Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: gHQAq26bfzW1azaCujotG2bUE+slhKki/A+tL56HJwc=
Subject key identifier: 97:16:F7:0D:03:35:50:D3:1E:81:52:FE:18:18:0E:2A:33:39:8A:B1
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 019873E39200C69A52E14EFB15821445483B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 1617
Signing time: Mon 04 Aug 2025 07:02:30 +0000
Manifest this update: Mon 04 Aug 2025 07:02:30 +0000
Manifest next update: Tue 05 Aug 2025 07:02:30 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: qQrdMVDGheylfUVwhuchzcz4JI4ofkOuCsylq0Q3Oy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:92:00:c6:9a:52:e1:4e:fb:15:82:14:45:48:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Aug 4 07:02:30 2025 GMT
Not After : Aug 5 07:02:30 2025 GMT
Subject: CN=9716f70d033550d31e8152fe18180e2a33398ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c0:22:cd:22:d3:1b:0e:6c:df:42:c0:f9:86:
3d:44:16:d7:ed:d2:8b:ff:ce:45:ef:0e:89:3c:fd:
fa:fa:54:86:29:b6:c5:23:6c:84:d8:a1:bf:9e:21:
c4:d3:1e:0b:52:fe:05:f6:8f:a2:56:3e:e3:53:fc:
50:11:49:55:cc:3b:91:d3:98:dc:68:7f:20:08:c4:
c5:b4:7f:d1:d7:20:98:e7:ad:d9:85:95:c8:24:27:
1c:73:7e:98:29:27:5a:33:2e:73:0c:48:57:84:42:
5d:73:3c:6a:63:ed:09:91:1f:cd:d4:70:95:3a:9d:
ce:29:5d:db:fa:85:be:53:03:6e:09:87:bb:23:dd:
55:16:5b:1f:0c:c9:87:bd:a8:b9:14:90:19:d3:60:
f5:9d:25:77:17:a9:a6:e6:43:1b:fa:18:19:2c:c1:
c6:f0:1f:25:16:b9:cc:2e:f6:87:a9:8e:07:af:39:
1d:b2:60:d5:fc:89:5c:ff:ce:fb:18:3d:0f:2a:20:
50:4c:ce:09:39:80:42:25:ea:35:ff:28:e2:1b:f4:
98:e7:1f:3c:d3:ee:73:30:aa:31:4d:bd:09:c7:27:
ca:71:b9:ec:a6:58:d0:fd:f3:3a:92:6b:83:9d:74:
43:76:53:6d:1c:af:62:0f:bd:36:1d:9a:32:e5:85:
b1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:16:F7:0D:03:35:50:D3:1E:81:52:FE:18:18:0E:2A:33:39:8A:B1
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:02:87:cf:75:0b:3e:3f:b7:f6:41:6c:4d:27:cc:7b:b9:45:
ab:55:70:c2:c5:ba:8a:99:e0:ab:c8:7f:f8:16:15:2e:04:68:
16:35:02:d8:ec:c9:dc:c6:0d:a3:50:32:30:1f:31:45:aa:df:
c0:fa:ab:cc:8a:02:2b:32:37:b9:82:b9:e8:8a:bf:68:65:c5:
25:de:51:54:46:a4:db:1d:bb:52:70:9d:63:6a:67:8a:33:c3:
9f:cd:37:0f:6e:28:29:83:45:64:02:ef:e4:51:b6:5c:ff:cb:
d7:21:5d:98:63:51:70:09:07:98:9b:25:45:99:95:17:8f:2b:
d5:b8:f1:fe:e8:c2:04:86:55:ca:60:88:cb:b0:c1:f5:8e:46:
d2:69:e6:7c:79:79:20:4d:63:5f:b5:0f:26:87:e4:da:91:40:
0c:92:62:fc:68:cb:f3:09:97:a5:01:52:86:6d:ee:29:92:93:
cf:99:1c:82:0f:f9:96:67:84:3c:0b:cd:0f:59:fa:39:fe:b7:
6d:8b:37:6f:43:02:f9:20:31:37:4b:c5:27:29:47:00:9c:04:
a4:5d:a5:37:c1:6d:14:24:94:f9:0d:d7:f1:99:51:b3:c1:6d:
40:87:84:00:a9:67:a0:ee:73:7b:b3:b7:26:15:82:e3:6b:f8:
21:8f:57:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:21:07 2025 by rpki-client