Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
File: qsqNwMC5IbCJ8WAmGORVN5enR0I.mft (raw, json)
Hash identifier: rJOJoFxy9faH6lVYHvxpMVjYnERiKD3/Aol7CWvNAAU=
Subject key identifier: 71:C4:02:91:EB:C9:40:3F:CA:42:F3:F8:AC:8E:2E:84:5F:17:E2:2B
Authority key identifier: AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
Certificate issuer: /CN=aaca8dc0c0b921b089f1602618e4553797a74742
Certificate serial: 01987FE6F6E55362C71CFB1073B36C4C31B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
Manifest number: 01C0
Signing time: Wed 06 Aug 2025 15:01:39 +0000
Manifest this update: Wed 06 Aug 2025 15:01:39 +0000
Manifest next update: Thu 07 Aug 2025 15:01:39 +0000
Files and hashes: 1: 0TAMfzKO6y7wTDVfhrp7A0vqejU.roa (hash: 3Yzu9IXvscc/7fQLVXNg8nKXbm7Wf5jZKKVCSByaB5U=)
2: qsqNwMC5IbCJ8WAmGORVN5enR0I.crl (hash: zvhxwvA6m2K2i9YG8iF8pSjl7oLoaTuCPqJgWmzdpnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 15:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:e6:f6:e5:53:62:c7:1c:fb:10:73:b3:6c:4c:31:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaca8dc0c0b921b089f1602618e4553797a74742
Validity
Not Before: Aug 6 15:01:39 2025 GMT
Not After : Aug 7 15:01:39 2025 GMT
Subject: CN=71c40291ebc9403fca42f3f8ac8e2e845f17e22b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:29:80:14:e2:e3:af:bd:26:5b:a0:2a:dd:31:
a3:70:2e:7c:58:f8:34:5c:0a:4c:e8:cc:89:f4:98:
ca:38:f0:66:3b:23:dc:73:48:06:08:47:a7:37:63:
b7:2e:93:c6:28:24:cf:e5:8b:1c:3c:e8:bd:73:b9:
5a:4b:da:f0:73:4c:4b:33:16:8c:dd:3b:d4:2a:9f:
56:12:65:c9:15:eb:1b:f8:ce:6d:a2:32:17:2c:cb:
6e:d0:be:62:d4:38:58:5d:5d:a5:47:36:08:1c:e5:
31:79:9f:44:4b:84:91:88:cf:b3:45:c9:df:7b:9a:
17:2e:c3:8c:2d:d3:e8:4f:8b:60:4f:40:68:5d:0d:
b5:2f:8e:10:d4:30:8e:0e:0e:01:46:a8:27:8d:97:
e4:8b:5c:e8:f1:a6:d0:e1:61:2a:f9:55:55:09:c2:
6b:8a:86:1c:68:58:1c:3d:78:d1:2b:77:3c:6a:a1:
ac:93:7a:8f:70:74:38:0c:d9:c2:7a:b5:87:c9:6d:
a2:6d:0c:a4:c9:1e:93:76:18:0d:45:9e:1a:5c:45:
04:d4:a2:74:de:a6:41:5a:42:f1:4c:40:64:cb:07:
3a:a0:e1:4e:88:cf:a7:57:26:82:ca:58:4c:f4:2c:
40:c7:22:ec:78:6a:64:0c:38:e9:14:1d:2e:d2:81:
aa:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C4:02:91:EB:C9:40:3F:CA:42:F3:F8:AC:8E:2E:84:5F:17:E2:2B
X509v3 Authority Key Identifier:
keyid:AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:d0:cb:67:ee:1a:af:d3:32:21:f9:bd:39:dd:14:36:ed:94:
26:8e:87:de:0e:17:34:72:32:e5:2c:41:1f:6a:60:17:17:63:
21:78:4c:18:94:b5:5b:6a:a2:ff:8b:c8:38:bf:59:2f:41:49:
6a:8a:f1:bb:0f:53:80:52:96:16:d5:a4:9a:d0:f2:83:67:d5:
36:7b:95:e8:91:9a:74:60:d9:e0:e5:16:24:b4:0e:04:54:07:
b7:fe:2f:6b:bf:f0:5f:f2:eb:b9:06:3f:93:e3:74:25:e2:52:
60:f9:db:13:ac:25:31:e1:7d:77:71:d0:81:08:22:04:ed:7c:
b4:1b:70:ea:b2:d4:10:ed:3f:8c:66:b3:c9:ff:ec:fc:05:1b:
2d:46:4e:95:70:0f:ba:79:25:7a:9c:cf:09:6d:bd:f3:5a:dc:
64:a5:be:10:43:19:89:ab:21:22:c9:68:ab:c7:b4:d3:a6:cb:
c1:05:f5:a6:3e:44:7a:f8:5a:c9:fb:4b:30:f9:f4:41:d7:9a:
6e:1d:a9:8c:d7:70:c1:ae:48:e6:5c:62:00:0c:9d:48:ee:79:
a0:f2:0f:5f:b5:fd:4e:47:df:f4:56:47:7d:59:05:60:76:28:
c5:8d:92:cd:9b:2c:c3:1d:0a:9b:38:8a:23:ec:ff:cb:a3:10:
8d:e5:ef:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:26:04 2025 by rpki-client