Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
File: q4PmT3LdWIn7E9whjGg_bi-s9bI.mft (raw, json)
Hash identifier: CJtTKy0twop498vbKB3k38/DjU5skmzJ1m3mqryTIkg=
Subject key identifier: 59:F0:A7:8E:C5:8A:5F:B9:20:46:49:38:58:39:26:E4:77:D9:DA:3A
Authority key identifier: AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
Certificate issuer: /CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Certificate serial: 0199FD33E7EE9BB9E643D860B071A6E5FB6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
Manifest number: 16E9
Signing time: Sun 19 Oct 2025 16:01:01 +0000
Manifest this update: Sun 19 Oct 2025 16:01:01 +0000
Manifest next update: Mon 20 Oct 2025 16:01:01 +0000
Files and hashes: 1: GC2fUhJtpGiIy6nXthLEtb9MorE.roa (hash: 8oMyUkGR/URTk8edfVhTNfkw0imO34fPPaRjx31D8Rs=)
2: q4PmT3LdWIn7E9whjGg_bi-s9bI.crl (hash: tpTXgW/1jGhsLW1gIqdbs9AwXEaG6Ml+QmOcVvrzS1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:e7:ee:9b:b9:e6:43:d8:60:b0:71:a6:e5:fb:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Validity
Not Before: Oct 19 16:01:01 2025 GMT
Not After : Oct 20 16:01:01 2025 GMT
Subject: CN=59f0a78ec58a5fb920464938583926e477d9da3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d2:a5:d8:ef:83:39:b7:5b:dc:c0:4b:a4:c0:
c5:d7:37:b1:88:aa:24:27:49:23:a0:a8:89:9a:c9:
c6:f8:9e:bf:9d:7c:84:70:00:3b:95:cc:3d:aa:8f:
e6:50:ca:20:e0:2d:e8:07:2e:c2:a4:5c:1a:3a:9b:
e7:7c:c1:ab:c5:54:a0:e2:f6:b8:db:a9:e2:22:67:
8b:b3:80:b1:0f:58:87:50:7f:f5:4d:8d:52:2c:f8:
8d:0c:1a:e5:44:1d:ee:dc:f6:98:c2:44:ee:2a:aa:
07:03:98:c4:89:26:b2:5e:25:e5:14:61:b4:33:a5:
d6:28:ae:de:25:03:25:61:05:d2:66:47:e9:44:64:
02:50:76:94:b1:14:1c:d3:78:e4:68:69:dc:69:ff:
58:b6:2a:20:5d:0c:2b:fd:cf:03:f5:45:b2:48:62:
83:50:83:3f:2f:a2:36:89:97:96:23:75:9d:1e:67:
03:17:4e:5b:79:a4:b2:05:9d:9c:ad:e2:a0:22:88:
ce:90:ba:e2:9b:3e:95:21:1b:66:a3:02:f6:a4:eb:
87:b1:cf:c8:a3:57:ec:70:94:6c:22:42:0b:61:b9:
88:8e:ec:bb:b1:af:cc:c1:9e:70:cd:07:36:3b:2f:
69:5a:d6:bd:58:37:ea:ea:1d:ed:ee:09:a5:eb:26:
12:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F0:A7:8E:C5:8A:5F:B9:20:46:49:38:58:39:26:E4:77:D9:DA:3A
X509v3 Authority Key Identifier:
keyid:AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:51:37:e4:2b:2b:4c:b1:fc:12:80:74:62:cb:e4:de:76:02:
58:f8:80:20:73:29:4a:bb:b0:2b:d3:99:47:dc:58:d3:ba:c6:
90:65:c1:04:e2:c1:b3:86:06:22:96:d2:c3:38:54:e6:dc:90:
0a:48:65:9d:bd:5b:54:08:98:48:59:8b:43:92:93:59:e7:50:
f1:81:13:b7:be:d8:ff:1d:bb:05:81:8a:db:43:14:52:c4:54:
4a:70:5e:43:e5:01:78:da:55:b7:58:45:f8:34:7c:46:6a:6b:
73:43:d6:d8:15:4e:65:9d:38:5a:b6:8a:3a:d3:9f:93:25:ea:
d1:d7:82:34:de:42:d1:05:9a:d4:86:86:b2:6a:d3:22:5c:c2:
ca:e7:db:37:65:f0:52:93:4c:15:18:bc:4f:a8:95:fa:72:a6:
29:f0:b1:50:c3:92:20:33:57:4e:99:39:59:58:af:70:ae:53:
6e:66:60:52:ab:34:1b:89:49:0b:e5:39:35:70:12:50:7a:1f:
df:06:92:b2:70:f7:01:dd:01:6e:0f:a0:1c:2e:9e:6f:39:51:
89:a8:b3:11:06:ec:93:cc:85:67:30:d5:e0:68:d9:06:ba:95:
ae:d6:92:fe:13:39:69:e9:d0:99:db:80:cc:d5:46:a8:56:38:
9b:5c:b1:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:05:43 2025 by rpki-client