Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
File: qlPNLFhKPcFiCLqTsNt0dzs_I74.mft (raw, json)
Hash identifier: jO4cQz1OYjNfo0jUBzUF1fpHWExjuxztzFSyCJgIClo=
Subject key identifier: 21:A5:EA:27:EA:B8:01:DD:3B:BE:2F:64:C7:45:2F:DE:28:8A:EF:ED
Authority key identifier: AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
Certificate issuer: /CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Certificate serial: 0198D6609018778DE1652E09FC2F5CC47682
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 10:01:48 +0000
Manifest this update: Sat 23 Aug 2025 10:01:48 +0000
Manifest next update: Sun 24 Aug 2025 10:01:48 +0000
Files and hashes: 1: eIuvCKiUKqnjxChjtjEAvL7JvnI.roa (hash: wyV3lMaUUP7vVQqM6FlcaWTPKvU8kW+p1xMsgVv6OJA=)
2: qlPNLFhKPcFiCLqTsNt0dzs_I74.crl (hash: VUxoqaMAHbTrGK8xkQWqWbXc7GPZgDg9quaZZ3c8rbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:90:18:77:8d:e1:65:2e:09:fc:2f:5c:c4:76:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Validity
Not Before: Aug 23 10:01:48 2025 GMT
Not After : Aug 24 10:01:48 2025 GMT
Subject: CN=21a5ea27eab801dd3bbe2f64c7452fde288aefed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9e:f8:90:55:56:45:12:fc:9a:a6:68:9f:03:
a3:f8:a0:da:a2:20:bd:40:f3:f6:ea:cc:71:d6:d3:
5d:bd:77:f0:b7:af:24:7f:f2:8c:6a:dd:10:1a:6c:
82:5a:38:c0:58:ee:52:95:82:ad:83:2a:26:63:3e:
09:18:a7:91:a7:c8:b5:bf:9d:eb:5b:d2:7b:55:22:
37:d5:3c:b4:aa:24:6b:a8:be:68:77:3e:2c:5a:78:
5c:84:64:77:0c:95:fe:db:85:2a:84:2b:3c:fa:db:
16:40:56:64:b0:fe:5e:51:43:66:47:8f:82:14:c3:
e8:9c:cf:f1:88:59:48:94:85:0a:a6:e3:ef:ac:30:
d9:c8:a6:89:98:eb:a3:a6:61:67:ec:fa:f4:ca:b9:
c9:82:7f:fa:eb:39:a7:7a:de:4b:32:ff:cc:4d:f1:
2e:a3:a0:55:0a:b0:af:b7:18:8f:3b:28:bf:f6:1e:
0d:8f:88:95:5e:6a:7d:d4:0b:e8:7c:07:e1:94:b8:
2f:86:b3:19:8d:15:c8:fd:96:e4:7e:0e:bd:61:4b:
6d:e1:89:c0:1e:b2:b4:4a:ed:e3:9e:9c:d5:5a:f3:
6b:fe:c6:e2:25:cc:c2:64:79:13:13:03:b6:03:07:
14:0b:37:a5:ba:28:f8:50:21:d9:cb:73:8b:03:41:
69:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A5:EA:27:EA:B8:01:DD:3B:BE:2F:64:C7:45:2F:DE:28:8A:EF:ED
X509v3 Authority Key Identifier:
keyid:AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:d8:db:fb:ed:4b:04:a9:77:5d:73:7d:06:64:12:02:a0:c1:
ba:30:fc:53:00:99:ca:db:fb:19:cb:c7:38:db:30:5e:2f:f6:
6d:e2:99:f5:e0:db:77:f3:66:29:f8:d8:92:0d:19:d0:68:0e:
f9:16:5a:dd:20:01:8f:a1:6d:b0:74:73:ad:ef:10:7d:5e:67:
91:2d:c1:31:61:1c:a8:e0:07:07:fd:dd:42:93:94:f9:22:21:
3f:37:6b:cb:6e:d7:bf:4f:df:e6:8f:4e:13:84:81:bb:54:63:
7e:b3:6a:07:80:99:c7:90:39:8e:29:75:e3:d0:42:4a:14:d2:
58:2d:17:8f:81:28:ed:87:03:ff:70:5c:93:02:0a:1b:bc:43:
da:06:f8:eb:77:a4:1f:44:e9:d9:28:04:80:3e:5a:81:1f:10:
c8:66:bc:e7:1d:7d:50:c5:bc:a4:31:a9:1d:d4:e2:05:a2:19:
33:78:07:cb:2c:59:d3:08:00:a3:cc:59:11:78:ca:08:80:f0:
23:26:75:92:97:93:89:4e:09:d9:06:29:5a:4c:93:d9:d9:e3:
90:87:96:46:1e:81:64:ed:e8:5b:91:8b:d8:59:7d:64:17:d6:
50:5e:c2:c7:11:a4:19:7f:dc:34:4f:53:90:c3:2d:47:86:d5:
dd:85:bf:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:49 2025 by rpki-client