Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: eq0UEhK0NwH3JY+CUyR+Nbr/etfkszGoqoY33uSoZGU=
Subject key identifier: 9E:6F:19:44:83:F2:D3:33:E8:93:FA:FC:1E:0A:3A:23:54:B0:C2:AA
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 0198D4E010E0A16DF8147EE6A26FD7EC2061
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 03:01:50 +0000
Manifest this update: Sat 23 Aug 2025 03:01:50 +0000
Manifest next update: Sun 24 Aug 2025 03:01:50 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: 5Ly0FymJMZgQ0iaIn+z2WgMe7WJ4QJzGNwRX9WqJOU0=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:10:e0:a1:6d:f8:14:7e:e6:a2:6f:d7:ec:20:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Aug 23 03:01:50 2025 GMT
Not After : Aug 24 03:01:50 2025 GMT
Subject: CN=9e6f194483f2d333e893fafc1e0a3a2354b0c2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:a3:8b:aa:e9:be:f2:dd:1c:86:41:b5:c1:
3f:09:e5:ae:f1:2c:7c:00:b7:7b:99:44:35:b3:57:
9e:57:04:c3:d0:20:34:10:4b:a8:20:0f:57:02:ee:
76:83:a5:1f:b7:b4:53:b0:6e:de:41:60:b6:7b:f5:
92:af:28:a4:cb:26:d2:89:4b:1e:c8:67:14:13:90:
6d:94:aa:30:4a:bb:bf:43:c7:b5:95:50:7f:33:c7:
fa:5a:fe:1e:a9:4f:9c:b9:7b:4c:0f:d8:b5:ad:9d:
29:8c:4a:4c:6e:63:69:41:be:c4:c7:f3:75:15:39:
81:94:9c:b3:e5:1c:03:34:eb:ee:dc:a8:60:98:88:
39:2f:80:60:a1:32:6f:37:e6:ac:bf:74:3a:2a:ed:
7c:bb:29:a9:db:04:52:10:da:cd:5e:50:d9:94:1f:
95:8c:b7:f9:ed:a8:a1:89:9f:97:2b:12:99:92:86:
bf:08:b0:d0:bd:9d:b7:cf:2f:58:92:5f:88:fe:b6:
0a:b8:7a:1a:a2:34:c7:e9:44:a9:a2:18:d6:22:58:
18:47:48:23:80:2c:37:37:c4:74:6d:28:8f:a7:65:
0b:44:eb:9c:61:d8:df:1a:09:d8:05:f0:c1:78:3d:
ff:81:34:d5:d3:33:92:f4:06:64:0d:65:be:02:73:
e0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:6F:19:44:83:F2:D3:33:E8:93:FA:FC:1E:0A:3A:23:54:B0:C2:AA
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ec:75:e7:36:2e:f0:56:db:0f:fe:06:3c:7e:2d:73:ef:94:
74:ca:05:0a:65:a0:d7:cc:53:0a:73:01:12:41:f8:b8:09:35:
6e:0d:70:d7:98:19:9a:fd:a4:d9:cd:21:50:85:3e:90:ef:a3:
ca:f1:77:dd:01:f7:01:08:69:1b:e5:27:b3:96:b1:b5:fb:2b:
87:d1:2a:f5:ff:bd:6f:1f:d7:0f:c5:51:1b:f5:80:da:49:de:
7f:db:df:16:88:f1:e9:8f:98:f2:79:64:4a:1e:e6:b2:17:7a:
16:9a:71:1c:9c:6e:a5:00:25:57:65:a0:8a:93:38:5d:fb:68:
bc:fd:ae:22:ec:86:97:b4:39:a0:e9:b9:62:98:c3:5a:df:0b:
75:fa:7c:aa:87:13:18:c9:17:47:71:5e:96:7c:83:8f:aa:99:
20:c1:99:06:a2:79:1f:94:34:46:22:1e:31:91:39:d3:89:76:
e3:af:fe:12:91:e0:d5:1d:59:9c:21:11:b3:10:9b:5c:e1:f0:
ef:50:2b:06:d4:00:b2:9b:2a:ab:12:ff:89:84:ef:b6:a9:52:
b8:9c:52:17:38:c9:3f:d9:00:74:ca:c7:8c:a9:a7:1c:4b:51:
5a:d5:59:01:04:fb:39:a3:ec:50:1d:b0:75:9f:28:dd:40:f7:
17:70:6f:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:30:13 2025 by rpki-client