Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
File: qF7VXxRNceZz5j9LdnDEE0TAlYA.mft (raw, json)
Hash identifier: gF4beBMiwN8/klFxbbEIQHQHfH9DnCh/aSulImQH774=
Subject key identifier: 61:7D:A7:3D:43:40:F7:B4:D4:2D:84:7F:32:E5:5F:C6:E3:31:A1:0A
Authority key identifier: A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80
Certificate issuer: /CN=a85ed55f144d71e673e63f4b7670c41344c09580
Certificate serial: 019922FAEFE684BD63D2BCD92E61D2B0BDEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
Manifest number: 01FF
Signing time: Sun 07 Sep 2025 07:01:34 +0000
Manifest this update: Sun 07 Sep 2025 07:01:34 +0000
Manifest next update: Mon 08 Sep 2025 07:01:34 +0000
Files and hashes: 1: cT2eGd63Px5rG_L6GRT2XCwHH8E.roa (hash: +Vm6cesMvrKle1O+NFaMGbBUxTSdI75W5YWzhqJGopE=)
2: qF7VXxRNceZz5j9LdnDEE0TAlYA.crl (hash: RFmZ/zwJb8zKz19bxKdTX0MjJmihDJKvhKoVk7QKeW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:ef:e6:84:bd:63:d2:bc:d9:2e:61:d2:b0:bd:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85ed55f144d71e673e63f4b7670c41344c09580
Validity
Not Before: Sep 7 07:01:34 2025 GMT
Not After : Sep 8 07:01:34 2025 GMT
Subject: CN=617da73d4340f7b4d42d847f32e55fc6e331a10a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:04:b7:80:fc:ce:5d:6a:f4:ca:5c:4d:39:36:
57:ab:f9:9b:91:ab:dc:d6:0c:bf:20:e1:94:c9:68:
d0:67:45:d1:b1:28:19:6f:fd:7d:5d:aa:80:f3:9e:
0c:09:67:b5:99:f7:04:f7:55:98:38:44:00:8f:0b:
15:02:f4:98:a1:7b:06:35:58:d5:b3:45:f4:eb:5f:
8c:27:1c:31:ae:52:c2:be:be:bc:da:17:c8:e8:e4:
4c:2e:ae:aa:da:5a:17:de:3f:3b:d7:0b:d4:d2:76:
89:c2:e4:40:d5:61:52:28:a1:6c:c2:b5:6d:19:0a:
78:27:9d:b3:65:f1:b4:c2:47:cd:ad:3b:98:43:f7:
9f:8a:f2:c7:95:de:a2:21:3d:34:21:82:82:0d:2b:
c8:57:a7:72:7a:18:de:a8:13:36:dc:4c:2e:e3:c8:
39:d4:5d:90:2a:99:ee:b4:1e:2e:7d:ef:bc:35:60:
f2:0d:52:cf:c1:77:17:a3:cf:d7:73:d9:c8:cd:9d:
87:0b:48:66:76:ac:fa:19:7f:ce:15:cd:54:ad:50:
4e:67:7b:7f:a7:5d:63:88:44:a2:e3:51:19:34:13:
f7:a0:3b:5e:74:6c:4b:81:68:8f:85:14:19:4e:00:
2a:31:0d:a4:26:6f:76:44:74:50:84:5c:fd:16:6b:
0f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:7D:A7:3D:43:40:F7:B4:D4:2D:84:7F:32:E5:5F:C6:E3:31:A1:0A
X509v3 Authority Key Identifier:
keyid:A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:5d:97:ab:ba:df:05:64:a4:95:32:23:e7:74:82:00:e3:44:
e8:b9:15:ed:04:38:2a:0c:c4:da:88:66:e6:e3:03:52:4b:56:
3d:b1:c1:05:6e:8d:fd:d2:93:f9:ca:fd:5d:f6:1e:ba:e2:72:
71:4e:6b:4c:0d:be:c4:d9:c4:51:68:6b:99:8c:97:3a:a3:d7:
b5:48:8d:68:2d:92:45:8a:c2:d4:d2:ac:6d:4d:9e:52:99:e9:
57:ca:77:17:49:fb:ba:2b:22:2b:68:ca:e1:b0:fc:7b:3a:33:
7f:30:8c:9b:bc:fa:4f:e0:c5:dd:ce:82:e9:db:92:e6:d9:69:
d2:58:f8:df:12:04:99:59:0c:31:a0:55:31:a0:1f:4c:a5:2f:
ce:36:8e:fc:2e:89:73:cc:90:df:ca:0d:7a:95:08:27:19:59:
0d:b1:2c:57:39:77:9b:d5:81:62:19:63:db:58:d7:be:c4:68:
bc:20:48:92:44:02:3e:ce:df:29:65:bf:64:f3:7c:bf:d6:9b:
f4:ee:e3:bf:66:27:f7:d9:40:89:5e:ce:21:28:e2:81:1b:25:
a4:74:90:1d:01:ca:6c:b0:01:81:e4:18:2b:0c:83:5a:b8:f7:
8a:7f:33:b8:c3:f9:5f:1b:40:31:ac:89:4c:0a:b9:61:2a:90:
93:08:05:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:34 2025 by rpki-client