Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: oSHYpc9uij+T7E5Ie6f4o81OupXZNb+x32kObR4vwcY=
Subject key identifier: A1:16:47:17:97:19:2F:9C:9D:EA:C5:CA:6E:75:2B:49:55:4F:1B:81
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 0198D515B3EFBBE47F429BAC9908116FEB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 1348
Signing time: Sat 23 Aug 2025 04:00:25 +0000
Manifest this update: Sat 23 Aug 2025 04:00:25 +0000
Manifest next update: Sun 24 Aug 2025 04:00:25 +0000
Files and hashes: 1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: TllW7Hh8k3V9x/58KCM7lYi3eybIA3YFpBW9n+QNs1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:b3:ef:bb:e4:7f:42:9b:ac:99:08:11:6f:eb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Aug 23 04:00:25 2025 GMT
Not After : Aug 24 04:00:25 2025 GMT
Subject: CN=a116471797192f9c9deac5ca6e752b49554f1b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4b:f6:a6:8c:c8:b3:97:d8:87:82:85:ef:e4:
cb:50:32:49:4a:ec:a2:36:85:95:7b:f8:c7:e0:e6:
fe:42:6a:78:85:a1:74:f5:c2:67:7c:0f:16:b7:8f:
b0:7e:4e:73:91:19:4f:b0:17:57:ff:45:23:da:6f:
73:93:70:66:c7:82:b6:c2:af:99:9c:57:b9:22:5c:
9b:40:df:ea:37:14:5a:c0:5c:81:b5:8c:cf:51:2e:
d0:7d:dd:e8:e8:a5:80:47:e5:41:d6:5e:07:08:55:
61:7e:f5:69:8f:d9:ea:3b:da:76:12:f1:6e:9f:e5:
d4:90:54:20:c9:3e:3b:e5:8e:11:43:b1:13:98:40:
a5:21:0c:ad:9a:e9:96:3d:02:30:97:b4:4c:27:87:
a9:2f:69:f3:b4:10:7f:d4:4a:da:28:34:de:eb:09:
b1:8a:bd:40:4f:77:59:07:87:7c:6f:82:24:af:04:
59:b7:8a:b1:c5:01:57:06:8a:2c:0c:3e:3d:7d:e6:
52:33:04:dd:83:22:2f:c7:ba:f3:7b:fc:1d:c0:8a:
4e:d7:f1:5e:2c:a4:7e:b3:74:1f:40:42:f3:4a:f8:
51:e0:e5:f7:b3:b0:d9:04:db:cd:40:18:b4:95:42:
50:24:de:f0:78:8b:71:72:a2:55:a3:5b:d7:8f:d1:
90:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:16:47:17:97:19:2F:9C:9D:EA:C5:CA:6E:75:2B:49:55:4F:1B:81
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:16:51:f7:77:a4:a3:37:81:0f:28:af:b5:de:4a:a1:20:35:
42:23:c5:cc:04:25:61:64:c2:68:d7:e4:a6:5d:f6:c4:d6:97:
7e:00:79:ab:f9:bc:f5:5f:40:d3:99:38:3d:07:ea:70:64:e9:
86:ce:84:21:27:d2:59:ce:12:73:0e:bf:74:7a:d0:ec:6d:b8:
a0:2c:df:91:8e:71:5a:a3:0f:5c:50:28:5b:d8:16:6d:0b:15:
21:51:1a:83:5b:40:de:96:d6:eb:8c:c7:ee:a9:d9:7d:2c:a3:
ca:56:14:11:f3:47:92:0f:61:53:85:43:a0:6f:55:70:96:f5:
8b:ca:67:ba:90:f5:23:54:85:d4:31:9b:78:7a:ad:1a:01:09:
bb:48:2a:52:c1:32:53:c8:d6:aa:e3:bb:3a:3f:43:ad:12:13:
5e:40:61:50:1a:91:07:95:d8:a9:90:e5:ae:92:70:f1:7a:61:
85:c7:fa:20:d4:87:8d:22:92:57:a9:6a:cd:c3:c4:7a:17:06:
b6:bb:e3:c6:a1:f1:e6:64:cd:ee:f4:af:e2:9d:f9:09:30:52:
93:21:3f:80:10:05:34:f4:34:42:b3:ac:e7:e2:aa:90:33:19:
10:11:b5:9a:4d:24:92:94:68:5d:74:7d:04:5b:36:21:6d:97:
42:17:22:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:18:22 2025 by rpki-client