Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: v+phEIX2WdsLCdM3oJ2WFaWdo5f+TgDfQnhFKblKcuY=
Subject key identifier: 8D:31:51:EC:4F:29:BC:D8:65:6E:EE:05:86:27:AA:55:4F:1C:B4:AF
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 0199FCC66C77B6081F2728B5C4963C040F79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 10AA
Signing time: Sun 19 Oct 2025 14:01:26 +0000
Manifest this update: Sun 19 Oct 2025 14:01:26 +0000
Manifest next update: Mon 20 Oct 2025 14:01:26 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: t+M92HsbuEFR/Qilf2a7u8ALR8j7GjqI4yBKAfZN4iI=)
2: Ut4z4tImR83ncGrwpXNPaCBz4dc.roa (hash: x3Tb8uXmHgRhBdCjWUywrl5EoWV8hOlCverEGcV2UXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:6c:77:b6:08:1f:27:28:b5:c4:96:3c:04:0f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Oct 19 14:01:26 2025 GMT
Not After : Oct 20 14:01:26 2025 GMT
Subject: CN=8d3151ec4f29bcd8656eee058627aa554f1cb4af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:81:98:fa:8a:db:cd:0a:be:ff:54:06:4d:c1:
01:09:48:e3:94:83:09:00:ee:9f:bb:1c:ec:16:fc:
e1:ba:a7:4c:91:90:2f:54:69:e8:c2:c8:28:5c:1c:
3a:71:0b:c8:8b:a3:0a:71:b8:a1:e4:e5:e1:48:3c:
af:39:f7:a1:88:c4:c4:f6:39:a4:17:38:a7:3c:d1:
7f:37:6d:a4:03:49:ef:db:51:4b:95:0f:13:ae:98:
e0:4f:65:22:f8:99:b5:c7:d4:26:a8:c0:8c:f4:17:
c3:d6:bc:4e:35:62:d7:4f:ea:06:b6:f2:1c:f3:e7:
b2:92:33:d5:51:a7:76:ab:ff:e5:80:2c:c9:a2:56:
61:0e:6e:25:d8:1e:63:6a:8e:4b:cf:53:52:cc:c4:
4c:30:dd:7e:75:ba:5d:22:b3:9b:7c:b5:16:ae:58:
64:7d:fa:0a:54:f6:1e:fe:07:01:13:b0:32:45:71:
b8:74:eb:17:2f:a1:b8:8c:f4:4d:24:16:17:3f:c0:
85:c8:95:f3:be:54:55:76:5b:de:c8:6b:21:94:62:
04:29:d1:68:2a:3e:fc:bd:c2:f0:27:32:75:c2:62:
f2:a4:50:14:3c:12:0b:35:21:ff:e0:08:3b:24:4b:
57:34:05:91:c8:40:ec:29:6d:ca:1a:bb:99:50:6c:
e5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:31:51:EC:4F:29:BC:D8:65:6E:EE:05:86:27:AA:55:4F:1C:B4:AF
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:74:c5:79:a5:9e:c9:6b:3a:40:fa:ac:2d:57:50:3f:8a:9f:
01:05:11:54:1f:77:69:96:68:9f:af:f8:74:9e:3b:09:45:af:
7c:ba:08:f3:f4:05:0a:80:eb:ce:73:54:e9:b1:fc:b4:8a:23:
2c:b8:6e:94:4a:a9:3e:55:d4:a7:5b:15:62:51:41:55:2c:80:
2a:8a:ea:94:b2:b9:1d:37:b6:c9:7c:00:b1:e8:83:ac:d7:d5:
02:af:79:65:ac:d3:19:f0:e4:12:37:69:5a:07:e5:d6:b9:40:
7f:ce:c5:34:94:76:a8:50:47:e0:33:cc:17:22:d5:48:c6:06:
a1:f3:de:c5:78:85:fb:ac:dd:a3:ef:4a:ad:d6:c5:72:88:24:
13:4e:0b:44:d8:ea:07:44:6f:d0:c2:1b:a3:73:02:76:e1:a4:
c5:05:69:b6:b6:cb:bd:6f:a3:fc:7e:e7:20:33:16:1a:ef:57:
0e:f6:0c:80:09:18:b7:e3:3c:69:df:87:11:93:11:01:24:5d:
07:af:a1:e2:3d:f2:9a:ad:03:86:f3:02:76:e6:3e:4c:98:8a:
61:fb:e8:58:e8:90:c3:48:d1:39:c6:79:30:92:35:c5:14:46:
f9:e0:ea:70:56:cf:5c:56:0d:55:d9:7e:db:77:4b:6c:e8:62:
f3:2d:84:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:06:36 2025 by rpki-client