Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: 6v62oV6/N5MVKDegBeC+I9bxFa0Lc+z++24glM0xjI0=
Subject key identifier: 9C:68:9D:FD:B6:53:CD:D3:33:26:97:8A:A5:8C:9F:78:83:07:5D:D5
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 0199FCC6BB2F53A56F7FD17C7A7B712C4F2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 03DD
Signing time: Sun 19 Oct 2025 14:01:46 +0000
Manifest this update: Sun 19 Oct 2025 14:01:46 +0000
Manifest next update: Mon 20 Oct 2025 14:01:46 +0000
Files and hashes: 1: Lh_NKL7D2mWFyhzHGugt5SgY5Oo.roa (hash: DjvsQWCGurUIzxMM5VASKrLIiSf6rVM8+QHojBeXG6I=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: AJZyokPhjy/itPAJnQbQl6L5LTEttZFiMgAYL9A9wHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:bb:2f:53:a5:6f:7f:d1:7c:7a:7b:71:2c:4f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Oct 19 14:01:46 2025 GMT
Not After : Oct 20 14:01:46 2025 GMT
Subject: CN=9c689dfdb653cdd33326978aa58c9f7883075dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:39:6e:e0:62:51:94:c1:ec:ce:3f:2d:c1:a5:
78:54:c8:85:1e:4d:51:27:46:57:45:20:eb:1d:ca:
aa:b2:dc:97:70:c8:3b:c1:12:6c:9c:c8:ef:c5:49:
d3:e4:be:06:68:c9:7f:d7:df:31:2c:88:0a:2a:dd:
82:ca:cb:40:d8:d1:3a:4d:62:6f:09:ee:63:48:c3:
08:39:c0:20:51:de:0b:27:f2:2c:62:e8:fe:73:d9:
d3:26:56:4b:86:e7:79:d2:77:e5:29:b5:96:62:da:
a9:f6:c9:f9:eb:fa:0f:af:e6:3c:ea:45:36:a0:34:
7d:94:d4:16:1e:0e:d9:fd:a4:d2:1d:27:f0:08:54:
53:e3:60:87:45:e2:f7:e1:c8:6d:bc:00:ab:e8:5b:
32:1b:f0:23:0a:9c:fc:14:27:97:02:ed:58:e7:9c:
02:e3:3e:7e:f6:43:eb:b0:a3:dc:d9:c1:74:55:57:
c7:27:ae:c2:9d:71:fc:be:4b:64:b9:bd:f3:e3:8c:
25:0b:95:a3:ff:d8:b2:ab:3f:82:15:25:3c:5f:74:
f6:c3:8c:87:e9:5c:4c:fa:af:5c:2e:97:51:7e:34:
2f:55:6e:fc:dc:7b:2e:80:22:7b:3f:dd:4f:49:e7:
c5:8f:d1:79:58:f0:ec:fe:63:93:b1:c4:fa:24:82:
4d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:68:9D:FD:B6:53:CD:D3:33:26:97:8A:A5:8C:9F:78:83:07:5D:D5
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:2a:f3:ad:2c:05:01:48:02:79:d0:a4:45:6b:5f:5e:ea:33:
27:53:8d:bb:ee:0c:2c:c5:f5:d1:14:0a:eb:e8:79:3a:3b:d2:
69:d4:34:f5:ed:4e:9f:71:f5:b0:b5:bf:0a:5b:ef:99:22:ae:
4f:16:11:09:de:8d:6d:02:80:7e:f0:05:5d:1c:92:3e:50:d9:
84:6a:03:f0:7e:68:91:b3:88:de:e4:81:b0:2d:86:a3:fe:c6:
f9:5e:10:bc:04:7b:cd:b3:89:db:23:6c:43:86:e5:a1:53:ba:
5f:80:5c:f4:17:bd:5e:fe:59:40:b3:bd:44:05:17:7e:5f:37:
13:9b:4b:fc:e4:c2:59:bc:5c:a2:70:3a:46:89:3a:19:b6:c2:
0d:39:e7:e3:5b:5a:84:2e:48:5d:de:4a:d4:78:40:21:7a:91:
a9:b0:72:64:ee:b6:f2:15:3f:11:34:ec:52:0d:78:79:56:6d:
cc:ce:a4:f4:91:90:d3:b3:b3:81:9b:4b:91:d7:32:f8:78:ba:
09:8c:d0:aa:38:35:5f:db:fe:1c:55:c5:44:b0:41:a3:15:1e:
00:11:b8:d9:ed:1c:e2:ed:8a:a4:77:f2:26:7d:b4:91:36:50:
a1:24:8a:d9:41:3e:a4:8d:24:f8:94:85:3c:e7:3c:16:05:fa:
98:ea:c1:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:25 2025 by rpki-client