Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft
File: qQ_wEQVOz-aKitx94mit5sCCdxE.mft (raw, json)
Hash identifier: e3gAZ13Dr8lnjzD2Zx1V4bd76z1qIYlHCkraESgD6bA=
Subject key identifier: 90:F5:ED:DF:04:91:22:FC:4F:00:E1:0E:46:E0:18:B2:09:20:0F:31
Authority key identifier: A9:0F:F0:11:05:4E:CF:E6:8A:8A:DC:7D:E2:68:AD:E6:C0:82:77:11
Certificate issuer: /CN=a90ff011054ecfe68a8adc7de268ade6c0827711
Certificate serial: 0199FBEBB7EEDD451FB0ED63C10E895AF05B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 10:02:33 +0000
Manifest this update: Sun 19 Oct 2025 10:02:33 +0000
Manifest next update: Mon 20 Oct 2025 10:02:33 +0000
Files and hashes: 1: qQ_wEQVOz-aKitx94mit5sCCdxE.crl (hash: VVm+VqL+zaR3PPjWNX4kJLdxxuVXBer3KUvj3WbeuK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:b7:ee:dd:45:1f:b0:ed:63:c1:0e:89:5a:f0:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90ff011054ecfe68a8adc7de268ade6c0827711
Validity
Not Before: Oct 19 10:02:33 2025 GMT
Not After : Oct 20 10:02:33 2025 GMT
Subject: CN=90f5eddf049122fc4f00e10e46e018b209200f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5a:fd:47:83:da:ea:10:a6:fd:ef:6b:d4:d0:
f7:51:13:13:37:95:6c:e2:67:c5:73:ef:08:57:93:
4c:68:53:09:fd:c9:8f:38:0e:bb:95:28:ea:00:80:
6f:1a:14:ff:ea:6c:f4:0f:05:fd:b0:e2:2e:e8:2a:
f1:a8:41:1c:19:f4:5a:67:26:94:1d:9f:83:30:d9:
09:de:ad:9b:07:0f:72:d9:71:57:52:47:30:e4:cc:
b4:74:53:c1:b5:f1:bf:28:04:be:c2:a7:59:dd:8a:
69:27:10:1a:4a:32:5c:23:44:f4:f0:0a:d5:2c:1f:
b4:ff:41:a8:4b:64:0e:f9:37:6c:7d:74:f7:2b:71:
0b:1d:32:dc:21:33:f2:9e:2c:ad:ba:32:c7:ec:bd:
d0:32:3c:25:a6:ff:bf:35:28:f8:ea:cf:d4:d2:b8:
a2:fd:9e:32:c5:5c:ae:dd:40:44:d3:77:81:11:c1:
dd:7b:0a:1d:e5:7c:1f:ff:5e:53:23:95:99:f4:2f:
ae:0a:54:93:d2:bb:99:27:24:2e:dd:f0:04:13:e0:
c8:c2:b1:6c:5f:ec:b3:d2:76:55:df:07:43:81:ce:
0e:ec:70:42:f9:a1:e1:47:71:8a:40:ed:30:f5:9b:
00:bf:8c:8a:ab:a6:1e:90:f0:7e:f8:76:87:42:dd:
6a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F5:ED:DF:04:91:22:FC:4F:00:E1:0E:46:E0:18:B2:09:20:0F:31
X509v3 Authority Key Identifier:
keyid:A9:0F:F0:11:05:4E:CF:E6:8A:8A:DC:7D:E2:68:AD:E6:C0:82:77:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:70:1d:07:68:46:0d:c6:6d:4e:68:77:5d:35:d0:3f:2d:f7:
a7:0e:8c:29:1b:15:31:f3:bf:92:38:cf:62:41:01:d2:f1:9f:
7b:af:27:e5:5d:52:dc:36:aa:f4:34:20:75:e7:db:6f:75:f7:
96:4f:d3:17:f0:7b:7e:fb:b6:14:e9:18:17:62:69:7c:c4:76:
29:ef:16:af:98:ed:b7:05:c6:56:a5:21:38:4a:ee:7e:8d:f3:
a9:e6:cb:38:3d:e3:95:d7:09:ff:f0:34:67:2d:b3:4d:82:30:
61:83:d0:a1:d8:44:d8:eb:89:9b:d6:d9:5a:1c:a4:ee:cd:48:
fc:1e:58:a9:20:a3:bd:af:a6:61:29:32:ce:2f:59:16:3d:e0:
82:ca:16:53:c2:c9:61:2c:bf:f3:7c:30:37:51:56:4f:ed:50:
9e:91:62:c4:32:fe:0a:9d:1e:5c:db:32:70:cf:ab:ab:08:c0:
79:0d:5e:11:57:59:ec:1c:30:6f:12:df:94:15:f9:8e:4f:fd:
33:d2:77:16:4f:1a:4a:5e:56:74:36:af:50:c7:e9:f3:6d:85:
78:4d:37:f0:29:5d:63:6c:3e:47:dd:6e:d6:e4:5e:ec:7a:c8:
d5:75:44:17:7e:eb:4e:20:85:4e:17:8b:b5:96:24:74:e4:1a:
87:8c:6d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:35 2025 by rpki-client