Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
File: Q9JznRqU2rlXbiF80N-FdyBLIwA.mft (raw, json)
Hash identifier: sa8MYCRE3sfyuPx3WSOcN6jDD6BeiKCmjkKTblw5yO8=
Subject key identifier: 54:FA:BB:6F:7E:32:BD:DD:C8:E5:84:C2:A7:14:7C:27:1A:EB:90:5E
Authority key identifier: 43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
Certificate issuer: /CN=43d2739d1a94dab9576e217cd0df8577204b2300
Certificate serial: 0199FBEB5A0877691B93343447494002DEAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
Manifest number: 0439
Signing time: Sun 19 Oct 2025 10:02:09 +0000
Manifest this update: Sun 19 Oct 2025 10:02:09 +0000
Manifest next update: Mon 20 Oct 2025 10:02:09 +0000
Files and hashes: 1: Q9JznRqU2rlXbiF80N-FdyBLIwA.crl (hash: vYYGBB1FPQvRPJ8LivWycqNDjsV9cs0P2Gp1k6i5yBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:5a:08:77:69:1b:93:34:34:47:49:40:02:de:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d2739d1a94dab9576e217cd0df8577204b2300
Validity
Not Before: Oct 19 10:02:09 2025 GMT
Not After : Oct 20 10:02:09 2025 GMT
Subject: CN=54fabb6f7e32bdddc8e584c2a7147c271aeb905e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c9:bb:b5:8d:84:d1:e0:80:db:9b:e7:8f:66:
65:a9:1c:8b:c2:ab:44:ab:77:31:14:e0:dc:0f:c0:
d8:18:66:21:a3:76:06:ad:82:64:d0:df:16:74:73:
cc:bb:91:83:ec:0a:af:87:2c:d0:67:e7:ed:af:71:
46:a2:22:74:39:4d:aa:55:2b:38:e2:7b:f2:bd:51:
cb:5f:6e:26:61:25:3d:af:64:e1:e2:3b:85:6b:08:
8b:0a:d0:62:44:10:c2:5f:c2:1d:37:8c:87:47:7b:
89:63:55:35:c1:45:94:40:8b:94:69:38:e6:ab:3f:
e5:8f:b6:6f:33:c6:83:b2:8e:fb:51:e1:d8:44:0a:
66:a8:4e:9c:a4:86:2d:df:99:9c:63:08:ca:73:93:
5f:04:4c:46:d3:ec:fc:30:7a:c6:a1:ca:40:c9:f7:
23:86:ea:ea:ec:fe:8a:7d:d4:20:66:e2:80:5b:3d:
0e:59:91:1b:a4:2b:af:95:c3:7c:bc:07:69:58:e8:
8c:b8:97:a2:32:ad:c5:80:f5:bf:76:39:2d:14:3d:
4d:f5:b3:28:c3:f9:1b:44:f7:a3:87:5c:3c:2f:6d:
2d:85:d6:e6:a4:3f:0a:40:ab:33:71:fd:02:11:db:
75:4c:c0:1b:29:dd:3f:ac:87:7a:4f:e8:7f:40:17:
41:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:FA:BB:6F:7E:32:BD:DD:C8:E5:84:C2:A7:14:7C:27:1A:EB:90:5E
X509v3 Authority Key Identifier:
keyid:43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:80:cd:62:b9:6c:01:f5:61:c2:bf:1a:cb:46:59:d2:94:a1:
c9:f2:1b:cc:37:b4:1a:72:06:0a:e6:49:aa:a3:0e:cd:73:ff:
1b:1f:ef:a2:c0:98:83:b8:62:61:95:d4:4a:1c:1e:13:2e:9e:
02:6f:29:f8:1d:0c:0f:c3:e0:21:3d:f2:3d:34:a2:e0:9a:a6:
8a:39:4f:ef:44:59:51:56:60:aa:d9:dd:b4:aa:f5:36:25:1e:
17:bf:1e:e5:58:65:c7:3e:19:3f:31:93:9d:f1:93:b6:f0:13:
bf:e7:cb:7e:67:1b:b7:e8:9b:ec:2f:e0:80:13:bf:1d:52:8a:
00:7f:8f:21:0e:17:41:bc:b7:cd:9a:94:98:29:a8:a8:b4:4c:
50:4f:1c:a3:a0:f0:6f:6a:c0:a3:84:23:7a:e8:6a:3d:ad:c1:
63:75:ff:27:7c:37:42:f6:d6:ab:6b:8d:7c:1d:ef:d5:0c:fe:
70:20:7c:a1:78:97:5d:71:ae:15:32:1c:10:3f:69:6b:94:b8:
62:6a:0e:90:6c:ee:c9:23:8a:a1:ff:e9:e9:a6:ba:b7:81:07:
7a:81:96:a3:87:3d:f4:9e:cb:b2:b0:d2:0d:b7:71:c8:a1:11:
49:83:fd:9a:6d:a6:4e:4b:e3:67:ec:03:cb:4d:fb:72:60:00:
56:56:5a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:58:58 2025 by rpki-client