)
2: bysUciiIqYU9vJ8UfK9pbwZkqG0.roa (hash: JZVYwqtyAp0nMHO1FDIE6qYD96KGmAzDi7aqiaMlMrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:31:24:e3:b1:e3:a7:59:97:f0:64:d6:bb:3e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: Aug 23 12:00:28 2025 GMT
Not After : Aug 24 12:00:28 2025 GMT
Subject: CN=342aa2bb67b0379e9625ab9d16e7ea702256cc0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:89:9a:0b:17:49:51:d7:6d:1b:5b:ff:bb:52:
4c:e6:f0:85:b1:f2:a5:7c:0a:7e:01:54:37:a9:b0:
04:db:10:39:4d:c7:3e:61:45:df:6c:35:7f:d7:72:
52:4a:f0:33:2c:1d:9b:be:3c:ce:3b:4d:9e:e3:6e:
d1:17:e0:cb:c2:b1:f0:21:04:00:2b:43:9c:b9:fd:
0d:9c:8a:1d:3b:da:f1:42:79:89:0d:1f:f6:65:a3:
3f:cc:36:23:66:ca:50:4f:e6:71:5c:78:9a:09:82:
d9:4c:e7:d3:4b:98:e7:74:f0:65:17:e4:3d:e0:cb:
de:a1:1e:f1:e2:a1:9a:15:1c:91:38:5a:0e:a0:7f:
09:eb:c5:1f:5b:a1:62:3c:df:29:29:c5:0b:c6:d3:
8d:79:15:19:01:c6:32:82:4c:04:b8:e2:21:43:a1:
ec:ff:0b:6c:ac:3e:2e:9f:c1:ae:9e:79:7c:ff:3b:
4a:3b:9c:00:65:64:5e:5e:17:20:3f:b1:4f:c5:d9:
9f:21:98:59:c7:52:0a:ab:70:d7:bd:c4:25:73:d3:
1b:f0:09:01:6c:a9:32:ff:c4:96:85:ce:32:4b:fe:
8f:63:2f:54:94:d6:51:78:97:6b:46:af:9a:08:6b:
10:ff:1a:0c:e1:ad:28:f1:eb:c1:d5:bf:8e:94:95:
8c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2A:A2:BB:67:B0:37:9E:96:25:AB:9D:16:E7:EA:70:22:56:CC:0A
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:06:1b:ce:ce:11:41:f1:32:85:fd:56:1c:0d:0e:1e:89:f8:
55:bf:89:49:0e:ae:86:6e:fb:c5:61:bb:07:bf:66:83:f9:4f:
f2:3c:69:b4:35:8e:56:cf:46:8b:89:c2:c4:66:36:3b:72:11:
ab:5b:32:4f:ad:08:b3:f9:4a:2c:0a:12:1f:e0:22:c9:08:88:
37:e5:28:65:1f:b6:98:d8:d7:e6:6b:5b:6d:b3:88:d1:1c:45:
d9:93:bd:61:1a:e6:b9:eb:bd:8f:5d:fb:3e:3b:02:04:56:38:
c6:28:ef:62:d9:a8:49:07:2e:81:3c:24:33:53:23:89:63:1c:
63:f0:0e:77:7c:a5:c2:ee:d2:8c:14:3e:6d:1f:a3:2a:36:34:
9e:9c:ce:cf:ef:3a:4f:c2:9c:fd:47:07:36:d4:ec:2f:e6:ec:
f2:c0:48:fb:46:14:ee:34:4a:18:81:0f:0c:2e:e3:c3:43:0d:
2e:29:df:b0:ab:f5:ae:3b:6e:a5:01:2c:91:a6:60:67:16:ae:
1c:84:78:38:81:73:b0:de:19:fd:c3:4b:5e:45:35:33:a3:e3:
56:0c:96:47:87:e8:63:c7:01:45:31:ac:07:d4:72:5b:48:6a:
96:e7:a8:c7:33:f2:4c:5f:ed:76:d7:e4:74:e5:85:62:06:39:
ff:7c:b9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:29:39 2025 by rpki-client