Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json)
Hash identifier: WNMgbsuQYUek9LESxW1D3tK/7cHnm1iRd5LUO/UzBsI=
Subject key identifier: 2D:2B:EA:D1:E6:4C:5C:00:C7:09:53:2D:32:10:D2:45:DE:05:C7:D9
Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Certificate serial: 01988D6B0EA354C413CCD2174ADE1C45BC49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
Manifest number: 1621
Signing time: Sat 09 Aug 2025 06:01:00 +0000
Manifest this update: Sat 09 Aug 2025 06:01:00 +0000
Manifest next update: Sun 10 Aug 2025 06:01:00 +0000
Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: eAKXgcSPGZXN3XfbkRivCAB7S64dhJTo61knI+IPcT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:6b:0e:a3:54:c4:13:cc:d2:17:4a:de:1c:45:bc:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Validity
Not Before: Aug 9 06:01:00 2025 GMT
Not After : Aug 10 06:01:00 2025 GMT
Subject: CN=2d2bead1e64c5c00c709532d3210d245de05c7d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:b1:e4:81:90:5c:56:e2:79:56:8d:9c:46:c9:
b6:54:8d:d9:74:d0:d2:9a:04:da:89:0d:6f:6c:a4:
7e:71:b4:be:35:5f:0f:12:7b:40:78:e0:3b:be:17:
22:de:12:40:f2:a0:be:28:39:cc:a4:f3:4c:8f:b5:
66:b9:1c:f2:49:cd:2d:75:ad:40:ea:76:88:17:fe:
18:aa:f2:64:73:09:04:63:97:99:56:56:f8:f6:f0:
d9:77:2a:ee:7c:15:75:3b:8f:d7:70:eb:bf:f9:b1:
94:99:67:60:50:2b:4a:c3:af:7a:f0:a7:08:47:3f:
8b:4e:f5:10:45:b7:b3:4f:93:36:37:b3:82:8f:89:
56:85:37:71:4c:06:d0:44:e8:fd:a0:c9:e4:d4:00:
3a:b2:b9:73:5a:9f:9a:a4:68:49:b8:c2:8c:60:b6:
f7:f7:f8:c4:67:d3:78:66:6b:26:ce:43:ab:b6:2d:
c0:a4:a6:f2:93:49:c5:19:e7:96:c1:cf:8a:5c:e6:
90:8b:e2:91:33:85:65:17:0b:56:c4:cf:e5:40:43:
1e:8b:a0:e3:02:13:54:c3:a6:70:6e:c1:54:da:60:
10:71:e8:6b:fd:22:4b:84:4d:bd:43:81:f1:d8:aa:
06:ec:1d:76:27:ff:f1:80:c5:8f:db:36:97:ee:fb:
7a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:2B:EA:D1:E6:4C:5C:00:C7:09:53:2D:32:10:D2:45:DE:05:C7:D9
X509v3 Authority Key Identifier:
keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:7c:d3:ca:d9:10:e1:f6:cd:33:23:3e:1c:45:d3:95:46:1e:
9b:ea:74:e3:b1:5f:e8:91:5b:0a:55:07:85:02:8e:24:b0:65:
02:8b:65:f1:5c:a5:5e:a2:41:b8:1d:e7:4d:4e:71:bf:4a:f4:
c1:44:57:4d:da:3a:f7:f4:b5:be:46:fd:0b:2d:8a:60:5b:95:
e5:16:7d:c1:59:fe:75:66:f7:23:d0:a9:5c:fd:85:d5:e7:39:
b6:96:df:aa:f9:ff:9f:65:11:23:0e:9f:4f:41:05:a0:79:46:
7f:0f:01:83:8a:d2:f8:7c:cb:2f:0b:4a:f1:99:d1:d9:6a:f8:
7f:f3:74:a0:86:11:b1:1d:48:7c:e2:b5:f9:3c:d0:ad:dc:06:
29:fe:95:87:f7:8a:d9:8f:c1:16:bd:a5:60:20:89:0d:02:8f:
e4:92:56:23:dc:d5:50:57:95:14:4c:0d:a0:40:fe:70:62:90:
a3:39:b5:f8:6c:18:17:75:de:5f:e8:c3:c9:0e:7d:e8:17:dd:
88:f4:41:bf:9b:a4:3c:e6:9d:06:d6:51:bd:55:85:78:99:9f:
ba:ed:85:4a:72:e5:15:ef:1b:31:fe:ff:97:e5:3c:44:8f:26:
b2:ab:56:56:fc:8e:c8:e3:11:15:11:0a:b2:d8:39:34:c7:97:
bc:cd:10:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:33:12 2025 by rpki-client