Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
File: Q2TnsO7yBINcffKon2DAK-HYmt0.mft (raw, json)
Hash identifier: +Bm/ZVLzezCkHmBWFiOHfJUPU+ZQi/PheCA0BlRhrf4=
Subject key identifier: 98:39:91:35:31:92:CF:89:C8:B9:35:02:EE:A7:99:B8:C4:F6:14:CA
Authority key identifier: 43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD
Certificate issuer: /CN=4364e7b0eef204835c7df2a89f60c02be1d89add
Certificate serial: 0198D5834BD5818F2A2A4443850A6BE30844
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
Manifest number: 88
Signing time: Sat 23 Aug 2025 06:00:08 +0000
Manifest this update: Sat 23 Aug 2025 06:00:08 +0000
Manifest next update: Sun 24 Aug 2025 06:00:08 +0000
Files and hashes: 1: 4Lqe88CYtrJZ1_QwsLbbBZVtRAc.roa (hash: 4DmhBXf2oC0XIM1RLi3zAk7AYqn+M5oHIj926WSgGgs=)
2: Q2TnsO7yBINcffKon2DAK-HYmt0.crl (hash: icDCbAy0MhCkvxaZKnoeHG5mAfbWRgip5vTDcLEqBnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:4b:d5:81:8f:2a:2a:44:43:85:0a:6b:e3:08:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4364e7b0eef204835c7df2a89f60c02be1d89add
Validity
Not Before: Aug 23 06:00:08 2025 GMT
Not After : Aug 24 06:00:08 2025 GMT
Subject: CN=983991353192cf89c8b93502eea799b8c4f614ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1c:e6:d7:ae:47:a5:c8:3f:30:c4:18:23:df:
ee:c6:db:2c:3f:e4:aa:f1:df:82:85:47:33:56:ca:
4d:32:ad:c1:2d:1f:7f:08:dc:7d:c4:8d:9e:3d:a2:
6a:f8:4f:67:b8:ab:05:cf:b6:fb:f5:f7:5b:de:5f:
e2:6d:48:df:a0:12:fe:91:bc:e6:c6:8e:c2:27:a3:
da:aa:a7:91:89:a1:a6:50:db:9a:5d:d9:71:bc:53:
b2:6c:fd:21:c3:9c:05:96:4a:d6:3a:05:fa:af:0a:
b5:69:1c:b2:05:37:b9:0f:99:d9:e5:94:a9:0d:cd:
e3:7f:f9:46:83:76:2d:f2:b6:cc:4c:64:1b:67:9e:
65:3c:92:e9:da:00:fc:ad:b5:25:c9:22:86:51:54:
a0:21:71:7e:be:e3:83:bd:98:09:db:57:fa:0c:a7:
c9:bb:27:01:08:f2:21:13:93:2d:8f:04:eb:d1:93:
62:b1:e3:d9:39:0a:9a:ab:aa:0b:ba:5b:d8:bb:2b:
46:d4:a4:f0:50:4b:62:d5:c3:1c:6d:6a:3e:ff:a7:
c4:64:bb:ca:1c:a8:53:07:70:d9:f3:16:f4:fb:c6:
ca:15:e1:48:e5:b4:ce:d9:73:df:34:61:08:14:f6:
98:65:83:5c:de:59:30:12:71:44:8d:69:7e:0f:36:
1d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:39:91:35:31:92:CF:89:C8:B9:35:02:EE:A7:99:B8:C4:F6:14:CA
X509v3 Authority Key Identifier:
keyid:43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:2f:35:88:a7:68:87:b7:5e:a4:0f:41:eb:f9:d8:c8:e5:4b:
f7:8b:2c:87:84:4b:73:6f:02:84:c7:67:0e:c7:14:72:de:94:
01:b4:cd:a7:36:19:b2:c0:2c:05:d7:de:df:32:30:30:63:3b:
fe:b1:e5:96:89:62:fb:41:af:e6:11:ce:10:73:c1:62:23:d2:
7d:29:ff:5b:79:e2:f2:80:a2:9d:72:ff:5b:68:80:3e:6d:a7:
49:67:6f:d0:b3:71:09:5c:82:38:1d:f4:70:91:61:db:a2:fa:
ad:02:a5:0e:04:a2:a0:8c:1e:19:3c:6c:83:6c:d0:b2:69:cf:
ea:1d:5f:8a:9c:ee:91:fb:e5:34:ea:b6:05:77:2b:7c:84:5c:
b1:7a:ee:ad:96:d0:a0:62:c6:6b:78:3e:c7:e8:55:cf:32:e8:
42:5e:ad:3a:03:12:62:4c:4d:ae:0d:3f:61:c2:ef:81:09:6c:
72:22:01:ae:3c:0f:2a:8d:55:2d:b7:11:d8:2c:4d:fe:93:3e:
cb:81:16:a1:0b:1d:10:ea:5f:f7:8d:ba:1e:ff:dd:9c:e5:0d:
b6:2c:6e:b3:70:c5:04:9f:e5:05:5d:a2:c6:a1:c0:e0:bf:76:
0c:f0:98:e0:c1:24:5d:10:de:cc:65:2c:93:0c:b5:1d:a3:ae:
9d:be:ab:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:29:43 2025 by rpki-client