
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
File: Q2TnsO7yBINcffKon2DAK-HYmt0.mft (raw, json)
Hash identifier: zASb4xLHw1JAGUjuzhudkBY5tsatNG5j2G5dnDMsB84=
Subject key identifier: 3C:8E:0E:0D:19:77:16:8A:5A:1C:F9:C0:71:2B:24:6C:12:FF:ED:59
Authority key identifier: 43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD
Certificate issuer: /CN=4364e7b0eef204835c7df2a89f60c02be1d89add
Certificate serial: 0199FB0ED57DAB72FB0AC25E149EBF627D2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
Manifest number: 0120
Signing time: Sun 19 Oct 2025 06:01:17 +0000
Manifest this update: Sun 19 Oct 2025 06:01:17 +0000
Manifest next update: Mon 20 Oct 2025 06:01:17 +0000
Files and hashes: 1: 4Lqe88CYtrJZ1_QwsLbbBZVtRAc.roa (hash: 4DmhBXf2oC0XIM1RLi3zAk7AYqn+M5oHIj926WSgGgs=)
2: Q2TnsO7yBINcffKon2DAK-HYmt0.crl (hash: 0mXEAo3b0KI2wAXtcLBrdzlmToirQO3ZS7WubEt9UFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:d5:7d:ab:72:fb:0a:c2:5e:14:9e:bf:62:7d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4364e7b0eef204835c7df2a89f60c02be1d89add
Validity
Not Before: Oct 19 06:01:17 2025 GMT
Not After : Oct 20 06:01:17 2025 GMT
Subject: CN=3c8e0e0d1977168a5a1cf9c0712b246c12ffed59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:28:0b:72:48:a7:64:7e:76:15:a4:f4:3c:4c:
4a:63:62:9b:ca:b1:99:61:8c:9d:c2:5b:47:aa:bd:
eb:8a:80:eb:9c:bb:f9:52:29:b1:cd:8d:67:c8:22:
c9:d5:81:d4:7f:c4:96:e7:38:19:a1:9e:72:6a:40:
42:d5:05:18:14:9e:c1:b6:42:66:1c:e5:17:1f:d4:
d2:6e:5b:87:8e:9d:1b:5a:8e:8b:75:01:22:95:c7:
b3:f1:31:21:31:5e:ab:ad:67:13:89:fb:ce:1b:c0:
db:94:8b:ce:95:1e:fb:1a:17:ef:59:10:22:d9:e0:
f3:7e:36:24:5d:54:2d:c0:7a:eb:4c:72:1a:f0:53:
43:62:3f:10:03:3a:b1:f9:d9:a2:9a:4f:37:7f:ef:
a5:05:63:dd:8f:6e:e3:de:0b:82:96:ad:b7:b5:fc:
76:ea:e5:9d:e5:1e:1e:ee:89:f5:81:6f:96:c9:8d:
eb:18:a4:be:d2:d8:3f:5b:de:3b:90:8e:a6:a2:c9:
db:ce:d7:83:21:07:7f:49:2a:d1:2c:cb:72:a7:b6:
00:34:af:44:81:cd:49:5d:ab:3f:aa:b8:c5:ad:63:
03:f3:ba:50:a0:53:9e:f8:a6:a2:b5:36:db:7d:cb:
a9:d1:75:40:83:78:4d:6d:f3:f3:a2:0a:23:33:a7:
7c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:8E:0E:0D:19:77:16:8A:5A:1C:F9:C0:71:2B:24:6C:12:FF:ED:59
X509v3 Authority Key Identifier:
keyid:43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:5d:f5:ac:95:65:15:7c:ff:01:47:4d:34:ec:ed:97:c2:4b:
80:5c:e8:9d:52:33:4c:20:54:d6:d3:98:85:ec:9b:14:5c:3d:
cc:bf:b9:de:af:84:58:68:05:a1:27:02:1e:89:a7:24:db:10:
0e:f7:b6:52:07:1a:17:aa:c7:f8:69:20:17:4a:1d:f5:44:83:
e5:cd:4a:80:7e:c9:98:28:dd:b0:b7:1d:0b:d8:90:ae:6a:38:
17:9f:7a:0c:c1:b2:b5:27:73:e7:16:2b:8a:6d:c8:1e:4e:dc:
29:ef:8b:ff:ea:bf:b1:43:54:46:71:79:e3:47:a9:e0:0c:33:
30:d0:5b:c1:35:32:4c:d0:a0:f5:dc:35:ec:06:c0:b9:af:46:
da:64:df:94:42:b5:f7:05:94:45:e6:38:fb:f2:73:5b:9f:47:
fa:cb:b3:27:09:57:92:06:ed:05:51:93:01:4a:ac:6b:d8:ed:
ea:63:7b:5a:63:29:6f:78:e7:78:de:db:75:42:b5:29:a2:bf:
00:ae:61:5e:b1:69:ee:a5:ce:dd:75:f4:d4:30:d1:2f:62:78:
50:8c:63:fc:cd:60:54:fc:e3:99:70:04:04:ed:e8:dd:db:86:
5d:71:2f:63:c2:0b:e4:8c:01:73:ba:5c:3d:7f:f7:97:f9:0f:
93:af:bf:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:42 2025 by rpki-client