Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
File: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft (raw, json)
Hash identifier: 58jL7NhCqeoLd4YO5b98CWaB8fFfr2Rb/KGf5Bcoa1E=
Subject key identifier: DB:C6:B2:09:B6:8E:B6:87:AE:26:CF:C1:41:4F:7F:92:C4:93:F2:CE
Authority key identifier: AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
Certificate issuer: /CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Certificate serial: 01988D6B43CBB64B8C06D820B221B3971F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
Manifest number: 101F
Signing time: Sat 09 Aug 2025 06:01:13 +0000
Manifest this update: Sat 09 Aug 2025 06:01:13 +0000
Manifest next update: Sun 10 Aug 2025 06:01:13 +0000
Files and hashes: 1: 1Z36oEX0lkx8ndMTGV0SwL3pu6s.roa (hash: oLjRdDjCa874D2Ohi+4lYwxZSVZ663VZAUA47G0Sbic=)
2: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl (hash: yAFIyPD2EMTWrBfr0VK/4W2MhkDKL0GPp5Ku9aaWTGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:6b:43:cb:b6:4b:8c:06:d8:20:b2:21:b3:97:1f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Validity
Not Before: Aug 9 06:01:13 2025 GMT
Not After : Aug 10 06:01:13 2025 GMT
Subject: CN=dbc6b209b68eb687ae26cfc1414f7f92c493f2ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b9:13:ea:3b:99:4a:0d:9d:b8:9e:9a:e8:f2:
47:b6:ff:88:15:c2:4a:8d:be:88:06:7b:23:41:84:
ef:9f:bc:50:df:a5:7c:fb:58:01:4d:28:4b:57:1f:
a2:42:b0:0e:7a:0e:f3:95:1e:01:61:8e:b3:1e:01:
49:3e:a2:1f:91:32:03:18:7e:35:d7:22:b3:e7:da:
a9:bd:76:eb:6a:44:85:0b:2c:b8:ff:f3:a7:9c:10:
10:c3:56:26:a7:bf:01:a1:a5:80:7b:8d:d1:2f:f2:
09:56:19:d9:0d:cb:bd:85:25:5e:91:02:fd:28:61:
90:41:e4:77:d2:03:6e:74:17:87:2c:23:95:fc:bd:
d3:9c:56:38:6a:cd:5c:54:9f:0e:6c:08:78:f2:75:
46:10:5e:45:12:6f:64:42:b1:9f:9e:e6:e1:35:df:
1a:8d:ea:63:34:cd:f0:4e:2c:33:e0:09:b2:56:00:
9b:dc:43:0e:7b:e2:18:f2:08:dd:95:e6:0d:30:2a:
32:51:6b:24:bf:9d:31:76:a1:e8:89:6b:18:43:d6:
04:90:4d:f0:8c:46:9e:54:40:ea:89:86:b1:46:7e:
9c:67:dc:a4:93:0f:a6:97:5f:33:8b:61:8b:2a:81:
38:07:98:fd:28:92:8b:95:68:da:2d:15:7d:2a:95:
28:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C6:B2:09:B6:8E:B6:87:AE:26:CF:C1:41:4F:7F:92:C4:93:F2:CE
X509v3 Authority Key Identifier:
keyid:AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:fb:0d:01:87:a5:f0:9c:bf:34:a6:4b:77:8e:0b:b7:60:f4:
a1:89:a0:c3:5b:cc:4d:d4:5e:a1:18:db:cb:40:01:1c:ba:f2:
7d:ab:a6:1d:c8:b8:51:e0:22:cf:42:d3:55:b4:dc:c8:80:7f:
42:4e:f4:60:b9:94:8e:17:e4:91:15:80:5b:d0:5c:fd:72:f9:
f6:20:2f:c3:96:16:f3:ad:5d:18:88:6b:71:0e:53:e2:7a:f1:
05:12:e3:98:ab:4a:72:a6:c4:d7:40:7a:5b:54:64:fe:f6:51:
09:76:57:1d:34:58:6b:83:99:8b:ea:e0:f5:c8:88:4c:a5:c6:
4f:1b:6c:dd:85:31:52:8d:63:d1:a5:cf:6e:25:0b:5c:3c:2a:
20:43:02:73:8a:c5:f2:00:8a:60:7a:a7:a9:d8:fa:21:7f:87:
99:a7:52:55:b9:25:05:e1:c2:7d:0f:af:5d:37:ac:1d:99:3d:
0e:d0:4f:21:31:a3:8b:bd:a7:ed:42:1e:15:fc:92:c0:87:f5:
7e:6d:7e:b6:ce:81:1c:25:6c:44:0d:b4:66:15:6c:a3:24:05:
f6:99:c5:c7:68:96:ea:76:bd:50:88:0b:dd:5d:32:d5:68:21:
54:76:5d:64:7e:26:6b:13:2a:af:e8:c5:d6:02:90:89:ba:0a:
70:df:fb:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:16:06 2025 by rpki-client