Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
File: Q7iP8e37ZyBmAwJncaquyEuLHrg.mft (raw, json)
Hash identifier: TfK5wM3OO+Rt7F6Xmudu3wcqO++T745HAaOjYB94nXA=
Subject key identifier: 9E:23:6B:F4:A0:BD:E8:01:CD:0E:77:C6:FD:D7:7A:0E:F8:16:73:18
Authority key identifier: 43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
Certificate issuer: /CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Certificate serial: 0199FAD7B9D79E8F59E128C10F452B094C5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
Manifest number: 0E91
Signing time: Sun 19 Oct 2025 05:01:05 +0000
Manifest this update: Sun 19 Oct 2025 05:01:05 +0000
Manifest next update: Mon 20 Oct 2025 05:01:05 +0000
Files and hashes: 1: Q7iP8e37ZyBmAwJncaquyEuLHrg.crl (hash: x8xK1VYYx3v0o1rxN2OMae3JVBXGKlSEC0oVN9hjjzk=)
2: gg-emnwJIGdBmpEHYh5OFvjnfmc.roa (hash: f0YF0XqFky78qYjbpn5730w15nHy84AldxyEdZxgOEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:b9:d7:9e:8f:59:e1:28:c1:0f:45:2b:09:4c:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Validity
Not Before: Oct 19 05:01:05 2025 GMT
Not After : Oct 20 05:01:05 2025 GMT
Subject: CN=9e236bf4a0bde801cd0e77c6fdd77a0ef8167318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8f:61:80:a9:d3:12:96:2f:09:d9:1a:52:b3:
43:c3:89:d9:cf:cc:69:3e:a0:5d:1e:d3:d7:95:36:
6d:86:61:5d:55:1e:65:df:8b:ce:3c:46:5d:1c:3e:
49:8c:91:a4:de:a0:0e:41:6b:00:02:85:74:9c:ff:
b4:4a:aa:75:93:04:b7:3a:d6:97:12:a1:11:63:84:
58:33:37:71:7b:90:8e:0d:8d:b1:7f:28:2f:6c:47:
ee:a8:d0:58:c1:5a:e4:f3:7b:d2:ea:f1:d3:30:de:
1b:15:8d:e9:2b:3b:62:fc:d0:8c:d2:90:2f:6e:9f:
4e:4b:c2:34:04:a7:92:01:a4:b8:2a:65:3c:04:dc:
87:2a:66:78:15:5c:0e:8b:96:ae:a5:4c:82:72:3b:
42:b7:19:ee:bd:7b:c2:47:a3:1c:2c:1a:83:9f:77:
1d:d2:90:28:2e:fa:57:1e:39:2e:df:a6:9d:57:b1:
c9:70:1a:5a:72:7f:a3:48:53:5c:73:9d:44:41:34:
2a:09:0b:38:87:36:c6:ec:99:5f:d9:fa:d0:f6:bb:
f8:9d:c3:7f:58:b2:64:a1:d9:40:8a:72:97:50:85:
e1:43:1d:88:a3:26:55:06:c7:79:97:0f:8a:01:e1:
68:13:cb:82:d7:dc:41:62:b1:1e:54:b5:f3:f1:4e:
58:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:23:6B:F4:A0:BD:E8:01:CD:0E:77:C6:FD:D7:7A:0E:F8:16:73:18
X509v3 Authority Key Identifier:
keyid:43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:9a:59:21:8f:3e:aa:c9:28:e9:82:7f:84:23:63:90:a6:ca:
0f:28:1a:43:a7:ca:a4:26:8c:8b:48:f0:b6:be:13:a7:f6:1c:
c1:b1:9a:bb:5b:d2:e4:1f:c2:4c:0a:7a:09:62:22:af:9f:fe:
fa:e7:74:10:df:07:c2:4a:61:16:71:ee:88:c6:98:88:bd:9e:
4d:27:41:55:cf:6e:f5:5c:d0:90:4d:b8:c2:06:eb:90:72:11:
3f:7d:ca:97:91:fd:c9:c3:e7:91:9e:c7:58:ec:23:66:c5:ad:
70:be:3c:9b:ab:92:b8:19:9c:1a:b7:7b:d9:7d:2d:f7:45:8f:
75:5b:c6:40:5f:9d:57:61:83:92:20:23:e7:11:99:de:6b:89:
a6:33:d3:66:7d:42:75:75:8a:03:49:56:fe:55:b0:4a:f5:7b:
32:fa:fd:12:a6:e3:48:65:ad:f4:58:46:38:8d:d3:73:9a:ce:
75:26:c1:76:80:66:95:ea:92:96:2f:60:b4:12:ef:52:b3:82:
5e:c1:ac:6e:64:dd:36:f9:ae:61:00:2d:15:c1:41:2d:10:99:
10:a1:d8:12:36:9a:85:21:8d:ce:a3:bf:61:85:d5:68:dd:8e:
18:2c:64:90:dc:45:4b:29:f4:4c:6c:29:c7:10:65:49:b1:08:
96:66:8e:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn617nXno9Z4SjBD0UrCUxbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzYjg4ZmYxZWRmYjY3MjA2NjAzMDI2NzcxYWFhZWM4NGI4
YjFlYjgwHhcNMjUxMDE5MDUwMTA1WhcNMjUxMDIwMDUwMTA1WjAzMTEwLwYDVQQD
Eyg5ZTIzNmJmNGEwYmRlODAxY2QwZTc3YzZmZGQ3N2EwZWY4MTY3MzE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqY9hgKnTEpYvCdkaUrNDw4nZz8xp
PqBdHtPXlTZthmFdVR5l34vOPEZdHD5JjJGk3qAOQWsAAoV0nP+0Sqp1kwS3OtaX
EqERY4RYMzdxe5CODY2xfygvbEfuqNBYwVrk83vS6vHTMN4bFY3pKzti/NCM0pAv
bp9OS8I0BKeSAaS4KmU8BNyHKmZ4FVwOi5aupUyCcjtCtxnuvXvCR6McLBqDn3cd
0pAoLvpXHjku36adV7HJcBpacn+jSFNcc51EQTQqCQs4hzbG7Jlf2frQ9rv4ncN/
WLJkodlAinKXUIXhQx2IoyZVBsd5lw+KAeFoE8uC19xBYrEeVLXz8U5YSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ4ja/SgvegBzQ53xv3Xeg74FnMYMB8GA1UdIwQY
MBaAFEO4j/Ht+2cgZgMCZ3GqrshLix64MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTdpUDhlMzdaeUJtQXdKbmNhcXV5RXVMSHJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9lNWM3ODMtNDM2ZS00NmU1LWI1MTQt
YzFiZTVkYzAxYmJlLzEvUTdpUDhlMzdaeUJtQXdKbmNhcXV5RXVMSHJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9lNWM3ODMtNDM2ZS00NmU1LWI1MTQtYzFiZTVkYzAxYmJl
LzEvUTdpUDhlMzdaeUJtQXdKbmNhcXV5RXVMSHJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATZpZIY8+
qsko6YJ/hCNjkKbKDygaQ6fKpCaMi0jwtr4Tp/YcwbGau1vS5B/CTAp6CWIir5/+
+ud0EN8HwkphFnHuiMaYiL2eTSdBVc9u9VzQkE24wgbrkHIRP33Kl5H9ycPnkZ7H
WOwjZsWtcL48m6uSuBmcGrd72X0t90WPdVvGQF+dV2GDkiAj5xGZ3muJpjPTZn1C
dXWKA0lW/lWwSvV7Mvr9EqbjSGWt9FhGOI3Tc5rOdSbBdoBmleqSli9gtBLvUrOC
XsGsbmTdNvmuYQAtFcFBLRCZEKHYEjaahSGNzqO/YYXVaN2OGCxkkNxFSyn0TGwp
xxBlSbEIlmaOwA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:49 2025 by rpki-client