Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier: tNG15u+XlaQucK9YKJ1sYgAENBbPAjh9Mwoc49DimxE=
Subject key identifier: 79:BE:7D:C9:15:5B:A2:31:5C:20:A0:55:7A:31:16:1A:C8:75:76:9D
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial: 019896A583417DCE0186F0DF832A4EC0A210
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number: 0C15
Signing time: Mon 11 Aug 2025 01:01:26 +0000
Manifest this update: Mon 11 Aug 2025 01:01:26 +0000
Manifest next update: Tue 12 Aug 2025 01:01:26 +0000
Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: H9nEJXhKLnwU8YbS6rVwxM9sWz7gDbKBOvdOnmJ/wjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:83:41:7d:ce:01:86:f0:df:83:2a:4e:c0:a2:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Validity
Not Before: Aug 11 01:01:26 2025 GMT
Not After : Aug 12 01:01:26 2025 GMT
Subject: CN=79be7dc9155ba2315c20a0557a31161ac875769d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9c:bd:5a:8f:2c:cc:9a:e1:b4:ba:56:be:5f:
3e:78:9f:85:97:f2:b2:94:38:90:49:92:3e:7b:ca:
d6:b4:0d:1a:8b:5c:d3:9e:69:22:0b:8a:fa:b9:1b:
73:bf:bb:e6:ba:52:cd:20:77:07:20:17:7a:22:00:
61:38:48:46:53:44:7b:bb:e7:f2:fc:52:48:2c:bb:
50:86:83:77:22:2f:31:88:6a:0e:a1:d6:93:5a:a7:
65:18:75:2e:23:df:a7:65:6c:5d:0a:3a:1b:c0:37:
01:f3:69:24:8d:ea:82:5e:f6:c9:24:e8:99:0d:37:
a8:01:d8:bd:8c:20:2e:27:1b:89:b7:7b:b1:d1:cc:
bd:ca:35:43:07:f0:a8:63:e8:d3:76:f3:bb:de:e8:
f6:67:c5:af:f2:6d:79:5d:a8:f1:8a:ca:a8:1b:5b:
e6:e2:8c:e7:ee:d1:3f:4f:a4:b3:16:6b:46:6f:94:
d2:d5:a4:f2:52:78:56:7e:63:3a:84:b3:48:0d:b5:
19:27:52:94:9a:ae:c1:98:b1:b5:96:34:d4:5c:bd:
ac:ef:7c:2d:82:65:dd:e7:3b:b5:58:1d:8d:39:31:
07:35:1b:7c:ec:a0:71:0d:6d:47:57:d2:00:c5:87:
bf:46:85:c0:57:35:ae:bd:63:6c:5f:64:57:f7:90:
b7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:BE:7D:C9:15:5B:A2:31:5C:20:A0:55:7A:31:16:1A:C8:75:76:9D
X509v3 Authority Key Identifier:
keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:18:47:5a:c8:22:b5:72:9c:7e:75:2d:c4:c8:4d:e3:80:b7:
68:e0:47:40:82:20:5a:76:ac:5c:4c:c7:1c:24:57:c9:01:f7:
79:f9:88:15:6c:5c:1e:84:21:57:d7:21:ba:f3:ca:84:7c:62:
c7:f6:48:24:8c:57:7f:f8:2a:9a:30:a1:b4:92:8f:bc:16:6a:
28:f2:f4:87:75:81:05:a2:40:e0:25:2e:47:12:aa:f2:d7:68:
76:59:ea:c9:f8:9d:2e:38:24:91:c8:45:22:1e:21:de:45:16:
9e:0e:02:a8:4f:24:37:7a:49:21:22:6b:46:33:5f:97:f7:31:
22:81:6c:c7:82:3b:29:d0:24:8f:39:6e:dd:1c:d7:1b:5e:e2:
81:41:93:25:33:ce:d5:a0:fb:31:23:15:fe:af:dc:b3:9d:81:
2e:97:11:41:6e:57:09:a5:1a:79:84:f6:94:1b:e3:d6:60:57:
cb:e6:93:4b:18:02:e4:be:7f:44:fb:19:3f:af:8b:3a:7d:0d:
65:48:79:3b:10:46:13:43:38:b6:66:cc:37:cf:e0:03:41:5d:
d0:30:7c:ce:c6:07:ec:aa:a8:a6:84:95:ce:ee:bf:65:75:db:
a3:e5:54:00:8f:66:07:ad:56:cc:7a:43:6b:18:5d:91:21:90:
f9:47:41:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:21:44 2025 by rpki-client