Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
File: Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft (raw, json)
Hash identifier: 79PLFgDNbcTCptDQHT0sXIdlty1fr+z8Bm91iMLWIxU=
Subject key identifier: 3D:79:DA:EC:16:8F:6A:6E:53:1C:2B:7B:5A:BF:09:C3:02:87:62:94
Authority key identifier: 43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
Certificate issuer: /CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Certificate serial: 0199FF22CB08D0DC8BDB3822798326DC2EDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
Manifest number: 0B70
Signing time: Mon 20 Oct 2025 01:01:34 +0000
Manifest this update: Mon 20 Oct 2025 01:01:34 +0000
Manifest next update: Tue 21 Oct 2025 01:01:34 +0000
Files and hashes: 1: Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl (hash: hlfoGt5rk/AIhFYg9+CbeqQ7kbHjniyyBUwftDpApS8=)
2: rqFwpW6hygA3WlEvpR2r2eLIqwU.roa (hash: hJKMm6stZaqD+/5F5Zq5RhHhs3I7m3K3YzZ93XXb5tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 01:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:cb:08:d0:dc:8b:db:38:22:79:83:26:dc:2e:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Validity
Not Before: Oct 20 01:01:34 2025 GMT
Not After : Oct 21 01:01:34 2025 GMT
Subject: CN=3d79daec168f6a6e531c2b7b5abf09c302876294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9c:d6:7f:8c:c6:4a:29:0c:ba:43:f6:5c:72:
de:d6:3c:ee:c5:bf:ce:05:d1:b9:d1:c2:73:f4:45:
ba:bc:8a:24:1f:16:ae:f0:4e:d5:2c:c3:30:ad:6a:
69:70:f9:c4:ec:58:3e:f6:18:16:4f:8e:24:40:05:
5f:58:31:86:6d:c6:57:fb:d3:16:42:fb:6a:18:07:
76:48:c6:88:f3:7c:5b:19:1e:0d:37:db:3d:19:a8:
1f:21:f6:36:0b:ed:61:74:e3:60:ff:35:43:95:80:
d1:1a:78:87:5d:31:05:be:88:2e:97:6d:c3:3a:f3:
24:a2:64:de:13:c3:b6:2d:8f:16:1d:d1:eb:8b:b7:
46:93:0c:45:1e:25:cc:c5:6a:bf:b4:2e:29:68:3d:
48:87:a0:96:a4:f7:b5:f0:6a:f8:71:62:97:42:d1:
a7:4d:0f:7d:4d:10:43:4e:8c:d1:4b:aa:1b:23:f0:
3e:62:19:27:e0:54:5f:f7:60:45:78:5b:a7:1b:50:
c3:2e:c0:20:1d:c9:ce:e9:d4:72:ef:41:d1:af:3a:
b2:27:90:fe:32:23:a7:cc:84:65:e6:d8:8d:4d:26:
26:d0:90:1d:be:0a:a3:22:55:3a:f8:a6:8c:ac:7e:
d7:ff:11:0b:07:83:68:a3:ce:1f:5b:59:d8:5d:36:
98:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:79:DA:EC:16:8F:6A:6E:53:1C:2B:7B:5A:BF:09:C3:02:87:62:94
X509v3 Authority Key Identifier:
keyid:43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:38:d1:08:80:2a:04:33:7b:f4:41:12:1d:b0:9b:9f:b6:c4:
05:49:74:bf:20:eb:15:55:bd:4f:b9:13:03:63:e0:10:a1:62:
8a:30:b1:8b:27:0a:ee:99:af:cd:ac:63:ee:be:b4:df:9d:03:
95:08:37:fc:96:45:74:6d:eb:cd:92:00:7e:7a:a1:31:a4:a8:
1c:4e:5a:fa:9f:02:7a:05:52:db:d1:22:43:83:41:e8:6f:8c:
0b:73:27:70:a8:1d:59:c3:2c:d3:49:35:bf:13:9e:dc:39:73:
28:11:5e:c2:d0:09:98:76:8c:e5:ee:84:79:95:61:2a:ba:0d:
96:c9:6e:62:19:2c:d3:9c:84:b8:9c:79:95:0b:e3:fe:17:86:
cd:34:c7:ea:c0:cf:71:b2:71:ca:94:05:3d:dd:0e:89:da:08:
9b:6f:d1:db:d8:86:a1:16:a5:cc:74:16:9d:10:0a:39:94:3f:
d6:e5:68:79:76:ef:09:39:b1:eb:ad:16:23:ef:a7:6f:d8:c9:
7b:6f:1d:28:75:8e:75:55:13:d7:30:4a:15:f7:4b:40:5a:e4:
e5:24:c2:1c:8f:84:e9:e1:6d:d7:6c:bb:48:f2:9b:eb:31:a9:
2e:35:b8:fb:b3:97:d6:42:0b:76:bd:96:06:97:96:e3:ce:ad:
04:a6:41:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 11:32:03 2025 by rpki-client