Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
File: qsV1yvoAvEHVfElKwfXbz-54My4.mft (raw, json)
Hash identifier: dqo0ODh8aufmwdEFASAiuJGmkvkiL1tqk01eG0amYfM=
Subject key identifier: 0E:4B:E0:7A:72:EF:13:13:F0:47:11:45:33:B7:DA:14:73:EE:67:94
Authority key identifier: AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
Certificate issuer: /CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Certificate serial: 0198D4E0C520717D94894F0815513CC187B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 03:02:36 +0000
Manifest this update: Sat 23 Aug 2025 03:02:36 +0000
Manifest next update: Sun 24 Aug 2025 03:02:36 +0000
Files and hashes: 1: XtPvNkbtFvkSrn1XGkdkM55xfJ4.roa (hash: XvdvDvnaLffIXutFMAXtL47S87Pb9dwgFS/EYsDxu5Q=)
2: qsV1yvoAvEHVfElKwfXbz-54My4.crl (hash: KXtFm70Ym3k4j0pmX/sb9YHFqcz1T+QQfv1RhU/zmDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:c5:20:71:7d:94:89:4f:08:15:51:3c:c1:87:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Validity
Not Before: Aug 23 03:02:36 2025 GMT
Not After : Aug 24 03:02:36 2025 GMT
Subject: CN=0e4be07a72ef1313f047114533b7da1473ee6794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4a:14:c9:f5:1a:bc:3d:bc:c9:23:2d:81:8f:
7a:84:e6:27:a0:cc:2d:29:97:e0:eb:ba:df:d1:3f:
53:1c:33:b2:5b:b5:e9:47:f3:ac:da:63:be:18:c2:
a3:55:be:0b:88:67:cb:65:ca:94:c0:77:06:a5:71:
5e:57:74:51:98:ab:8f:ae:61:b7:dd:1c:61:c9:0e:
32:a6:7b:0d:8c:47:bc:53:04:0a:8f:9a:25:04:f3:
3e:db:03:d9:1d:56:b0:4d:9e:1f:b1:11:03:76:4b:
d6:69:16:fb:64:55:81:00:8b:55:74:cb:70:7a:df:
df:4f:1c:6d:3c:a1:c3:fd:3f:e6:f0:12:4a:4e:ca:
77:f6:30:4b:38:31:5e:b2:e7:0a:fd:1c:76:81:a2:
b4:01:5f:86:9f:3c:a0:66:4c:7c:01:eb:93:00:8f:
6c:78:d9:bd:3c:5c:40:ec:06:c7:bb:0d:ee:ed:8a:
2d:72:78:77:29:89:96:ac:c5:88:b0:64:e6:9a:de:
a9:85:5c:7f:d2:67:ee:60:ef:58:8f:92:66:bf:b0:
7b:b7:be:fb:a6:2c:9b:39:87:ee:02:38:70:e9:a1:
2f:3c:5b:db:28:77:49:94:44:43:89:0c:64:ef:5e:
5f:24:8f:1a:b8:5f:b4:aa:d7:0b:03:8c:f5:93:61:
e9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:4B:E0:7A:72:EF:13:13:F0:47:11:45:33:B7:DA:14:73:EE:67:94
X509v3 Authority Key Identifier:
keyid:AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:f6:25:55:e1:f5:ab:a4:7f:a8:bf:78:2a:4e:eb:3c:45:ef:
ad:1a:20:5b:b2:b4:6c:7a:f6:0e:87:be:8c:70:58:90:ab:0f:
b1:63:9f:43:ce:48:e0:86:d1:56:de:79:21:5f:48:e1:47:2a:
bf:5f:58:08:3f:9e:5a:e2:00:11:96:62:19:74:c5:e3:a9:28:
f8:39:62:f4:4f:e7:4e:8d:d6:50:c6:33:93:d4:e6:3c:f4:57:
f2:56:65:f2:03:5e:7a:c5:a1:2c:12:3f:fa:97:f1:ed:1b:b8:
cd:dc:ba:be:6e:23:84:30:7c:4a:47:4a:9d:70:ca:79:9c:c7:
99:30:37:27:c6:cc:f6:f5:de:9c:8b:0d:71:a6:da:25:d0:b3:
21:3d:2f:7f:42:89:73:97:a6:57:b0:66:27:d7:0b:35:01:8e:
f2:1f:75:e5:f5:2b:ec:11:75:aa:ec:8f:e9:59:6d:73:6c:73:
aa:cb:b7:22:2f:8b:bb:fc:90:a9:81:33:18:4c:4e:33:b1:ef:
ab:b7:58:1a:05:25:f7:28:53:76:14:f6:b0:54:14:04:5c:86:
9b:ff:ba:af:7b:95:49:95:46:18:e4:4c:4c:69:5c:75:45:39:
ab:7f:be:4b:76:95:4d:53:49:ee:b3:71:12:24:af:3c:92:4a:
cc:7b:09:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 06:51:15 2025 by rpki-client