Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: E6R8pIPK9WJlK5pUf4GhTZswhM0qbM7LJEb5NsXb+qw=
Subject key identifier: 6F:8E:42:5B:C3:B7:F2:F8:2D:E1:84:34:CC:A9:34:73:00:26:EF:72
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 0198D5F1CC10746920847051DFC2A19682E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 09CE
Signing time: Sat 23 Aug 2025 08:00:50 +0000
Manifest this update: Sat 23 Aug 2025 08:00:50 +0000
Manifest next update: Sun 24 Aug 2025 08:00:50 +0000
Files and hashes: 1: PTvQgS1qnjLwo9s4LdFb_Ohs-14.roa (hash: ISrdGe09G63GrIhvFHUR6KGbQ/gtnJbbuoeTtm56a1E=)
2: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: UaEJAiB+Mh6CXiDX4rVrEstK9O1OI6JGyzlPh0lqAxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:cc:10:74:69:20:84:70:51:df:c2:a1:96:82:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: Aug 23 08:00:50 2025 GMT
Not After : Aug 24 08:00:50 2025 GMT
Subject: CN=6f8e425bc3b7f2f82de18434cca934730026ef72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:06:54:b1:39:5b:8a:b2:c4:a5:02:5b:5a:f5:
96:dc:86:0e:86:f0:ed:97:7f:03:07:3a:ae:7b:79:
84:89:79:5f:4a:1c:d3:90:c0:8c:e5:cb:1a:dd:1e:
16:16:67:85:4e:e2:a1:a0:7f:f3:59:31:30:db:ed:
48:2a:53:19:ad:6d:a2:5e:06:73:92:18:68:00:f5:
62:b2:be:4f:74:dd:8a:8e:2e:1d:2a:44:96:fc:ae:
2a:3b:21:6e:12:86:75:31:ba:3c:76:ed:43:a3:79:
73:57:9d:0e:ac:8b:f2:3d:10:1c:45:c6:13:dc:b8:
d3:92:21:87:53:40:64:a4:85:be:d6:53:20:05:13:
de:e8:70:31:7a:c3:f9:6e:a0:6f:a0:ee:7f:ae:15:
69:e9:92:a7:61:bc:44:57:47:eb:e3:9b:0c:56:bc:
7f:e8:ac:b3:76:d5:41:cc:26:1e:dc:89:19:5a:ff:
5f:62:2d:43:68:65:41:09:64:49:c1:d5:03:2b:b0:
ab:cd:e4:d5:cb:2d:b6:2e:1b:a0:ad:02:76:26:ad:
79:32:c3:84:ea:8e:3b:6d:a5:42:04:b2:b8:63:c7:
1b:46:61:26:79:2d:59:e1:86:dc:a8:14:a3:1f:8d:
01:93:9e:4c:68:cc:e8:97:0f:7f:98:1b:ca:6d:00:
13:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8E:42:5B:C3:B7:F2:F8:2D:E1:84:34:CC:A9:34:73:00:26:EF:72
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:67:82:91:21:50:22:82:e6:72:48:fa:66:bc:48:93:11:20:
74:97:c8:d0:59:06:87:b5:45:4e:44:4a:cc:a1:44:5c:3b:20:
08:d2:70:74:34:ab:b7:29:aa:b7:f0:a0:13:ee:4f:7d:f7:fd:
86:08:ca:58:7c:df:c6:d9:f8:c1:b5:b5:60:2b:5e:14:dd:37:
7b:11:06:b4:d7:6a:19:cd:df:38:23:e2:7d:9d:8d:5f:15:c9:
1c:68:76:21:19:11:70:5d:b7:32:a4:c7:2d:90:a8:64:fa:d8:
d3:7e:5c:c6:6f:c5:2b:f4:c2:ae:f8:5f:12:95:d4:b0:3e:fc:
e9:3c:d4:6c:2b:86:91:fc:77:0d:10:b4:20:f3:c3:53:76:23:
d4:71:1f:68:de:f0:cb:d0:58:6c:c0:3e:72:ba:d8:9e:4f:d5:
d6:18:5e:91:f0:bb:65:87:75:22:74:5f:23:9f:e8:17:2a:c8:
e6:0b:10:12:b9:d3:9a:6b:79:69:42:09:e9:94:35:79:f1:56:
c7:2f:99:c1:24:8c:33:48:1f:0f:9e:df:23:82:b0:3a:3b:51:
27:a2:1c:f4:ac:20:52:a1:d6:dc:63:96:c7:5a:65:e6:04:41:
db:bf:fa:be:69:37:e8:e6:47:ce:a4:5c:be:27:f8:21:98:d3:
76:0e:59:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:39 2025 by rpki-client