Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
File: bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft (raw, json)
Hash identifier: GgRJVLbLxyaZy+3gQkDxeHscBqgI4PXt96cGPH2Jlh4=
Subject key identifier: 8C:24:10:13:06:85:D7:65:8E:BA:32:CD:D4:0F:B7:62:9E:9E:61:74
Authority key identifier: 6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
Certificate issuer: /CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Certificate serial: 0199FC58A4719CC1B2C03F793F8A3FEC9AB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
Manifest number: 0AA7
Signing time: Sun 19 Oct 2025 12:01:31 +0000
Manifest this update: Sun 19 Oct 2025 12:01:31 +0000
Manifest next update: Mon 20 Oct 2025 12:01:31 +0000
Files and hashes: 1: bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl (hash: m9VFhr9dWB8F5145f5EgtfiSeE0CCSGd778FjV4VvOI=)
2: zFZRDLYL0fz0Tr9KOTbvt5Gi2T8.roa (hash: RoOpJgCK2e2T8+E3U8CF6Ztsr6QUn+lDcl3mIBxfJ0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:a4:71:9c:c1:b2:c0:3f:79:3f:8a:3f:ec:9a:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Validity
Not Before: Oct 19 12:01:31 2025 GMT
Not After : Oct 20 12:01:31 2025 GMT
Subject: CN=8c2410130685d7658eba32cdd40fb7629e9e6174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6c:03:cd:af:07:54:25:11:49:ca:5a:f8:a6:
9b:2f:fa:df:6f:db:5c:f2:2c:d0:4e:ef:b3:1e:33:
a2:9d:ab:c3:a5:17:8a:47:21:7f:f4:94:68:26:97:
6b:39:29:80:94:1c:0d:fb:2d:e9:bc:f7:37:09:5f:
03:46:b6:1b:0f:af:99:ff:8b:38:db:fb:6e:7f:06:
8d:90:c5:6d:38:81:de:d1:ec:ce:f6:74:bc:55:71:
43:7a:5e:f1:61:7a:79:e1:05:fc:19:58:dc:1c:cb:
b8:98:70:68:1f:d1:d7:81:90:f9:5a:0a:22:b3:10:
b8:99:83:12:7b:47:10:1e:94:7c:cc:ca:fc:06:b7:
0f:f9:16:78:b0:bc:47:18:08:5f:7c:2b:c1:91:8a:
59:dd:63:78:1f:ee:4a:35:eb:c8:85:ad:5a:af:74:
d4:7d:2e:61:ec:28:fe:7e:f5:72:70:cd:87:22:b8:
54:c4:90:96:60:95:c3:30:bd:ed:e1:85:06:c7:01:
67:2f:a4:87:2c:b6:ee:f6:af:85:af:dd:a9:d2:0b:
67:ec:75:84:3a:40:e5:ad:d4:7f:ef:e2:69:06:14:
8a:9c:f5:23:c7:20:61:cf:e6:5d:8a:45:c2:0a:fe:
89:4b:a6:15:0c:da:9a:23:b4:f7:24:97:50:29:76:
2a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:24:10:13:06:85:D7:65:8E:BA:32:CD:D4:0F:B7:62:9E:9E:61:74
X509v3 Authority Key Identifier:
keyid:6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:7f:ce:c2:25:46:da:ca:00:17:32:89:26:07:b3:e3:c9:9f:
7d:2b:ca:24:3a:13:ae:9e:49:08:ca:bf:a5:73:fc:0c:3a:51:
fd:6f:43:a1:5b:59:ed:7d:43:05:b7:07:22:47:df:e5:7d:98:
bd:be:df:bc:55:a9:cb:bc:68:62:86:bb:ba:2a:aa:a2:85:85:
ce:c9:b4:00:54:fb:1d:ad:56:ac:e6:8f:0b:69:54:61:62:a3:
c4:1a:08:66:29:99:71:cf:b1:f1:c0:43:34:ca:76:dd:f9:d6:
ed:6c:94:6c:41:35:13:77:81:8d:5b:d9:a6:52:06:03:98:36:
45:76:be:7e:03:12:e6:be:ec:8c:62:b1:3d:40:2e:0d:cb:16:
d8:0d:94:4d:89:df:dc:58:53:74:e1:b6:65:bc:cc:cb:5b:79:
0a:98:57:6f:03:30:22:8b:3d:2b:47:7c:2d:3a:7b:ec:de:ef:
c7:c8:d8:ca:be:41:2b:8a:4b:9f:4e:d7:13:e3:b4:38:66:0c:
99:32:e8:be:de:c4:89:45:42:54:a6:3a:9a:05:43:d3:ba:52:
09:db:46:8a:19:a8:d1:f7:04:1d:8b:f8:5b:13:67:d1:4b:1c:
13:10:83:5d:5d:b5:8d:36:5b:3e:6c:43:f7:11:34:41:55:95:
ab:89:7a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:55 2025 by rpki-client