Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: Dd4qdZbG+tX9wTd4ua4qOPYYi/lR2+EWdWFF1Wf/e+k=
Subject key identifier: 3A:7B:F1:F5:74:6A:50:0C:D1:9B:9F:68:56:E7:BB:CF:ED:AC:CB:D8
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 01988A6982D36131910291B6F44B1FAE6197
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0C3F
Signing time: Fri 08 Aug 2025 16:00:27 +0000
Manifest this update: Fri 08 Aug 2025 16:00:27 +0000
Manifest next update: Sat 09 Aug 2025 16:00:27 +0000
Files and hashes: 1: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: mL6QTByybPt9Pnf4vMhidzvp11pVVBVU4+VK3NW16R8=)
2: u25_l7rqpA4jc9Mn9X_nn6jE1D8.roa (hash: XxkiW8kKfa52GpQHHiGBtUNZJLczRvJy5PTfiodYsrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:69:82:d3:61:31:91:02:91:b6:f4:4b:1f:ae:61:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Aug 8 16:00:27 2025 GMT
Not After : Aug 9 16:00:27 2025 GMT
Subject: CN=3a7bf1f5746a500cd19b9f6856e7bbcfedaccbd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:af:d0:c1:e8:4b:8f:80:e9:ea:b9:f1:ed:99:
d2:f3:06:2d:e1:60:ec:39:e3:f9:b1:dd:a3:cc:73:
09:1e:b7:ec:1b:ff:51:9e:bc:e3:4b:c8:23:a2:2c:
3d:fe:05:f7:75:c1:d8:f7:d3:e8:92:83:66:68:c9:
27:6b:ce:76:39:e9:11:d3:74:47:59:62:81:db:5c:
14:51:1b:90:0d:b5:70:93:29:4b:53:d8:6d:11:2b:
1f:82:06:26:dd:93:c8:d6:9b:06:64:1c:28:0b:98:
fb:b5:c5:84:eb:9a:dc:4f:90:1f:d7:ba:1e:8d:fb:
b1:ee:ab:70:6e:87:de:56:5d:48:8b:55:b7:8d:4d:
de:b0:50:98:f0:61:4c:5e:4e:6f:f7:6a:64:9e:81:
7a:37:c0:14:30:24:4d:f7:a0:d3:94:71:bb:47:a7:
df:24:31:7c:ab:df:cb:9b:e0:7a:98:db:5d:a7:9b:
df:a7:72:74:08:25:fa:b9:11:ff:88:af:c3:71:f7:
3e:7c:28:5f:da:a6:c2:e5:08:e1:74:90:c1:cb:04:
7c:05:53:2d:25:b4:4f:67:e5:86:93:0f:0b:7c:53:
c0:39:6d:f6:fc:9f:f9:cb:38:62:ce:44:d7:25:ad:
68:70:4c:79:26:3a:03:57:84:8f:c0:b6:5c:55:66:
44:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:7B:F1:F5:74:6A:50:0C:D1:9B:9F:68:56:E7:BB:CF:ED:AC:CB:D8
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:1d:8b:1c:d8:1f:ac:fd:cf:6f:4e:ba:91:3b:be:cf:5a:40:
5d:90:9d:77:7b:ee:f5:12:c1:1a:1b:0e:a5:1f:4b:ba:c3:73:
ac:9d:e2:5f:7a:bb:20:70:dc:2f:0d:9f:7f:e6:d2:11:fa:70:
a3:84:e4:f7:6a:d8:00:e1:ae:4d:79:86:08:3e:84:f4:1b:58:
bd:9d:ee:37:23:62:7d:31:4a:b6:45:d1:6d:66:ee:19:38:98:
22:4f:80:5f:6e:a4:86:21:68:42:c6:2c:db:d7:1c:54:ab:9a:
a9:32:41:de:c8:4a:30:5d:b9:de:b1:e2:bc:56:09:48:dd:f7:
2f:96:0b:fe:83:ff:d7:ed:6b:a1:e5:5a:0c:4e:8a:e1:f4:59:
79:14:4c:d1:1f:4e:bb:9a:5f:19:ef:39:45:a9:77:fd:9f:2e:
03:8e:0b:59:f5:3b:1f:47:eb:b8:71:b9:66:22:2a:18:57:3f:
09:b6:6b:9d:74:fb:43:b0:13:11:4b:30:76:fb:d1:3a:7c:30:
ec:dd:89:4e:49:44:96:72:be:39:da:1d:31:af:ba:1c:86:98:
ef:0d:b2:f9:9d:e6:28:be:1f:3d:64:a0:37:ab:71:29:99:dd:
2c:79:40:d9:1e:85:9f:cc:a8:5c:80:8c:39:28:ff:f4:4d:9c:
c6:79:15:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:01:11 2025 by rpki-client