Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier: uGH+idSrHASaeEjNEVAeSDSJDfpOCadeHUEchO2hPes=
Subject key identifier: C7:D7:E1:7D:3E:01:1B:3D:2F:64:C9:17:D7:9F:86:CD:CA:9A:72:3A
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial: 019A01B60A8DD8EC2D47C974A5328B578FF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number: 0CD1
Signing time: Mon 20 Oct 2025 13:01:38 +0000
Manifest this update: Mon 20 Oct 2025 13:01:38 +0000
Manifest next update: Tue 21 Oct 2025 13:01:38 +0000
Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: c+9sWkKcl4NQ+9FRoH9cR8SMkq1pCep7hcwMniSLo2I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b6:0a:8d:d8:ec:2d:47:c9:74:a5:32:8b:57:8f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Validity
Not Before: Oct 20 13:01:38 2025 GMT
Not After : Oct 21 13:01:38 2025 GMT
Subject: CN=c7d7e17d3e011b3d2f64c917d79f86cdca9a723a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f2:38:4d:b8:93:53:5b:10:ab:59:a8:a5:f0:
78:45:b4:30:63:da:e5:3a:15:b8:a3:9a:e6:bb:2b:
61:57:fe:41:30:78:c8:46:aa:d4:5a:66:33:17:4f:
50:ac:80:16:42:77:53:0b:41:2d:b4:6d:20:0b:15:
3f:bc:d1:d4:f5:35:75:fa:e3:6b:4b:43:b1:ce:5c:
0b:50:cb:fd:bf:7e:77:bf:b9:65:3d:f4:db:98:47:
23:a4:44:89:f6:76:60:d1:c1:89:75:ac:a3:43:fe:
ea:e9:69:d4:2c:31:b9:b6:08:cf:7c:85:76:9c:29:
82:a5:af:b5:64:08:8d:80:6c:21:7b:47:61:86:c7:
e3:91:80:f8:4a:cf:dd:2a:4e:65:01:58:de:aa:6c:
3d:de:73:bb:c9:54:c2:33:a8:0a:3e:20:4a:94:3c:
2b:6d:9f:82:4e:fe:dd:09:ee:04:22:0c:7c:7b:88:
98:87:ac:87:f2:fd:1e:03:b7:fe:fb:0c:18:06:14:
ce:0f:43:40:7b:8f:e4:11:f5:50:d7:7e:57:5d:50:
78:20:d9:be:52:d6:02:c7:00:1b:02:19:64:b0:0e:
95:a6:29:1d:dc:ec:78:3d:84:36:d3:f4:7c:97:68:
c2:ae:09:a7:a8:96:6d:c1:ec:b4:78:8f:85:05:9d:
a5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D7:E1:7D:3E:01:1B:3D:2F:64:C9:17:D7:9F:86:CD:CA:9A:72:3A
X509v3 Authority Key Identifier:
keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:3f:65:bc:19:d1:d6:4f:63:e6:8f:a5:27:2e:7f:89:e3:d9:
4f:38:9b:87:79:0a:3a:3f:ea:c4:8f:9e:0a:e4:75:a4:fb:71:
a6:d6:ad:60:f8:e0:ad:49:fb:67:d1:42:b6:5a:84:d6:40:28:
fa:55:55:7e:a4:6c:b9:bf:8b:a2:dd:bb:7d:a0:4d:fc:df:af:
c0:56:e4:2d:41:14:d5:b3:b2:d3:6e:b3:14:03:40:f0:21:3c:
25:82:fa:45:69:3f:00:f4:64:c3:f9:7a:2b:ef:a7:8a:c4:f2:
76:3f:d2:fe:b4:a2:f1:00:20:18:fa:b2:38:18:71:09:bc:74:
22:89:dd:bf:a3:e0:61:9d:50:05:27:6f:00:d7:99:41:5d:42:
44:b2:1b:43:12:72:90:83:6f:fe:61:32:f3:a7:a6:73:67:41:
4f:f4:06:08:12:03:14:6b:e8:ca:41:89:ea:c8:cd:00:ff:22:
73:30:da:95:3d:15:fa:b5:7a:d0:8d:5e:64:ac:54:ea:20:e6:
53:de:15:61:47:67:e9:59:21:89:67:5b:d9:f0:5d:62:92:94:
b7:2d:09:92:c0:64:c9:4b:e4:46:09:59:68:05:be:a4:d2:87:
ba:84:d6:d5:c1:ee:b4:36:b6:19:66:24:0d:f7:59:00:cd:09:
53:a0:fd:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:30:47 2025 by rpki-client