Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
File: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft (raw, json)
Hash identifier: uAxVTyLsgqaGqB1P9tfE1jEL2n0rl34NHFV6/Y6zSx8=
Subject key identifier: 42:E4:CA:72:2A:2A:C2:8D:BC:8A:22:62:70:5C:B2:14:FE:ED:6D:C0
Authority key identifier: 43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
Certificate issuer: /CN=430e0949df5930f6b79efcbd9cba174ca213f569
Certificate serial: 0198737444EDEAEDFB245EF87BC8E27F892B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
Manifest number: 15AA
Signing time: Mon 04 Aug 2025 05:00:56 +0000
Manifest this update: Mon 04 Aug 2025 05:00:56 +0000
Manifest next update: Tue 05 Aug 2025 05:00:56 +0000
Files and hashes: 1: B2zXHYwEq1mSDhRzWM21ZLKQRZ0.roa (hash: P+0tfOZ2RaLt/nUPuFjZ/CAtJcAtybwXEXHcIsSIUm4=)
2: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl (hash: MBGtarB3i1FNDG5ZfIEXcKilNd6nSFbwmDcEFN3e7k8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:44:ed:ea:ed:fb:24:5e:f8:7b:c8:e2:7f:89:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430e0949df5930f6b79efcbd9cba174ca213f569
Validity
Not Before: Aug 4 05:00:56 2025 GMT
Not After : Aug 5 05:00:56 2025 GMT
Subject: CN=42e4ca722a2ac28dbc8a2262705cb214feed6dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:64:e7:08:3f:11:da:fb:10:81:17:7c:b7:9d:
5e:08:63:09:e1:1e:aa:b3:ac:c0:98:e2:27:b7:2f:
7f:35:26:ad:2f:2f:f3:0f:ca:9a:4e:e6:73:1f:32:
76:1b:12:73:31:ee:9a:01:4d:2a:96:89:d0:fd:3a:
49:6e:4b:da:db:cf:fa:da:c7:94:b8:49:0e:f0:db:
77:62:ad:11:0f:cc:a2:cb:a9:92:7d:e6:e0:df:7b:
9a:ab:90:d2:37:ea:c3:c7:7a:5f:6e:08:57:eb:ed:
7e:67:43:d8:14:fe:55:d4:26:a4:d9:45:4b:0b:d8:
7c:17:4f:3c:83:28:aa:6e:85:6e:96:22:f8:cc:ee:
bf:de:b8:f7:75:29:23:c5:3d:9b:a5:de:0e:0c:f1:
d5:6c:22:46:a1:5e:28:29:68:8c:f0:33:eb:8d:c7:
48:71:cb:67:8d:db:da:32:3f:ab:05:5b:d2:c2:53:
1b:7a:6c:e2:9d:df:9e:92:08:13:61:b6:b3:b4:2a:
0b:85:45:52:1a:8d:3c:a2:16:b8:76:b0:90:e1:9c:
c3:34:48:df:a7:11:90:c8:f1:b9:67:84:2b:d7:e1:
82:02:37:e5:d5:80:cb:ea:29:50:c3:c7:63:5b:8c:
de:12:9c:70:bb:f9:00:be:1c:43:5c:a9:25:34:5e:
3a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E4:CA:72:2A:2A:C2:8D:BC:8A:22:62:70:5C:B2:14:FE:ED:6D:C0
X509v3 Authority Key Identifier:
keyid:43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:26:ef:2a:82:2e:44:76:3b:bd:6f:76:8c:91:38:55:02:ae:
15:9f:d6:63:3d:75:47:14:90:ae:59:f8:bf:30:0c:4e:3c:5c:
39:fc:4d:57:f5:bc:28:da:7a:9c:68:e0:e9:78:0f:ec:30:37:
77:6a:be:87:2d:9d:b7:76:91:db:43:de:fa:86:b6:44:4a:c9:
12:d0:9f:86:6e:fc:ca:4f:f0:6a:b3:16:93:fe:4b:99:91:b5:
30:f4:23:38:2e:3b:5f:57:c4:98:40:06:49:d1:53:05:eb:ea:
fd:24:e9:df:be:72:b7:5c:60:b5:c6:48:2f:02:65:77:93:17:
e4:95:9f:2a:ba:f3:7c:aa:b2:2f:98:64:41:64:07:2c:3a:9b:
bd:cd:d4:6d:9b:5f:1c:89:0d:83:5b:ca:53:81:96:a5:15:a9:
d2:e7:d7:9d:55:a5:c7:93:5c:6c:c3:c4:5c:14:d6:1f:2a:5c:
cf:e2:e7:0f:6b:0c:25:62:be:b0:90:f3:50:d8:c2:09:af:9b:
9b:0b:c2:93:b7:3e:17:cf:75:ed:e6:d3:41:13:75:c4:c5:1b:
02:e4:5d:fb:3d:59:05:0d:d7:8d:8c:07:c4:d7:ec:d4:8d:f8:
8f:29:0f:8a:eb:f3:ef:61:4a:f5:3c:9e:c4:9e:08:b0:1a:87:
95:2c:ec:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:23:27 2025 by rpki-client