Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
File: 2QqBMQKSV7_3YURI5va1A8Ersp0.mft (raw, json)
Hash identifier: hTJ8LCXeDYqs6z2ZLko2C7BNxZQHpBhCe5mUiKfowVM=
Subject key identifier: C5:A3:EA:80:0C:7F:1B:9F:36:ED:98:E6:CA:39:A1:E5:BA:75:E3:95
Authority key identifier: D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D
Certificate issuer: /CN=d90a8131029257bff7614448e6f6b503c12bb29d
Certificate serial: 0199FAD82E4AED56E8D4BF19ED41CD6A7D73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
Manifest number: 03B2
Signing time: Sun 19 Oct 2025 05:01:35 +0000
Manifest this update: Sun 19 Oct 2025 05:01:35 +0000
Manifest next update: Mon 20 Oct 2025 05:01:35 +0000
Files and hashes: 1: 2QqBMQKSV7_3YURI5va1A8Ersp0.crl (hash: KYTtt5RxSpcl3+9hCaPt90f7N8jyEP86bsdrFK91hv4=)
2: ktw-FkrMXPNswM8IraWY-5p7J3I.roa (hash: jzXeR9Bv5fkU8m0kPMqZ57dXqdxvNx+7MlrJIZfIQC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:2e:4a:ed:56:e8:d4:bf:19:ed:41:cd:6a:7d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90a8131029257bff7614448e6f6b503c12bb29d
Validity
Not Before: Oct 19 05:01:35 2025 GMT
Not After : Oct 20 05:01:35 2025 GMT
Subject: CN=c5a3ea800c7f1b9f36ed98e6ca39a1e5ba75e395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:20:75:5c:a3:39:6b:15:8b:72:99:dd:7a:
46:51:48:c5:7f:66:3e:b6:41:92:2b:92:4c:4e:76:
19:c9:66:63:a4:34:94:87:95:cd:22:dd:c9:eb:66:
64:19:c2:56:45:fe:c2:48:64:60:77:b7:58:81:a0:
2d:0e:b1:3d:bf:34:e5:fd:63:02:4e:ba:1a:28:89:
43:d5:d2:ea:42:91:5a:9f:f5:3f:2c:d3:42:c5:6c:
e5:be:53:1e:4a:b6:29:63:af:e9:2f:a9:7b:b9:dd:
9a:c4:34:3a:f3:51:92:c7:c1:4d:73:97:b5:20:ea:
9c:09:21:fe:e2:e7:4f:d9:53:e0:82:17:39:80:b0:
d6:ee:84:cf:32:91:be:76:ff:b8:6f:12:93:92:e1:
89:04:cf:e9:ca:e4:10:c3:3b:d5:c8:da:4e:cb:f4:
53:31:13:8f:0e:11:bb:4f:cf:ce:05:bc:9e:3c:47:
da:1e:4f:17:1e:96:88:a5:86:eb:87:98:76:8f:92:
e6:cd:be:12:f3:df:f9:4f:18:9d:ef:97:a5:12:1f:
17:73:36:55:48:fe:f7:e1:94:6e:14:cf:0f:0c:7b:
51:98:d7:f0:49:55:9f:d7:61:b4:8c:fe:4c:41:3f:
d3:b6:f1:e5:ae:07:33:05:d4:ef:f9:12:b0:88:c8:
20:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A3:EA:80:0C:7F:1B:9F:36:ED:98:E6:CA:39:A1:E5:BA:75:E3:95
X509v3 Authority Key Identifier:
keyid:D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:f0:25:be:00:4b:2e:90:87:0c:6f:81:33:c7:1f:95:18:f5:
5e:cb:9b:3e:c2:ac:4a:f4:ae:69:56:b4:7a:02:a8:87:1b:c3:
3a:13:19:28:4a:f3:f1:fc:66:84:b4:6d:bd:fd:0d:22:22:61:
4a:6c:f7:8a:c5:94:1a:d1:cd:0b:67:eb:81:a1:71:3e:95:6a:
b6:c0:6e:e1:78:6f:d5:b7:a0:cb:72:d1:99:9c:98:31:80:20:
25:df:d1:bb:78:61:95:8d:f0:bf:0f:5b:ce:fe:bd:6f:81:84:
6c:aa:af:eb:be:f5:c1:99:96:db:0a:6d:5c:fe:04:a4:9b:d0:
6e:14:45:25:8a:93:c1:12:f7:6d:48:f4:38:48:21:64:e3:b7:
ae:91:08:69:c0:04:f3:87:7a:ad:47:87:52:3f:97:e6:d8:c3:
a2:fd:6f:d8:8c:bf:5c:36:19:a6:5d:b5:48:bd:2a:90:1f:cc:
6e:07:72:a0:3e:3e:44:b0:ec:fa:07:e8:5a:ac:0b:f5:c5:65:
dd:0e:42:54:d0:0b:0f:8a:1b:00:3b:50:da:75:69:c1:b9:9d:
09:de:5b:fe:8e:67:05:d8:8f:7f:4d:22:08:37:26:12:d4:d0:
bb:63:a5:07:2a:99:97:4a:d2:e5:5c:ba:08:19:7d:7d:b7:3f:
2b:7b:b0:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:09 2025 by rpki-client