Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
File: Q57sdw36ZitOpkoCLus46D2q4ig.mft (raw, json)
Hash identifier: wC3zkDnrVQOFD3GoB0HoYZYLqV8+x4aG+MV6LykrO5k=
Subject key identifier: C7:E7:14:E2:9A:63:BE:FA:71:F8:0A:B2:3B:8F:51:C4:A9:C7:D1:42
Authority key identifier: 43:9E:EC:77:0D:FA:66:2B:4E:A6:4A:02:2E:EB:38:E8:3D:AA:E2:28
Certificate issuer: /CN=439eec770dfa662b4ea64a022eeb38e83daae228
Certificate serial: 019A22C0611046250906FDF9CE002A16D291
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
Manifest number: 088C
Signing time: Sun 26 Oct 2025 23:00:24 +0000
Manifest this update: Sun 26 Oct 2025 23:00:24 +0000
Manifest next update: Mon 27 Oct 2025 23:00:24 +0000
Files and hashes: 1: Q57sdw36ZitOpkoCLus46D2q4ig.crl (hash: MYfaYc9enFNaOdtJuuu7ulDmPAd9RrAl4pMyiHMpDwU=)
2: s-6iu0euq8mwctWc84gynbP4Gz8.roa (hash: ix817uYIHKTbd4XoAS5Yf6A1NltjL0SfzgZQTYUowKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:61:10:46:25:09:06:fd:f9:ce:00:2a:16:d2:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439eec770dfa662b4ea64a022eeb38e83daae228
Validity
Not Before: Oct 26 23:00:24 2025 GMT
Not After : Oct 27 23:00:24 2025 GMT
Subject: CN=c7e714e29a63befa71f80ab23b8f51c4a9c7d142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:57:6c:9c:83:6f:71:c2:ae:27:1e:27:2f:e1:
81:e8:1d:e0:14:7d:b0:d2:05:2a:2f:5a:49:dc:da:
03:3a:59:b8:94:60:e3:9c:b7:0a:d1:55:4f:d0:6c:
fe:e5:fc:c3:08:1d:0e:bc:b9:4d:5f:8d:eb:29:88:
32:54:c7:c8:dd:7c:d6:d7:4a:29:50:7a:8c:a2:39:
25:83:9c:ee:8c:ca:19:6c:e9:80:e6:5e:07:22:c3:
bc:00:b0:95:8e:a5:7f:df:68:a3:4a:3e:82:ee:65:
d3:5f:02:b4:e4:9e:1b:74:5d:4d:eb:d5:2a:0d:2a:
80:ea:fc:7b:c9:80:94:6b:df:d6:f7:35:fb:56:3e:
86:bd:bd:88:1e:64:ee:e6:3d:30:de:fa:08:60:7f:
7c:99:5b:1c:ed:dc:1a:21:54:bc:d5:d5:24:62:91:
d0:a0:7f:b0:20:cd:97:60:17:32:bd:3f:f5:c5:54:
83:c0:33:a3:56:42:ed:3d:68:c6:4e:7f:48:82:c7:
2c:c7:82:86:09:8c:94:a0:b3:f7:7a:32:61:00:38:
fc:7f:fe:29:fc:4c:07:c3:86:c1:b7:81:f2:09:bb:
1a:54:87:43:70:56:40:b4:f6:33:7b:6f:30:48:87:
a0:b2:3c:14:9d:3d:ad:ab:ae:33:4b:c1:7f:cd:49:
6b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E7:14:E2:9A:63:BE:FA:71:F8:0A:B2:3B:8F:51:C4:A9:C7:D1:42
X509v3 Authority Key Identifier:
keyid:43:9E:EC:77:0D:FA:66:2B:4E:A6:4A:02:2E:EB:38:E8:3D:AA:E2:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:a4:51:8d:e8:82:ea:80:0c:19:ce:f7:84:23:08:09:82:61:
33:b3:44:ab:96:37:5f:5c:89:4a:f6:a0:ea:ff:fd:fe:da:63:
48:a0:6e:d0:52:2d:d4:30:c3:d0:5c:ed:c6:c1:af:5e:04:b4:
b0:40:ec:41:b0:50:58:70:67:84:39:00:69:40:0d:22:d7:de:
fd:e5:e9:aa:a3:31:5c:07:71:84:09:0e:3b:fb:12:45:2a:2d:
37:10:c2:e4:ba:25:ee:3f:11:d7:91:3c:df:8c:01:d1:29:cc:
87:7f:eb:e2:f8:90:21:45:a3:26:a2:c4:82:5b:0e:32:af:54:
02:38:db:00:4e:f0:b7:fb:01:24:97:35:f2:ee:d7:e8:dc:95:
ab:53:ef:81:59:31:20:e5:45:fd:df:5d:a8:3c:f6:07:92:35:
70:2b:25:9c:dc:38:4c:99:32:3a:96:f8:74:b0:7f:e9:ba:30:
af:ec:e5:71:b3:58:52:ba:65:97:94:ca:ce:bf:83:27:e6:24:
a1:56:d1:25:01:4c:70:6c:b3:ca:e6:fc:98:83:5d:96:de:63:
18:3b:7f:ee:8e:97:6d:61:b4:ca:85:53:2f:65:37:26:8d:a9:
05:1c:21:0a:ad:01:2d:51:80:ba:29:23:c6:12:68:78:06:a2:
52:84:76:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:25:19 2025 by rpki-client