Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
File: Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft (raw, json)
Hash identifier: ajA2LgUGe9IJm3qtvHUx86+sTQ3CJ9HYntd7WGMZ0oM=
Subject key identifier: 99:C7:3E:DB:53:8B:2D:42:75:CC:E5:8D:D6:29:65:03:CE:13:5E:2E
Authority key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
Certificate issuer: /CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Certificate serial: 019896A5CDCEF77226311D2703191CF3ED09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
Manifest number: 0680
Signing time: Mon 11 Aug 2025 01:01:45 +0000
Manifest this update: Mon 11 Aug 2025 01:01:45 +0000
Manifest next update: Tue 12 Aug 2025 01:01:45 +0000
Files and hashes: 1: BR-wwst0Mwoj4cW4aMMLkST0T08.roa (hash: KhuoTa1EwW+NDwJopflLn+SOxpsU8qTU0jm6Bsplu/Y=)
2: Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl (hash: inPGYBYWNiuCIS0bDs+cGtch2w8h9z1psM2YIjq7rh0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:cd:ce:f7:72:26:31:1d:27:03:19:1c:f3:ed:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Validity
Not Before: Aug 11 01:01:45 2025 GMT
Not After : Aug 12 01:01:45 2025 GMT
Subject: CN=99c73edb538b2d4275cce58dd6296503ce135e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ff:21:9b:e9:da:f5:69:d4:9f:a7:1f:95:a2:
ea:d3:33:d1:8b:60:20:07:a1:e1:ef:a1:98:ba:b3:
47:9f:b3:05:0f:e1:2b:c6:b4:51:a9:8c:7b:2e:8e:
ec:34:74:49:dd:8d:ef:61:b7:44:cc:e0:79:ae:0a:
eb:be:19:00:b5:fd:16:2e:60:24:4b:a2:98:39:fe:
2c:10:99:43:ef:89:bb:39:1d:c7:61:00:26:b0:69:
5b:a4:bf:c5:a2:bc:a6:d7:65:59:07:56:59:18:62:
23:0b:a9:dd:7b:a3:99:e5:cd:b6:e6:12:43:fc:50:
5d:cc:ac:8a:51:d0:a4:4f:a3:6f:96:3a:50:3a:67:
56:21:a7:c2:ed:91:65:e7:ae:bc:62:c9:38:d1:7e:
75:3d:72:27:f2:3e:a8:35:85:56:07:9b:cb:b6:3a:
24:a1:73:b4:ea:88:4f:15:fb:e6:73:f5:5d:1f:bc:
c2:a8:38:ca:9a:7c:52:56:81:8e:f8:5a:2f:38:21:
a2:22:68:8d:bb:32:18:54:d9:87:55:7c:a1:e2:ce:
a9:da:43:2c:aa:a6:43:1a:93:d3:2a:a1:bb:af:63:
a9:c0:95:c5:f3:90:cd:b7:d7:a8:84:91:55:97:be:
fd:9c:8c:61:cb:0e:06:16:66:08:7d:03:7c:d2:27:
fc:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C7:3E:DB:53:8B:2D:42:75:CC:E5:8D:D6:29:65:03:CE:13:5E:2E
X509v3 Authority Key Identifier:
keyid:42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:76:ad:60:d3:d7:f8:d4:35:d8:bf:d4:8a:52:eb:d7:ca:0c:
c1:4f:19:83:e6:8d:c0:ba:d5:ce:83:50:2c:56:ec:cf:fc:95:
98:88:45:9a:b3:54:21:54:32:7f:5d:0d:10:91:3f:2f:89:49:
25:24:bd:e2:66:5a:c8:68:35:04:89:72:41:ea:c4:3a:df:99:
bc:54:8f:6f:5b:a8:e2:90:c1:1d:55:44:85:0d:cf:ea:65:2a:
60:0c:39:e8:6d:4f:00:5e:b7:71:17:cf:a3:4a:ba:38:a9:86:
55:c9:a0:4f:ed:a7:89:d4:5e:fc:c4:ab:e5:9f:23:3f:d9:2b:
ca:74:e3:f0:28:a8:ce:3a:a4:28:56:41:39:40:fe:8b:a0:37:
3f:fb:dd:c8:28:42:fa:08:1a:1d:47:55:76:b3:bb:c5:fc:4d:
de:24:1c:25:99:1c:63:ee:96:83:f4:ea:bd:73:81:2a:4c:c2:
82:3b:71:6f:b2:f0:f4:e5:df:64:d9:2d:a6:6d:30:7f:a4:34:
b7:7c:bc:e4:86:4b:e7:46:1e:98:b6:8b:45:91:2b:13:d1:85:
95:5c:dd:f2:93:ba:78:e0:47:81:b6:2d:b4:5d:de:0f:ec:68:
b9:06:98:3b:17:f2:b6:a9:7d:82:e3:47:a8:42:bc:0f:8e:c2:
18:17:39:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:23:30 2025 by rpki-client