Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
File: Q9JznRqU2rlXbiF80N-FdyBLIwA.mft (raw, json)
Hash identifier: nMaxPmd8xcgcfViuiFTT7TaJuzL5HR5jHhmkc9cIz3o=
Subject key identifier: 02:F3:51:25:3A:3F:AD:9B:8D:33:D5:10:25:BB:4C:77:AD:12:39:60
Authority key identifier: 43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
Certificate issuer: /CN=43d2739d1a94dab9576e217cd0df8577204b2300
Certificate serial: 0198D65F50C72F64808BE9DC54CDE37379CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
Manifest number: 03A1
Signing time: Sat 23 Aug 2025 10:00:27 +0000
Manifest this update: Sat 23 Aug 2025 10:00:27 +0000
Manifest next update: Sun 24 Aug 2025 10:00:27 +0000
Files and hashes: 1: Q9JznRqU2rlXbiF80N-FdyBLIwA.crl (hash: 5lQlS7FmugDUPNf+XM9WV3fn9jrXkEx/ORYRKaDFe0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:50:c7:2f:64:80:8b:e9:dc:54:cd:e3:73:79:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d2739d1a94dab9576e217cd0df8577204b2300
Validity
Not Before: Aug 23 10:00:27 2025 GMT
Not After : Aug 24 10:00:27 2025 GMT
Subject: CN=02f351253a3fad9b8d33d51025bb4c77ad123960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a2:96:a3:b0:0e:53:50:99:45:63:fe:31:23:
23:ea:70:7a:4e:7a:0a:b8:b0:e1:62:35:5e:5e:c9:
31:b2:29:a5:8c:b5:48:66:a6:df:93:7e:44:a4:1d:
74:fd:ef:35:87:cd:2c:a5:b9:74:60:2c:31:78:3f:
d1:4c:86:19:75:79:46:86:3b:82:a7:68:a2:05:08:
fc:b8:46:56:aa:36:fa:5b:b5:de:e0:90:5e:ba:fd:
10:9c:5b:6a:bb:51:2b:6d:94:5e:7a:cf:85:6d:8f:
dd:f9:01:03:8a:7d:c4:c0:95:9f:2c:cc:6d:cc:8e:
66:ef:1f:ec:c3:89:f6:24:42:99:a4:c0:d8:08:9d:
10:a5:50:96:20:9f:36:2b:b6:2b:35:b7:cd:72:b0:
db:54:d6:70:0c:49:95:7a:86:75:08:eb:ea:9a:80:
4d:35:ca:71:88:89:90:71:71:49:8d:cf:fc:78:5c:
46:bb:ca:6d:48:e7:54:0f:41:c4:b8:cc:6a:35:be:
65:a3:81:6f:1e:c3:83:d9:f2:7b:93:78:87:d6:36:
8b:02:36:74:68:27:be:b1:93:d6:ba:9d:e0:7a:7c:
ff:d2:a8:f6:98:17:9f:55:50:ea:4c:fd:59:73:03:
cf:67:e0:e4:21:91:22:56:6c:99:c9:22:1a:35:f4:
81:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F3:51:25:3A:3F:AD:9B:8D:33:D5:10:25:BB:4C:77:AD:12:39:60
X509v3 Authority Key Identifier:
keyid:43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:c4:32:bb:64:76:40:20:be:17:3e:3f:54:9f:79:6b:4d:1f:
9a:ae:f9:ff:7b:85:44:3b:be:14:de:88:68:b7:02:d7:da:e2:
23:ba:a7:e8:92:bb:73:5e:ef:e5:c1:aa:56:f2:30:fb:c0:97:
43:80:0f:64:dd:ea:1f:77:e3:25:79:8e:f9:b3:58:53:9d:38:
84:c1:55:53:27:1e:13:5a:7a:cd:a9:4c:01:a7:a5:49:45:c4:
9e:65:5f:60:48:ee:cc:26:b7:fb:80:1c:34:f5:6f:4f:6b:fc:
90:06:a0:c2:27:13:36:7c:a8:8d:ff:7d:05:c6:c1:7e:34:c7:
0c:6e:62:8b:46:d3:04:eb:92:63:8e:b5:b3:39:c8:53:76:c3:
db:8d:1b:dc:72:8c:07:04:8d:eb:2b:fa:49:5d:11:63:e4:1e:
71:5e:ad:08:84:e3:60:8c:7d:de:f8:1f:1e:69:29:44:a2:10:
4e:47:34:8c:89:78:f8:44:f0:31:56:2f:48:26:dc:1a:fc:a2:
21:aa:27:19:8b:34:7a:04:81:cd:c9:47:c5:cd:fc:e5:d2:d8:
06:df:1c:f7:f0:52:e1:ce:c4:28:e8:8a:11:f9:a9:90:71:f1:
a5:e1:c7:b6:cf:05:95:8f:2f:f7:31:35:11:25:30:7f:25:fb:
d6:69:bf:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:29:41 2025 by rpki-client