Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
File: q22oNLMssSxL2uM_Zy80jZg_MXY.mft (raw, json)
Hash identifier: 1QDfxJZ8Xw7CvMBgOfkchv8QFlUCNdTBFvD6NjXe7Zc=
Subject key identifier: 0B:59:2E:8A:52:DA:4F:DE:98:BB:DC:E9:34:9C:1D:29:86:04:7F:95
Authority key identifier: AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
Certificate issuer: /CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Certificate serial: 0199FC58D3403E551C503EE1B7455744DFBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
Manifest number: 0F4A
Signing time: Sun 19 Oct 2025 12:01:43 +0000
Manifest this update: Sun 19 Oct 2025 12:01:43 +0000
Manifest next update: Mon 20 Oct 2025 12:01:43 +0000
Files and hashes: 1: evpxyC_xQr6-9_i5vhF3SSD60QY.roa (hash: F+Lkz2iLknBGekmgWZevszL+qAh6hnFUDMady9RqMNg=)
2: q22oNLMssSxL2uM_Zy80jZg_MXY.crl (hash: Wl3zIudEM0blM8Hzh5lG+SWW5zVootxQ9/zP1HWMf10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:d3:40:3e:55:1c:50:3e:e1:b7:45:57:44:df:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Validity
Not Before: Oct 19 12:01:43 2025 GMT
Not After : Oct 20 12:01:43 2025 GMT
Subject: CN=0b592e8a52da4fde98bbdce9349c1d2986047f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b4:6e:30:b4:1d:29:69:73:d3:ee:e9:c2:4b:
19:8b:52:14:81:d3:2b:ed:79:2b:85:51:cc:cf:f1:
21:fc:5c:e7:62:f3:7d:fc:b2:b0:6e:a1:a3:e7:f1:
a4:52:6f:1c:ff:35:b4:20:e6:3c:2e:c3:5d:35:fa:
8b:59:d6:aa:6e:09:1d:dd:4d:56:c5:fa:95:72:b1:
2c:7e:a4:c8:30:3b:5c:88:29:19:8e:00:6f:84:90:
66:d7:82:3d:b9:d2:84:4f:6f:ef:48:6d:2b:f2:43:
93:84:21:8c:9c:39:ce:25:42:e0:f3:f6:72:a1:6c:
da:42:84:79:1a:9f:44:de:7d:be:9b:f4:d7:d7:97:
08:39:12:e8:d9:ce:cd:0e:23:72:dc:fb:5b:06:8a:
1f:32:a3:60:fc:ae:37:8c:3e:90:bd:e3:c4:80:11:
50:2b:c2:55:7a:48:35:c6:02:6f:d2:0b:94:9e:80:
49:2e:92:c8:00:5a:78:85:ff:31:c4:b9:12:17:37:
a7:d3:39:f6:2a:4e:ec:56:02:e6:86:3f:d4:22:8e:
f9:16:0a:ef:58:38:5d:ef:1d:99:37:1e:73:0b:7b:
b1:25:75:8a:19:42:51:1d:b8:6c:a3:21:5c:88:11:
69:18:46:55:8f:2f:5b:ed:02:5d:50:aa:61:6a:28:
b4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:59:2E:8A:52:DA:4F:DE:98:BB:DC:E9:34:9C:1D:29:86:04:7F:95
X509v3 Authority Key Identifier:
keyid:AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:47:77:f6:0c:fa:88:7a:27:1d:ed:2e:b6:47:dc:96:9d:d7:
e6:10:10:2e:24:f5:a1:11:6b:47:5e:c8:73:14:b8:9e:db:12:
82:78:57:29:ba:f1:9d:d9:fa:47:02:1f:41:74:23:e4:18:a7:
a6:73:c2:31:8c:c5:dd:62:f3:cc:b2:7b:0e:b3:91:37:fd:c7:
66:2b:ea:1d:f2:e0:3e:48:c3:ea:50:60:1f:e3:f1:7c:99:ed:
59:46:ad:0a:cb:da:83:5b:48:00:83:03:5f:c7:44:ea:b3:3c:
23:50:f9:4f:43:8c:2a:f7:5f:bd:77:55:51:39:15:7b:ad:40:
c9:64:b0:f4:5f:4b:34:95:59:de:f1:13:81:95:2b:9a:80:1d:
03:8e:02:55:7d:10:94:64:c6:37:e9:7f:58:be:57:0a:43:fa:
21:c1:50:56:ba:48:98:f4:d3:49:72:f0:e5:ae:b7:e4:85:08:
0d:8e:43:cc:32:ff:19:99:e1:b2:47:ee:80:97:0d:ec:15:99:
f7:5b:36:26:be:c3:f2:d5:be:35:1f:19:e3:a8:61:21:59:dc:
99:10:59:a6:59:35:32:4b:ab:76:c0:db:05:d4:52:21:a0:44:
72:bf:9f:7d:20:a9:e5:db:a0:73:b5:9a:ea:7e:62:db:4a:a4:
34:bd:25:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:37:32 2025 by rpki-client