Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: L80PgrkyZ5v5a2QdhOUYTQvzqC0thp+zO5nszJ3lf7M=
Subject key identifier: 25:3E:BB:02:D6:7E:9F:F1:89:C8:94:58:4F:35:24:2E:47:5F:E9:25
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 01977B2FF818BEAD7888F30EBC35970904B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 1598
Signing time: Tue 17 Jun 2025 00:00:30 +0000
Manifest this update: Tue 17 Jun 2025 00:00:30 +0000
Manifest next update: Wed 18 Jun 2025 00:00:30 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: wXdNvnDkniAVCRkGxk3DMokWVV2iXHmOi5wvgxpmIfM=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:2f:f8:18:be:ad:78:88:f3:0e:bc:35:97:09:04:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Jun 17 00:00:30 2025 GMT
Not After : Jun 18 00:00:30 2025 GMT
Subject: CN=253ebb02d67e9ff189c894584f35242e475fe925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e5:47:10:0d:d1:75:36:8c:4b:77:cf:9d:c2:
d5:98:3d:1b:98:95:d5:a7:84:35:da:a0:01:f4:32:
8a:4b:6a:ba:c1:2d:b9:4c:93:25:18:8b:ac:9c:28:
77:f6:5f:a7:56:d2:11:61:7f:f9:5e:40:98:22:ee:
e6:57:be:74:83:61:a1:d1:6b:1b:d9:64:14:14:fc:
da:c6:41:b9:80:19:1f:ac:54:74:2c:3e:2f:5e:cb:
ba:c6:bf:22:af:74:4c:74:a8:08:b6:58:93:16:2c:
d8:51:57:35:c8:46:5e:12:7d:f9:69:00:8d:dc:b8:
3c:65:77:5b:16:d0:c1:00:69:5c:f2:e7:08:8c:3e:
c4:75:5c:21:4c:7f:a4:de:9d:86:5e:7f:d3:71:17:
9d:63:81:80:2f:5d:f4:d9:d5:62:e5:3a:eb:76:8a:
b7:66:8c:dd:5f:38:99:55:51:4a:ef:bc:2a:60:26:
ba:0e:85:85:bd:ab:e9:a7:4d:83:6b:27:e9:75:b2:
51:9f:95:9f:bf:64:82:23:91:fe:25:1a:0d:4c:a9:
79:c5:2c:46:99:4d:28:ef:97:33:95:d5:0a:8a:f9:
21:8f:ec:b4:48:0f:cc:52:94:a1:5e:49:82:de:3f:
05:68:36:f4:3d:54:87:d7:62:ae:2f:c5:6c:3e:6b:
21:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:3E:BB:02:D6:7E:9F:F1:89:C8:94:58:4F:35:24:2E:47:5F:E9:25
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:1f:03:04:94:dc:8f:15:ba:9a:81:3d:a0:6b:d5:ee:b0:bb:
4c:fa:02:8a:de:24:d7:a0:b7:d8:04:fb:53:27:79:79:fc:30:
c3:e1:e3:21:84:7c:13:b6:06:09:85:f5:4f:63:9f:70:ee:8d:
2e:ef:63:14:28:4a:25:c5:b9:65:40:86:90:2e:72:6a:04:92:
a2:44:2a:a4:2c:d0:d4:61:7e:13:da:d5:eb:ae:99:bd:3a:68:
a5:00:fc:ab:6f:ff:e2:0d:4c:24:9a:90:aa:8c:24:20:7d:26:
79:f9:75:d3:b1:2f:1c:17:31:c0:84:4a:19:8e:bc:a1:eb:88:
37:1a:93:e8:e0:8b:cb:43:56:45:eb:f7:3c:31:53:b2:b2:ce:
f7:31:ce:99:72:a5:51:51:e5:dc:8b:3a:28:7b:ba:2d:f4:f3:
63:0e:44:65:ef:2b:e1:c2:85:7b:5a:1a:c8:86:32:c9:70:99:
a1:75:0c:8b:72:7c:3b:8b:cc:04:f4:f8:48:fe:53:a3:70:c2:
2b:c4:68:f1:f7:db:3b:6a:b7:21:1c:b9:a7:5e:56:5e:58:ca:
11:02:54:99:96:32:47:db:af:0f:05:c1:15:2d:eb:53:b3:33:
33:84:53:23:24:c4:84:ac:4e:3e:e1:28:1d:81:f8:d3:61:6a:
82:c5:9a:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 08:58:59 2025 by rpki-client