Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json)
Hash identifier: HvUPufYmiE55530JuvMKblDoH/gQtw5uIxQo9eJTlok=
Subject key identifier: 06:76:93:93:E4:0D:42:77:26:CC:0F:EA:D6:EF:9E:34:FC:61:7F:7C
Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Certificate serial: 01987D1C79A5276418E245B167FE0D260812
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
Manifest number: 0278
Signing time: Wed 06 Aug 2025 02:01:14 +0000
Manifest this update: Wed 06 Aug 2025 02:01:14 +0000
Manifest next update: Thu 07 Aug 2025 02:01:14 +0000
Files and hashes: 1: UGApytPJPEIPFbzs4L0oU_KIdHM.roa (hash: cf5ZtJTmEf4eW9FhhtNmIkoS04da9/P7WQkJtlas3+0=)
2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: pBuY54ej15JUl4D5QByvubDBxvE6moZR4kyhIwlMatM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:79:a5:27:64:18:e2:45:b1:67:fe:0d:26:08:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Validity
Not Before: Aug 6 02:01:14 2025 GMT
Not After : Aug 7 02:01:14 2025 GMT
Subject: CN=06769393e40d427726cc0fead6ef9e34fc617f7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:35:6e:3a:06:ff:e2:92:d2:43:3f:b0:6d:fa:
bb:8d:a1:6d:0c:56:a3:4f:b3:60:2a:8c:e1:9c:13:
72:f9:47:67:ef:d9:70:f2:49:be:ce:c5:44:ae:54:
87:64:d5:a1:97:44:0a:44:81:3c:bf:f7:96:28:4c:
bf:f0:b6:f7:2a:45:37:f5:74:14:76:2b:ca:67:95:
b0:69:23:5f:ef:c5:60:f5:bb:26:d1:10:46:73:4b:
1a:a1:6d:cf:ea:df:37:0b:9d:60:a6:d1:bd:d4:16:
b2:2d:d7:71:b1:3f:f5:1a:90:1a:76:ce:d8:d6:63:
91:01:44:be:e0:e0:f5:c2:92:20:cc:87:f7:11:d5:
10:f8:0f:93:9f:72:41:58:a7:78:fa:f2:5f:0d:77:
da:3a:ed:1f:d2:70:07:2e:3d:80:3f:0d:51:d0:c3:
3f:b9:17:71:de:80:c0:34:98:04:c9:21:80:46:f3:
a8:9d:35:3a:bf:13:c4:54:ce:67:3e:91:e7:99:be:
32:58:f3:39:ca:b1:10:1b:be:32:32:95:f7:40:52:
be:54:9a:09:f2:3d:51:93:fe:5f:de:87:ba:e5:ae:
6c:28:ef:3e:5b:16:57:dd:17:2a:cd:c7:87:dc:d6:
c9:ce:70:ea:aa:84:8f:40:b0:35:50:c4:33:f6:8d:
4d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:76:93:93:E4:0D:42:77:26:CC:0F:EA:D6:EF:9E:34:FC:61:7F:7C
X509v3 Authority Key Identifier:
keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:02:91:40:a0:ec:d3:3b:ba:0f:ad:ee:e4:24:7d:09:07:fe:
7b:73:cc:3d:5c:dd:3c:91:ee:9c:96:34:e2:84:7e:92:80:64:
e0:2a:8e:35:eb:87:a9:c6:8f:f3:38:96:89:b5:73:c0:5a:aa:
f8:7e:d2:36:98:44:f7:f1:51:fd:50:4b:9d:f4:8a:dd:6d:c1:
b1:f9:ab:ec:dd:38:b5:29:54:b3:f9:75:91:8a:d4:83:f9:82:
dc:03:84:ca:d8:25:4d:b5:62:72:14:ee:79:f1:91:72:37:e6:
bd:f6:4e:f2:16:f9:96:9a:a9:8d:35:30:b3:af:f2:d8:0c:f6:
b7:ec:19:35:12:77:35:cf:a9:f3:71:47:26:5c:9b:6b:7f:81:
4b:9e:56:82:29:0d:de:5b:e2:43:e1:7f:5d:7b:69:c2:5f:dd:
7b:56:59:cc:bc:3d:19:ab:9a:59:92:14:03:f6:45:2a:4f:68:
38:b4:09:7c:d9:e7:ba:4f:3b:55:ef:c5:c0:9c:a8:df:7e:54:
6e:3b:da:48:28:d0:8e:64:4d:2c:0a:0c:c2:a7:d2:c4:8d:84:
38:f5:7d:2b:b7:87:e9:b6:3b:7f:5c:86:01:a9:b8:df:ce:78:
ce:ce:bc:f4:b9:1d:34:76:be:6f:df:69:cb:e9:49:8e:ee:f9:
04:50:90:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:52:26 2025 by rpki-client