Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: 8aDn8nz4sO33zdHy/JGMn05MSIwy8Yv/bgjD0fhu5wg=
Subject key identifier: 7B:63:57:A8:5B:9C:9F:7B:63:7B:A2:41:EE:D9:65:9F:51:B7:11:57
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 0199FD6AE0B7D6B4BA11C7EB69EDB64566D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 17:01:03 +0000
Manifest this update: Sun 19 Oct 2025 17:01:03 +0000
Manifest next update: Mon 20 Oct 2025 17:01:03 +0000
Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: ijpBt7A0kjspVKe5wf7X+lEUoPfnSsmW4ey0stOtQjo=)
2: tBcUVtef6rZ0kSSzgGFNQ0aGmXk.roa (hash: axGcXX34atfoTeccVW4HcK4Aoj164U97BqMvxhWQBsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:e0:b7:d6:b4:ba:11:c7:eb:69:ed:b6:45:66:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Oct 19 17:01:03 2025 GMT
Not After : Oct 20 17:01:03 2025 GMT
Subject: CN=7b6357a85b9c9f7b637ba241eed9659f51b71157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f5:bb:08:46:07:5c:4f:3b:58:7d:da:5f:4a:
ef:38:c1:df:0e:69:d2:21:66:af:09:74:84:74:05:
19:a2:2b:ea:9b:cd:54:72:71:d8:2b:f3:94:00:5a:
fe:f2:70:b0:0c:97:54:46:7a:1a:7d:50:5c:1b:d1:
00:59:a7:37:fd:29:a0:43:96:c4:c7:f8:47:aa:e5:
5a:e0:6b:e6:2f:c2:d8:02:1b:e8:3d:83:83:cc:c1:
0b:56:9f:b9:9b:ec:d1:c4:0f:f4:bb:10:ae:82:91:
cf:00:6e:d4:d9:32:64:4e:d2:50:5e:0e:ee:ad:4e:
41:59:33:1b:0e:f3:1c:aa:88:53:74:7e:41:3e:7f:
ec:ac:ff:e7:eb:de:86:f8:34:3c:85:52:7f:5e:43:
52:6c:f6:c2:69:26:92:ce:6b:73:e6:49:1a:34:8e:
bd:f7:0a:9b:bf:5f:60:b7:8d:c9:1c:e2:cf:98:db:
cd:ae:a9:13:3a:3b:56:bf:9b:e9:c7:ca:ee:85:c9:
26:29:33:79:46:39:e2:31:7f:95:21:bd:3c:0f:e4:
3a:68:a5:f0:cf:ab:de:63:8c:63:80:b9:5d:51:5a:
47:d8:1f:a6:fc:a7:58:33:b5:13:53:96:81:6b:5c:
f3:aa:ee:ff:b1:cc:a3:b1:f9:c5:10:c3:2a:e7:29:
97:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:63:57:A8:5B:9C:9F:7B:63:7B:A2:41:EE:D9:65:9F:51:B7:11:57
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:23:7c:68:b4:9a:c0:2f:3a:b0:ca:2b:f3:c2:87:8a:d5:ce:
71:6e:8c:70:89:e9:38:48:a1:f2:75:9b:3d:cf:d0:30:dd:23:
17:83:11:59:c3:06:e6:80:e5:bf:85:55:ed:46:31:55:b4:59:
53:36:04:66:28:ca:91:22:ab:8b:b4:80:31:5c:26:a2:18:f4:
af:9f:b4:29:e6:0b:7a:83:44:ac:a9:16:af:4c:3b:dd:67:33:
c8:33:21:76:57:f9:1a:86:cf:22:60:7c:48:34:7f:3e:dd:d8:
e7:b0:e4:89:64:50:8a:37:3f:3a:0c:a4:78:3a:bd:6e:f1:d4:
84:9c:96:6d:1c:0b:d8:d7:d8:98:89:dc:c6:3f:48:7e:9c:0f:
aa:aa:d7:9e:92:6f:c3:25:85:4d:5b:1b:d3:be:5b:7c:9b:38:
94:c0:42:96:a1:a2:79:4b:76:43:1e:f0:15:ef:8b:f1:ef:b9:
7a:9b:46:d7:86:af:7a:e4:ad:a5:16:cb:65:93:07:5e:1c:68:
a3:6b:aa:77:c0:99:30:b6:11:82:c7:2b:4c:7d:ff:82:57:2c:
fd:1c:5d:b6:f5:93:23:49:a6:00:b7:8e:7e:ab:39:f9:1c:18:
33:f1:0a:4f:62:b0:08:42:27:94:71:cf:75:0a:a8:63:06:f0:
29:68:69:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:40:37 2025 by rpki-client