Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: S2n1i67W6XgNiHJ01l8HD+hPUHGjmkDWDZtG/fSTg4k=
Subject key identifier: 4D:AB:8E:7C:9A:16:22:9C:A9:9C:C0:11:CA:85:34:97:55:E0:69:31
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 0198D472B0021E8E2DFC7297AEE8F9F377AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 164E
Signing time: Sat 23 Aug 2025 01:02:22 +0000
Manifest this update: Sat 23 Aug 2025 01:02:22 +0000
Manifest next update: Sun 24 Aug 2025 01:02:22 +0000
Files and hashes: 1: 1-QaESH-Y2QhPqcpSoi8t5RQnRzA.roa (hash: tm4k5KqgYtwGTZCVOd0pYNB6yIwBE4zoDNRsM5SfEu8=)
2: Ivy3m4Flvw_zoq8Hw6rIxjNbc60.roa (hash: r8eSfS6R14mAIVwo2SfhQBG0x09EdYm/K0sgoOKrdGE=)
3: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: n7GQtAHsbG7TxxUqqP17sZOVwrhqxpbrwq0+9vt/4wg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:b0:02:1e:8e:2d:fc:72:97:ae:e8:f9:f3:77:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Aug 23 01:02:22 2025 GMT
Not After : Aug 24 01:02:22 2025 GMT
Subject: CN=4dab8e7c9a16229ca99cc011ca85349755e06931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:67:ab:4a:9c:63:2f:1f:17:80:3c:6c:5c:a7:
f7:0e:6d:8b:89:61:ea:ed:05:d9:67:fd:72:23:59:
e5:75:4b:3d:c3:5a:f4:c3:4e:69:ed:f2:4b:f9:e3:
46:58:2c:e9:d9:71:11:65:36:6b:9c:2a:9f:13:4d:
ed:3f:75:9e:8a:64:0b:54:18:27:91:91:8d:9d:fb:
56:07:4b:3c:7e:2c:d1:31:ae:9e:e1:ce:be:83:ef:
69:07:88:1a:61:80:e6:08:8a:13:77:ba:b0:9c:ba:
1c:a7:0e:e5:57:6c:a5:a1:6f:a3:27:d8:95:58:32:
f4:d8:4d:d4:32:65:75:73:3e:9b:e1:1d:12:68:b5:
1d:4f:ce:cb:06:b5:88:7a:14:b6:dc:be:0b:17:59:
d2:b1:eb:cd:f5:58:a0:9c:1f:b3:fe:c9:59:a4:b3:
bc:6f:0a:02:a2:14:e5:3e:ce:ee:9d:27:b3:f6:43:
76:d2:74:d7:0a:23:fe:39:62:dd:58:9b:18:91:48:
24:b8:86:96:cd:3d:99:fb:85:4e:3c:8b:23:68:3e:
f5:62:cf:fe:aa:c2:4a:83:f0:94:3f:5c:3d:e2:8d:
f3:a3:ea:d7:e8:0b:2b:ba:b8:4e:c2:2f:79:2b:4a:
8a:2f:cf:db:e2:53:d7:69:89:76:06:3f:76:dd:5c:
f6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AB:8E:7C:9A:16:22:9C:A9:9C:C0:11:CA:85:34:97:55:E0:69:31
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:0c:8c:c1:bb:8a:06:a5:65:03:4c:21:71:67:b4:f2:a4:73:
4e:15:4a:26:a7:03:93:aa:12:8c:85:67:39:32:50:39:5f:5d:
e7:dd:91:e4:d4:23:3e:c6:32:8c:6c:2e:ea:c1:e3:e8:18:b4:
1c:0d:82:dd:09:c5:2c:46:9a:01:ae:ff:5c:68:e5:bf:44:fb:
c4:c1:c2:75:8f:7a:32:02:dd:43:d0:d6:fe:63:fc:b2:83:12:
65:08:49:b5:2d:64:5a:88:39:81:75:30:04:33:83:e4:d1:e4:
a1:82:80:24:db:88:8d:5a:19:1a:df:53:6b:8e:d7:3f:b4:68:
27:b4:0e:4d:9c:90:fd:96:fc:a1:f9:7e:df:7c:e0:99:1e:1a:
48:01:56:52:5b:fe:c9:bf:2b:00:61:1b:4a:5a:d9:84:8f:68:
6f:ab:ff:29:95:8f:e5:b5:07:de:f2:e9:33:a9:39:88:c6:ee:
5c:b7:35:23:a0:36:59:6f:39:56:21:8f:7a:1c:22:51:1d:61:
25:e4:0f:af:d9:5d:f8:02:ef:71:5f:c3:32:0f:e8:86:80:74:
c7:a1:6f:cc:51:f1:b3:bb:e4:4c:80:45:0e:51:4b:ca:7f:75:
26:d5:8e:ab:3c:4c:14:96:fc:a8:ef:ec:24:3c:87:ec:95:ab:
87:f2:ca:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:31 2025 by rpki-client