Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
File: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft (raw, json)
Hash identifier: mCLcCRmS2FAh48zNIkoR7BZy7d5By0Fr637Nkek3SUM=
Subject key identifier: 83:59:A2:67:8E:69:1F:80:8A:F8:61:65:23:EC:C3:29:79:8B:14:8D
Authority key identifier: 43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
Certificate issuer: /CN=43cf416193a1c2ed3056b647e5a46503148e3824
Certificate serial: 0198801D49049CF3F3C445678593C81E46B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
Manifest number: 06DD
Signing time: Wed 06 Aug 2025 16:00:59 +0000
Manifest this update: Wed 06 Aug 2025 16:00:59 +0000
Manifest next update: Thu 07 Aug 2025 16:00:59 +0000
Files and hashes: 1: EVfs3Ty5us2kONM9lNbKxeOpQy4.roa (hash: XNAy20rJW1bN/SCZtyAydEWkC3qMnBorsPnV2qCqZ6A=)
2: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl (hash: uvYpnQ9tZUHtcKc1TqZzilqR/NfzdmE4UU+Tf0ZFycQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 16:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:1d:49:04:9c:f3:f3:c4:45:67:85:93:c8:1e:46:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43cf416193a1c2ed3056b647e5a46503148e3824
Validity
Not Before: Aug 6 16:00:59 2025 GMT
Not After : Aug 7 16:00:59 2025 GMT
Subject: CN=8359a2678e691f808af8616523ecc329798b148d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e3:60:d0:f8:e5:3a:c1:5c:34:9c:fe:40:6e:
28:a9:cb:44:cf:35:7c:d9:f3:2a:7a:9f:5c:65:76:
e2:cf:aa:38:a8:08:ce:32:40:8c:03:a7:c3:a3:5a:
68:52:ab:16:a7:f6:29:5f:58:7a:6a:a6:f5:45:c0:
f3:fa:cb:5c:d3:95:7e:1d:17:29:bc:97:32:60:fa:
6f:6f:86:e4:7c:92:d9:ff:9f:f0:7d:0f:f7:21:bb:
e2:fe:8c:30:60:81:d7:60:4a:d8:68:b3:46:69:bf:
a1:b9:ac:35:1b:28:35:44:26:da:27:f9:7f:9f:4a:
48:55:bc:26:e0:9f:ec:4e:9e:7a:01:af:1a:ea:77:
17:08:7d:1c:31:8c:00:ca:f6:f5:39:e6:1b:a9:32:
e6:7d:0f:0d:97:8f:ac:21:3a:3d:6e:8a:4f:76:65:
21:54:1d:6e:2f:b3:14:1c:84:d1:13:ca:0e:0c:e0:
17:42:4a:21:17:d9:fa:d8:0d:0c:91:ac:0d:81:f5:
ec:a7:13:38:6a:fc:31:7a:5e:4b:95:f8:70:a4:aa:
bf:ba:f9:d5:07:d2:3e:d4:9a:8c:62:1a:77:b2:09:
97:86:05:cd:f3:e9:c0:af:6c:43:8d:70:d4:4f:76:
89:fb:73:df:08:54:4d:4d:67:53:ac:0a:46:32:19:
21:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:59:A2:67:8E:69:1F:80:8A:F8:61:65:23:EC:C3:29:79:8B:14:8D
X509v3 Authority Key Identifier:
keyid:43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:0f:7c:0d:fd:21:58:45:59:10:00:c4:44:b9:b2:6c:58:99:
19:3a:f2:94:b0:0b:84:2c:1b:fa:7b:48:00:51:74:b1:c5:a4:
dd:b6:19:15:9c:31:53:1b:04:7a:a6:2b:15:0e:1e:5b:6e:04:
25:08:eb:36:4d:bf:36:25:8c:7e:7b:5e:f2:a3:41:b6:b4:f9:
38:96:90:6c:bc:97:2e:f9:a3:3a:bd:68:27:41:07:ed:7c:c8:
6b:70:d5:b6:0a:f1:08:6f:1a:e2:ce:78:a2:61:c2:f7:94:e2:
4c:9f:1b:75:b9:2a:80:ec:f4:1a:eb:c1:b3:15:73:27:77:10:
c8:9a:36:41:f3:3b:f7:fb:2f:20:10:cc:d9:9c:67:e1:ce:25:
c0:c1:5f:f0:48:af:9d:ae:a2:2a:25:c8:92:c7:cf:19:03:6a:
1e:9b:fd:fb:23:d6:7c:ff:ff:99:b2:75:b8:70:dd:a0:54:b7:
22:dd:4d:84:d4:34:88:f5:db:cd:f1:b3:fe:26:17:48:65:18:
67:b5:8c:9d:46:6d:4d:c3:d1:76:d3:7d:ab:02:04:12:1e:15:
cd:84:d8:db:8a:d1:00:96:0b:2c:59:27:38:ee:a8:6e:8f:5b:
19:96:26:b4:98:f6:ab:cb:0e:e2:05:cd:e4:e6:d1:19:ca:6e:
75:46:a6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:59:58 2025 by rpki-client