Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
File: q33wfyEEN2kvd-7DRpuaSCuW0ao.mft (raw, json)
Hash identifier: cb7B9BgCXFrHeQRKWpnEbx5XeAnYHMCsW/nFo3QvPNM=
Subject key identifier: 3A:29:3D:61:EB:60:D7:39:FF:26:62:00:9A:6A:D6:86:B7:4B:F9:2D
Authority key identifier: AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
Certificate issuer: /CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Certificate serial: 0199FCFD9B1EEFCF4A156164BEDEFCF55E6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
Manifest number: 0677
Signing time: Sun 19 Oct 2025 15:01:42 +0000
Manifest this update: Sun 19 Oct 2025 15:01:42 +0000
Manifest next update: Mon 20 Oct 2025 15:01:42 +0000
Files and hashes: 1: q33wfyEEN2kvd-7DRpuaSCuW0ao.crl (hash: LiKD6xusTTLWFGpzYHCNfc7PDV2NP1aO8JCyqkZo8gM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:9b:1e:ef:cf:4a:15:61:64:be:de:fc:f5:5e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Validity
Not Before: Oct 19 15:01:42 2025 GMT
Not After : Oct 20 15:01:42 2025 GMT
Subject: CN=3a293d61eb60d739ff2662009a6ad686b74bf92d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:7d:9d:b0:60:d3:51:80:71:7c:f7:34:a9:b5:
be:9e:81:c6:0d:ad:d6:01:ae:43:eb:7a:78:31:83:
9f:bc:95:d7:1c:a1:cc:8f:8e:77:ab:0d:b2:7c:93:
39:8a:b0:de:0b:eb:40:67:cf:cc:bb:c2:71:6d:85:
72:9e:b5:b2:4a:60:57:07:51:bc:3c:39:24:76:e7:
84:c7:23:b9:43:6b:e1:33:0b:5f:7a:7d:b6:fd:f3:
39:e9:c6:ab:46:96:41:45:7a:26:e5:97:38:40:23:
d0:4d:20:13:1d:a0:76:02:87:0c:dc:29:e5:d3:49:
97:8f:eb:99:19:0c:91:6a:ae:ae:60:0b:a2:43:1c:
a2:47:ef:0c:65:a1:40:a4:2b:b1:58:8f:54:1e:c8:
3b:07:ae:2c:46:9d:f1:54:8a:dd:db:49:ab:a9:d9:
1e:a6:59:6b:22:ed:f2:98:e3:5b:7d:4d:e3:f2:c2:
83:13:27:ce:59:16:94:1d:11:22:09:26:62:58:35:
48:1f:fe:e3:f9:7b:5f:c2:42:68:d9:7d:c8:2b:44:
f6:47:97:38:6f:a0:e4:5e:97:c4:ae:97:f9:75:b6:
ee:97:39:f7:96:8d:c3:f7:f4:c3:57:2c:0d:bd:c7:
c3:d8:e5:d8:58:b4:78:6a:98:b0:36:f5:6d:49:61:
9d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:29:3D:61:EB:60:D7:39:FF:26:62:00:9A:6A:D6:86:B7:4B:F9:2D
X509v3 Authority Key Identifier:
keyid:AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:4a:4f:9c:4f:4b:c6:b4:0e:7b:d8:e5:4b:20:27:f0:d2:ae:
0d:bd:ed:99:4b:ff:9f:e8:27:1e:a3:64:04:d3:ba:ab:af:14:
38:3d:c9:9f:59:96:eb:35:e7:6c:08:43:0e:a0:a9:da:00:1b:
33:6f:e8:72:98:51:fa:b5:be:a6:53:71:26:4b:cb:a3:ef:60:
0f:46:90:cd:48:3d:36:f7:48:8f:91:cd:30:16:9e:dc:b2:39:
5f:f7:35:4f:e4:a1:23:67:3b:da:b5:e2:fd:03:97:ec:1a:7d:
b4:04:8e:08:59:48:88:d7:2c:1a:24:53:ef:5a:37:58:ce:1d:
6d:4a:ed:4b:8b:7e:d8:0e:6b:4b:61:4e:37:1d:5a:6d:62:69:
22:b1:96:82:fb:00:04:80:3e:3b:28:9a:54:14:59:d6:e2:b9:
5b:a7:1a:7f:24:ca:53:ff:19:77:d3:b4:ee:75:0d:02:34:d7:
aa:b1:77:0d:a9:19:57:35:50:d8:00:62:1c:4f:6b:0c:b0:2c:
15:4b:0e:14:26:53:ca:4b:ae:be:37:0e:3e:1f:38:76:cd:25:
34:84:b3:e7:93:09:f2:97:65:4f:03:5a:df:5d:92:3b:63:d8:
2c:47:b7:38:5a:a7:72:07:41:03:fc:56:68:42:53:15:e7:0b:
02:30:2a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:40 2025 by rpki-client