Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
File: QEPj9wJFibliregc9EVjBvTTXmg.mft (raw, json)
Hash identifier: tL2cj0oQ2K4Fwwzu8HVRv8Ew4BH/TFGDM3pbZnO2AZ4=
Subject key identifier: 9A:AE:2E:3C:F4:B6:0D:E1:76:C7:F4:19:B8:CD:89:4A:54:CB:73:3D
Authority key identifier: 40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
Certificate issuer: /CN=4043e3f7024589b962ade81cf4456306f4d35e68
Certificate serial: 01989147C929737274925B88612BEC3674BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
Manifest number: 130D
Signing time: Sun 10 Aug 2025 00:00:57 +0000
Manifest this update: Sun 10 Aug 2025 00:00:57 +0000
Manifest next update: Mon 11 Aug 2025 00:00:57 +0000
Files and hashes: 1: 7347cFurkIFVNRTShqXtdTwOLOA.roa (hash: 81GL5pa945jQA5j8/X64fsQyRv+u1Eyr3yERMPF2bKE=)
2: QEPj9wJFibliregc9EVjBvTTXmg.crl (hash: SIkcO0NvQvA1KqtKp2Jy+gDNjY8IkBc32FqS4LF7GMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:47:c9:29:73:72:74:92:5b:88:61:2b:ec:36:74:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4043e3f7024589b962ade81cf4456306f4d35e68
Validity
Not Before: Aug 10 00:00:57 2025 GMT
Not After : Aug 11 00:00:57 2025 GMT
Subject: CN=9aae2e3cf4b60de176c7f419b8cd894a54cb733d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:99:cc:8b:c2:04:c4:e6:2c:6c:bc:38:79:94:
c1:32:cd:66:b0:05:3a:a1:00:96:c8:84:2d:a3:47:
45:ba:f2:fc:7d:ea:7c:db:88:1c:a0:36:67:0a:46:
46:d0:8a:10:17:f6:c9:75:ff:dc:6f:9f:f3:69:bf:
e6:66:b5:f6:a9:94:d1:6b:3a:06:d3:bf:dd:cd:c3:
7e:07:2c:c3:32:c9:fe:6c:90:47:84:80:db:da:6f:
f6:7a:9c:23:ed:e6:7a:dc:d6:17:c3:17:2d:19:1a:
02:f7:c4:a6:ce:58:cf:11:b8:0d:f6:1a:16:4a:43:
74:8b:72:5d:23:28:53:f0:9f:22:77:c0:bf:5b:52:
e6:f5:80:bc:af:97:d9:b6:51:af:9a:9e:f6:ce:3e:
5b:29:77:ec:b8:48:3c:da:0e:1b:8b:23:60:59:ad:
cc:a3:47:7f:e2:7e:cf:9c:f4:f9:8f:f0:db:05:0e:
84:f0:5f:20:be:c6:52:20:f6:59:d2:d3:6c:4b:65:
79:1a:6a:eb:c1:89:27:72:0b:33:ed:07:fc:83:5e:
6a:21:4b:75:81:90:55:d0:cd:19:82:c3:d2:b8:6f:
19:aa:72:64:d6:bf:72:6d:e6:bc:e3:5c:40:54:72:
81:7f:e4:18:52:37:61:54:95:26:49:6b:bb:6b:94:
f8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:AE:2E:3C:F4:B6:0D:E1:76:C7:F4:19:B8:CD:89:4A:54:CB:73:3D
X509v3 Authority Key Identifier:
keyid:40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:d6:bb:8c:6d:e7:60:16:40:92:6e:2e:60:7e:a6:d1:08:a5:
88:af:44:f5:d1:8b:7e:bc:02:70:0f:7d:1c:da:a2:e0:2b:57:
e3:55:25:01:1a:3a:2a:a6:04:61:ee:07:fa:c7:76:36:cc:b8:
0a:fa:42:52:30:b1:fa:d7:e4:b7:4d:b8:62:cc:de:88:39:b2:
3c:6a:3d:51:72:d3:7f:d8:76:78:f8:ed:5b:f0:b0:f8:82:04:
83:99:29:05:a6:d0:20:80:3a:4d:27:25:7d:63:db:5f:41:01:
df:7a:83:5f:e4:07:9b:c8:a2:52:73:7f:da:31:da:01:f8:5e:
0f:3c:64:b9:39:22:60:76:7f:59:16:88:60:65:0c:cf:c5:df:
3b:79:29:26:4e:b4:ac:1d:08:e9:4f:31:39:92:58:38:c1:d0:
9c:b7:bb:15:bc:d6:71:34:4e:db:51:64:b4:9c:b8:09:36:a7:
38:50:c5:ed:d9:4f:48:3c:df:86:70:22:0c:82:60:ae:52:12:
85:90:c4:da:4b:37:a4:1e:3c:db:c2:ce:62:1e:0c:12:5c:55:
ca:4f:3f:60:da:ff:21:61:e0:f2:ed:f5:25:9c:24:c0:7f:27:
5e:e4:0a:93:6f:fb:d6:5d:0c:a5:23:c8:fa:e2:48:58:b6:61:
36:f8:46:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:55:42 2025 by rpki-client