Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: MpWdPKGTGYvzwFP+VaPh7Hpp++yPg1CW7kOZqFkjEts=
Subject key identifier: 96:2F:DA:1F:C2:A4:D6:04:BF:8E:75:33:8D:76:A0:A6:16:19:90:8E
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 01987D1C9648A012F83F205D6CD98B9A9D2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 161B
Signing time: Wed 06 Aug 2025 02:01:22 +0000
Manifest this update: Wed 06 Aug 2025 02:01:22 +0000
Manifest next update: Thu 07 Aug 2025 02:01:22 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: Pfj+PTglsFr+YlzKEgtMkg03h5gBMdp71AhADpoARJM=)
2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 02:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:96:48:a0:12:f8:3f:20:5d:6c:d9:8b:9a:9d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Aug 6 02:01:22 2025 GMT
Not After : Aug 7 02:01:22 2025 GMT
Subject: CN=962fda1fc2a4d604bf8e75338d76a0a61619908e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2f:1d:6c:39:b1:8e:ca:98:3a:75:29:bd:23:
ee:29:b2:16:64:e1:d7:38:28:12:28:79:bd:ee:4c:
65:9f:ff:42:0d:6e:74:cd:13:6e:af:9b:40:00:0f:
c3:99:76:93:14:ff:6b:95:79:50:d5:d7:57:d2:af:
d6:00:8f:f1:d2:b1:29:0a:9b:dc:ac:3b:5f:fb:4e:
2e:a2:5b:7e:8f:49:f1:2b:6e:53:f7:fe:0b:47:02:
f9:bb:dd:7c:0c:a7:a8:ce:65:32:d4:20:66:8e:82:
38:7d:50:9b:a1:ed:74:f3:d5:a3:95:53:10:07:03:
38:9c:cb:64:1c:8d:1c:d5:84:0b:a6:c5:7a:c0:42:
27:b2:f8:b9:bd:a3:b8:fb:82:4a:d4:0e:87:84:b9:
82:90:9a:63:b2:6f:ce:04:ee:26:0d:fd:67:2c:92:
47:f0:49:ec:88:a4:48:68:32:47:37:20:1f:7f:e4:
ec:29:97:87:3f:5b:5a:db:e0:b5:7b:e1:e2:af:cc:
2e:f1:00:d7:e0:7b:48:7d:16:48:b8:8f:3a:85:54:
86:aa:21:ff:3f:fa:5b:85:21:84:44:6e:f8:04:54:
72:8a:2b:70:4b:0f:c3:7d:83:0d:ce:38:dd:6c:91:
8b:5c:fe:1c:6b:90:8e:ef:c4:2e:13:11:49:a8:34:
b6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2F:DA:1F:C2:A4:D6:04:BF:8E:75:33:8D:76:A0:A6:16:19:90:8E
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:95:40:9e:fd:f8:bc:2c:ec:b5:dc:c9:07:85:53:71:77:6b:
a0:21:2a:9a:76:3c:3e:7c:91:85:cc:85:11:be:47:9f:f8:8d:
7d:e6:78:88:29:4d:c4:a5:d2:11:30:6b:9c:39:1e:02:65:49:
23:0b:9d:6d:e8:30:8a:6f:4b:a2:34:cc:ac:2b:a9:42:1b:ab:
e2:5f:da:eb:dc:ee:85:b6:74:3a:e0:71:e7:a2:00:7c:e1:e8:
b8:bb:4e:ce:2d:c1:4d:ea:db:cd:ab:82:5b:c3:06:5a:30:c1:
0a:81:45:a6:d6:d6:a9:ed:ef:4c:ed:09:f0:a7:7e:d3:4f:a5:
2d:f1:a8:1b:b1:ea:b5:91:54:0f:a8:04:98:ac:6a:33:fe:8a:
65:b7:9f:34:91:3e:84:3a:f9:78:54:3e:8b:34:e6:41:8d:60:
fb:18:37:47:1a:13:c9:db:89:c8:ad:a6:7c:76:59:b4:ee:f2:
f1:df:85:99:97:95:df:92:83:21:24:c1:d9:21:72:35:0a:2e:
f8:26:f7:21:73:e3:81:1d:02:0c:7e:50:fe:e1:21:b6:89:10:
50:99:82:19:2f:f3:94:56:09:6b:d5:f8:ed:08:c6:71:a9:37:
15:b0:22:54:42:23:99:78:3f:a7:59:62:18:84:9c:4f:7b:b6:
f8:e8:89:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:36:12 2025 by rpki-client