Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: OXtqjPFHUuyvJ2oJD6mlVEwM95pCbOiqi3Zx3pq05Ws=
Subject key identifier: AA:B8:A1:E0:2E:19:AC:99:55:51:D0:7C:72:71:98:5F:FF:C2:64:BF
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 01988F59BFD8FD97FF8045CF9E0BA3F69DFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 1627
Signing time: Sat 09 Aug 2025 15:01:20 +0000
Manifest this update: Sat 09 Aug 2025 15:01:20 +0000
Manifest next update: Sun 10 Aug 2025 15:01:20 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: lUV1oI9EaiLbepbypqD4CEBi9mLU634Bya53uYpRQbM=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:59:bf:d8:fd:97:ff:80:45:cf:9e:0b:a3:f6:9d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Aug 9 15:01:20 2025 GMT
Not After : Aug 10 15:01:20 2025 GMT
Subject: CN=aab8a1e02e19ac995551d07c7271985fffc264bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:08:de:50:55:7c:75:e2:3d:ea:00:d5:a1:dc:
5e:df:f8:41:75:62:0f:12:45:6e:3e:fc:39:35:f0:
db:92:f5:ad:03:31:1b:30:d9:6d:98:2e:1d:c1:50:
0a:78:fd:dd:4b:50:f1:d8:c9:c7:2c:f3:76:29:40:
dc:ab:70:9c:31:18:10:71:31:14:a8:0b:7c:2e:bc:
71:7b:0b:49:28:0c:f8:1c:41:26:ad:8f:c1:25:77:
c4:bd:8f:01:7a:24:1b:60:82:40:3f:31:e3:0f:13:
e8:8d:d1:56:5b:1d:bb:1e:f9:6b:6d:ef:65:6f:92:
02:1c:67:f9:0c:30:93:56:30:cd:66:d6:e4:5d:0d:
b9:b0:49:09:16:34:fd:72:2c:42:40:72:cd:94:b2:
b2:a3:7e:c0:03:12:64:23:88:3b:16:6e:51:65:0e:
78:89:c5:f2:14:68:d9:cf:a7:3b:c3:4e:eb:12:8a:
82:67:e3:3c:b3:e4:9e:01:b1:62:6c:ef:39:e0:c3:
96:55:42:7b:e7:fc:40:3e:56:24:95:d4:2f:a4:e9:
50:a8:57:7e:cc:5e:0a:1a:62:ea:73:34:fd:2c:03:
03:a1:2b:a2:5d:8f:d1:73:96:a6:56:f6:e8:ed:e9:
e2:6f:59:4f:f4:82:25:e3:bf:79:bd:8b:71:d8:88:
88:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B8:A1:E0:2E:19:AC:99:55:51:D0:7C:72:71:98:5F:FF:C2:64:BF
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:f2:1d:ad:5c:b6:76:d3:b7:49:22:ff:a1:33:73:f3:00:0d:
4f:21:da:2e:06:80:f2:2e:3b:2a:c3:81:9c:7a:1e:a3:11:1f:
5e:58:9c:3c:74:8c:d2:6a:e8:be:66:1b:f0:20:30:3a:1f:0c:
ce:38:80:49:62:6c:e2:12:80:37:1c:9a:b1:2c:79:9c:24:c3:
dd:fe:e2:44:36:fd:5f:4e:ed:e3:66:03:77:9d:c6:dc:dd:0c:
6c:5f:c1:52:db:06:ef:5c:80:72:15:a7:29:97:f4:b9:92:1e:
5d:be:2f:0d:f6:43:c2:bb:ff:60:36:86:7b:2d:59:e1:09:f8:
33:cb:3f:3d:5f:1a:93:81:df:5e:bc:6e:bc:27:8f:81:be:bb:
e0:82:98:12:19:84:da:97:52:3c:62:3d:3c:e2:b6:24:5d:fd:
29:c2:85:03:81:7b:a7:91:a4:97:28:20:05:f3:cc:2d:c5:a1:
0c:a6:bd:31:b2:40:7d:7c:22:b8:fb:4e:87:ed:8e:bc:9b:ed:
c4:f4:26:2f:cf:4f:74:8f:b4:a2:22:c2:a3:5e:7d:fd:a7:24:
19:bc:71:fd:40:eb:4d:be:31:09:94:27:1f:a3:a3:14:28:54:
6e:cd:6c:1a:b1:61:e2:81:8f:ff:fc:a9:96:8d:27:52:94:50:
59:c4:c9:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:51:27 2025 by rpki-client