Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: FyaDNu8hfOqKv5ybT18lCJN5Gcgsnpgl9ciwuPGs6fk=
Subject key identifier: 87:C7:DB:D9:51:6D:D4:75:26:46:AD:97:43:71:5C:46:47:00:DD:80
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 0198D473A82FCB938D6E76F798FA0602410F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 01:03:25 +0000
Manifest this update: Sat 23 Aug 2025 01:03:25 +0000
Manifest next update: Sun 24 Aug 2025 01:03:25 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: MdS5EwBWa4dldUxKKj4QDkLezs5pGwsw6oqH2Enl7cI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:a8:2f:cb:93:8d:6e:76:f7:98:fa:06:02:41:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Aug 23 01:03:25 2025 GMT
Not After : Aug 24 01:03:25 2025 GMT
Subject: CN=87c7dbd9516dd4752646ad9743715c464700dd80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c2:51:d2:d3:8c:e3:7c:b7:38:6d:99:ba:33:
7c:ff:c2:9f:ca:34:4b:2c:46:6a:07:9c:f0:23:38:
23:23:fb:fa:36:c7:61:13:9b:0a:9e:df:7c:1b:c8:
50:1e:d8:7f:fd:6d:0c:84:8b:e6:d4:a0:1b:ce:6f:
8c:02:64:2e:c7:a5:c2:7d:c1:71:c0:56:ff:ea:19:
f1:aa:05:6a:06:9d:45:7a:c2:e2:cb:d6:3c:8a:5d:
07:ff:6f:ef:74:0c:ac:4a:dd:05:bf:23:6c:10:d7:
3c:19:92:03:f6:cd:0e:bc:6b:1e:fd:e1:08:cf:1d:
f2:9a:71:af:31:f5:e9:d9:19:d2:17:13:b3:fd:fa:
ac:5d:04:aa:a2:44:82:f5:33:5a:4b:3d:1c:cb:1d:
e4:37:7e:df:8d:87:64:98:10:e8:94:21:ab:e9:70:
51:07:02:8c:c9:86:d4:5f:4c:e4:85:e5:d8:4b:aa:
85:9c:ed:e7:77:5e:9c:3e:76:27:f7:29:8b:8c:77:
11:58:15:8a:85:40:d0:bf:a1:be:62:47:06:45:86:
cf:55:8c:5e:5f:71:0e:3d:3e:04:99:90:e7:6c:fc:
d4:ae:ba:97:78:aa:0b:03:45:a2:2f:49:ce:19:1f:
07:65:17:5b:57:da:5d:06:95:c3:11:24:37:33:48:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C7:DB:D9:51:6D:D4:75:26:46:AD:97:43:71:5C:46:47:00:DD:80
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:a0:92:04:1e:cb:78:fb:d9:1c:af:fc:3f:65:b8:4b:8e:e8:
2a:cf:0a:9e:07:e4:82:10:8f:83:5b:cb:f2:0b:bb:31:35:89:
38:59:02:90:68:7c:1a:da:b1:4c:c0:d6:6f:45:cc:42:4b:e9:
6d:f1:a0:7e:2c:d5:b4:02:e6:76:74:53:62:48:05:67:3a:e8:
0b:15:35:e5:66:ae:d5:30:9e:ab:77:9a:d1:0d:ad:8c:81:5d:
e7:57:e7:c0:5a:88:af:13:b6:f8:31:3f:65:49:23:41:0e:fb:
e4:89:fd:37:c4:40:4f:18:70:e8:92:0f:4b:05:28:c3:00:38:
82:ab:6d:f8:76:16:22:59:5b:27:74:80:a7:38:83:f9:75:bf:
51:bd:22:91:b3:2d:80:1f:33:26:1e:94:22:ab:ae:fc:a3:3f:
77:aa:e9:f4:1f:48:76:25:7c:62:b7:81:92:40:b6:96:bc:37:
c6:13:4f:96:96:02:1d:e8:5b:f1:f2:a6:3d:a4:bb:11:05:e9:
69:82:25:13:b1:f0:30:f7:42:7a:1b:d2:15:0b:2f:89:17:d6:
bd:d0:b5:ae:1f:7c:0a:c9:96:95:64:61:9b:d7:68:ee:41:75:
e9:6e:f3:26:8a:cf:49:ea:bc:26:03:9c:88:b8:f2:70:31:fb:
7d:65:3d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:15:00 2025 by rpki-client