Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: rgPfRvrzMCj9Wxl0mwEakMUWVZWkuV9SyTpzNmWEl/k=
Subject key identifier: BC:62:88:D2:2A:7C:EE:CF:E7:0D:CC:2F:2F:BA:0B:03:6C:A0:1C:77
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 01992330D16764872357BC948E02053C2B5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 08:00:25 +0000
Manifest this update: Sun 07 Sep 2025 08:00:25 +0000
Manifest next update: Mon 08 Sep 2025 08:00:25 +0000
Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: BtfbDrqSjhmHgp9opCFkusVOgYkvwuQG5fwpvljA1Ys=)
2: tBcUVtef6rZ0kSSzgGFNQ0aGmXk.roa (hash: axGcXX34atfoTeccVW4HcK4Aoj164U97BqMvxhWQBsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:d1:67:64:87:23:57:bc:94:8e:02:05:3c:2b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Sep 7 08:00:25 2025 GMT
Not After : Sep 8 08:00:25 2025 GMT
Subject: CN=bc6288d22a7ceecfe70dcc2f2fba0b036ca01c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:51:b9:0d:fb:f1:f4:b9:8c:bf:9d:d5:b7:55:
74:fe:1b:c1:c1:01:e6:63:d6:e8:ed:69:4f:fa:8b:
a7:ac:f8:9b:f9:10:ea:f0:c7:51:50:16:6e:e5:a4:
05:42:57:90:69:e3:95:52:4e:df:4a:f1:a0:d5:2a:
38:d6:60:6d:99:98:de:d1:17:3c:31:55:8c:da:db:
03:af:f5:6a:c3:50:6c:77:33:ad:2a:f1:27:4b:63:
a9:7c:b8:9b:ed:df:ec:83:7a:3f:a2:ef:3f:d3:48:
28:33:7c:2d:ac:30:d2:8e:f5:15:6b:d6:90:c7:17:
5d:18:19:8a:f4:e8:24:cb:87:27:57:d2:a5:95:cc:
08:3e:6e:4c:20:a1:92:c5:8e:01:8b:37:d1:48:b1:
d0:59:a5:55:85:4d:82:16:a4:69:2e:c6:d1:49:94:
66:80:7c:78:32:c5:24:06:a4:32:2b:01:b8:60:25:
38:63:66:97:9f:96:b0:7b:38:86:a0:73:f1:33:d4:
19:1d:23:8e:7e:6e:77:8f:6a:8e:e8:80:11:0a:60:
66:cc:b2:14:8c:fa:19:0f:cd:6e:17:91:44:20:04:
66:d4:ef:55:93:2d:ce:d7:ff:78:bf:f6:f7:71:d9:
4d:b8:f1:4d:27:bd:e8:15:65:72:47:97:35:47:8e:
2a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:62:88:D2:2A:7C:EE:CF:E7:0D:CC:2F:2F:BA:0B:03:6C:A0:1C:77
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:87:25:9e:61:88:a9:5b:51:1b:1e:07:0f:77:1e:a5:eb:4f:
34:30:dd:59:68:e8:33:92:01:d7:7f:fd:c3:ff:10:58:27:aa:
9c:2d:06:44:4f:84:b2:e9:b8:01:a3:d8:13:a9:5c:bc:fe:c0:
a3:b6:70:20:9f:47:8d:85:ae:1e:3c:f4:7e:24:91:f5:a0:05:
c1:cf:62:c1:bd:6f:ae:2c:82:33:bf:b6:96:26:3d:28:8b:fc:
d5:b4:cd:b5:de:90:bd:74:84:33:b5:8a:39:c8:30:6d:4b:0c:
00:52:2f:d1:4c:95:fc:98:36:3d:68:fb:8d:a1:60:e6:ba:8e:
95:15:af:3e:f5:7a:fe:7c:38:92:9f:3d:70:55:fd:40:3d:ec:
11:e3:12:4c:cd:fc:88:ea:6a:82:2e:ee:b7:bf:af:50:10:8b:
46:ff:d1:81:4a:b6:10:98:1a:23:34:63:e2:77:6c:e2:b0:35:
5a:25:75:a3:15:e7:c3:56:4a:59:d9:a3:7e:1b:ce:46:c9:c0:
62:bc:75:2d:a8:f8:7a:a2:e2:55:7a:0b:c7:fe:78:e6:da:48:
56:3d:0c:4f:2e:75:a3:f9:19:0e:24:30:2c:b4:59:7a:0b:6b:
c7:3a:9c:16:f2:9c:a6:9f:26:7c:64:54:9b:e7:42:89:b4:29:
5d:77:23:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:55:30 2025 by rpki-client