Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
File: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft (raw, json)
Hash identifier: Mg8PBp8W0V4BbNBXJNMWcuL2xKBvTHaiYBrbafxGejc=
Subject key identifier: CC:43:FB:FD:92:DA:84:B2:C9:C7:80:E0:A4:1F:0A:30:8F:C4:1A:4C
Authority key identifier: 43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
Certificate issuer: /CN=43cf416193a1c2ed3056b647e5a46503148e3824
Certificate serial: 0199FC8F3B2695820DC4366E1E3376738509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
Manifest number: 07A2
Signing time: Sun 19 Oct 2025 13:01:09 +0000
Manifest this update: Sun 19 Oct 2025 13:01:09 +0000
Manifest next update: Mon 20 Oct 2025 13:01:09 +0000
Files and hashes: 1: EVfs3Ty5us2kONM9lNbKxeOpQy4.roa (hash: XNAy20rJW1bN/SCZtyAydEWkC3qMnBorsPnV2qCqZ6A=)
2: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl (hash: 2NIuKJhtR3WJYFZB5llo7rpbxcs6j9HrhZDQq5em0o0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:3b:26:95:82:0d:c4:36:6e:1e:33:76:73:85:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43cf416193a1c2ed3056b647e5a46503148e3824
Validity
Not Before: Oct 19 13:01:09 2025 GMT
Not After : Oct 20 13:01:09 2025 GMT
Subject: CN=cc43fbfd92da84b2c9c780e0a41f0a308fc41a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bb:6d:95:82:dc:42:32:4a:ae:4f:d9:5a:1d:
09:1e:03:b6:f8:30:b2:38:04:40:4f:da:6b:c7:1c:
a7:f8:24:e4:80:54:c9:5b:cf:b7:61:26:10:bb:24:
47:bd:92:de:72:91:ce:f7:9f:97:eb:7d:3f:59:b5:
d7:d1:c7:97:19:8d:ce:4b:03:b9:06:80:b7:47:a4:
8c:89:10:03:2e:f3:05:56:eb:84:81:98:2e:1f:73:
b0:66:1f:14:d9:43:c9:89:b9:e7:99:f8:e4:e3:d2:
fa:71:f6:bf:7c:9c:82:84:33:18:81:1f:3d:2a:da:
3d:8a:84:96:79:3e:c7:bc:f9:af:2d:0f:6c:4e:c6:
cc:85:4c:30:d2:56:77:fd:d2:74:e1:ab:b5:08:4b:
d0:4c:dd:c9:4b:b6:c9:3a:dd:74:dd:74:88:88:0e:
fb:45:d2:0f:81:b0:2e:b8:bb:bc:2b:51:c6:98:38:
0d:bb:75:b3:22:9e:57:1e:59:1b:8f:24:ff:8d:4e:
af:65:58:9a:81:ae:38:b9:13:c2:10:c4:6a:36:c6:
7d:bf:81:1e:0c:a0:b7:8c:8f:8b:f2:f3:bd:91:52:
0d:c0:a6:da:21:89:10:fb:36:44:89:ed:b3:5a:b1:
7a:07:8b:27:eb:6c:62:3c:67:54:2e:ca:07:83:39:
98:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:43:FB:FD:92:DA:84:B2:C9:C7:80:E0:A4:1F:0A:30:8F:C4:1A:4C
X509v3 Authority Key Identifier:
keyid:43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:25:8d:56:1e:db:b8:85:50:37:93:28:d8:1c:d6:3c:ae:df:
4a:41:89:9c:82:2a:4a:d8:cf:99:20:63:34:ad:78:98:97:83:
a4:3e:f4:06:af:d5:48:46:a1:53:e7:da:ff:b5:d1:45:77:e8:
7b:26:3d:6f:7b:20:da:6a:ba:9f:95:f4:09:03:bf:d0:79:da:
33:07:ae:35:fc:25:f1:ce:97:df:ab:61:a3:e6:c8:bf:62:f0:
be:8c:f8:24:c7:e5:ff:61:23:4a:67:a8:04:73:91:e6:49:3c:
a5:b4:78:d3:21:be:a7:ab:88:86:7d:8a:f4:2a:8d:84:d9:f2:
22:d2:29:eb:d4:c6:9d:55:12:a4:55:e9:89:6e:55:34:7a:da:
54:68:5c:84:0f:e0:04:34:6e:ca:89:ca:63:54:f9:cd:35:56:
7d:17:12:97:53:60:28:18:b4:00:66:47:d5:7f:e0:d8:8b:f7:
ba:00:31:fc:c0:fc:94:0a:3c:14:8b:cc:23:3e:92:90:ad:c0:
c2:e2:77:d0:05:e3:6c:0e:8e:f3:95:ab:10:51:93:f6:21:d6:
6e:58:ca:f8:fd:1a:e3:c7:7f:40:8d:cf:da:f3:fd:10:23:d2:
37:c6:f5:c7:49:7c:db:cd:47:60:f4:30:50:33:6a:e5:9f:84:
2c:11:8e:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:42 2025 by rpki-client