Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
File: Q5i1d7IjtadjUSGadP2kRnBIkPc.mft (raw, json)
Hash identifier: aO4yQAJyi51ZzrPd+/PZ98qMaCjA/nGMMHo+Yhk4Jis=
Subject key identifier: 09:22:2A:67:23:E8:C6:56:FD:77:7B:E1:15:45:BF:4E:74:38:BE:A1
Authority key identifier: 43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
Certificate issuer: /CN=4398b577b223b5a76351219a74fda446704890f7
Certificate serial: 0198D515A4EEF79F7E6F423CF66943FC22F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
Manifest number: 1331
Signing time: Sat 23 Aug 2025 04:00:22 +0000
Manifest this update: Sat 23 Aug 2025 04:00:22 +0000
Manifest next update: Sun 24 Aug 2025 04:00:22 +0000
Files and hashes: 1: KL5bIat3Yk7dpaHmhHBN9ywSikg.roa (hash: 2Dm1yDCv5S4uhPon+c/p0fcUA41+SmoP2uLFsPOLfB0=)
2: Q5i1d7IjtadjUSGadP2kRnBIkPc.crl (hash: 8whF72D1gFyl2C7XUPEO27AxABnKvrzO0n5qsQAQjXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:a4:ee:f7:9f:7e:6f:42:3c:f6:69:43:fc:22:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4398b577b223b5a76351219a74fda446704890f7
Validity
Not Before: Aug 23 04:00:22 2025 GMT
Not After : Aug 24 04:00:22 2025 GMT
Subject: CN=09222a6723e8c656fd777be11545bf4e7438bea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:73:73:a8:2d:cb:24:e1:51:bf:9a:9a:a4:70:
43:b4:fc:c3:12:34:75:83:cd:f2:d4:7a:e2:90:58:
4f:d1:11:f4:05:91:f5:3e:50:a5:f9:8f:88:c7:63:
91:d1:e4:6e:08:42:c0:6d:33:09:cf:20:ca:a8:0d:
66:07:2b:09:39:dd:b8:4c:38:c0:c7:4d:45:fd:cb:
d6:04:96:9a:d4:14:32:84:ce:61:01:db:4d:cd:8b:
2a:6b:18:f8:56:df:2e:68:f1:7a:ed:0e:d1:8f:3d:
11:55:2b:9f:e6:fd:d6:a7:33:0e:c7:cf:00:b6:4d:
b1:0c:20:3a:8b:bb:95:be:74:14:b4:e1:05:ad:70:
09:fa:64:e2:05:c6:1e:39:45:96:9b:4c:f3:9e:e4:
ca:d5:17:e1:54:79:ea:f6:a6:db:b8:d2:0a:c6:47:
e4:8a:60:6a:aa:d4:07:5c:20:25:93:5f:bd:3c:2c:
2a:27:8d:c1:6b:af:bc:a8:e0:e9:a3:d7:55:3b:81:
7b:7c:f2:bd:59:92:53:61:a8:5d:33:5b:01:51:40:
b2:58:49:bb:1f:4d:96:62:aa:a0:6b:89:8c:d2:68:
22:59:cd:90:03:ab:95:c3:59:db:ad:e1:e5:59:4f:
30:b0:8a:ca:a3:4c:68:c0:4e:8b:51:f3:af:e1:31:
e2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:22:2A:67:23:E8:C6:56:FD:77:7B:E1:15:45:BF:4E:74:38:BE:A1
X509v3 Authority Key Identifier:
keyid:43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:93:f8:31:7a:88:da:6d:19:51:e8:49:a7:23:d3:da:61:43:
f6:27:e3:25:3a:ad:c3:9a:35:fb:25:dc:5f:41:48:8a:da:f4:
67:3f:12:9f:9d:eb:b0:bc:1e:a2:b1:2f:fc:96:ff:e3:ab:e1:
2a:e3:25:dd:a3:00:4b:e8:08:13:d6:d8:c9:24:9f:48:9c:9b:
03:88:78:ad:25:c1:48:bd:b5:36:1a:88:cc:55:32:b2:1a:9d:
e7:97:7d:af:7d:43:95:f9:72:bb:53:3c:3d:77:19:65:b2:42:
18:ea:5a:f0:1b:ea:6a:58:43:54:1a:17:b0:83:f7:ab:04:e0:
92:c4:68:f7:0b:0d:55:af:ef:9b:d5:74:1e:ba:58:f1:31:13:
4a:fd:f2:ae:91:b0:d3:4a:8d:3e:4b:76:d8:67:a7:9a:73:df:
99:f2:8c:b6:59:1e:9e:12:09:45:bf:fa:51:1b:fc:fb:d9:fd:
19:03:a0:d9:f5:05:3c:c1:22:6b:d0:fa:17:19:58:f2:8a:f9:
ce:aa:12:1b:55:e3:e1:88:af:da:bf:6c:1b:61:43:26:44:ce:
23:ce:01:11:16:25:ea:04:51:c7:ca:f3:21:05:d1:1a:18:0f:
1d:fd:1f:90:c4:25:53:a1:e8:ee:97:1d:41:0b:ec:3f:84:1d:
bf:7c:dd:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:53 2025 by rpki-client