Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
File: qK9MCjctAUVV99TXyJz5lvBRQvU.mft (raw, json)
Hash identifier: Z9VUcrLnSxxbR12JasaNnrEyNvFSBKM/UcJXRFNWWTk=
Subject key identifier: 91:A9:E0:A4:EC:31:DB:27:5B:B8:28:30:BA:B3:F4:00:1A:15:05:77
Authority key identifier: A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5
Certificate issuer: /CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
Certificate serial: 019A71B835E2485EFDB2D9821837C5AECF04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
Manifest number: 04B2
Signing time: Tue 11 Nov 2025 07:01:28 +0000
Manifest this update: Tue 11 Nov 2025 07:01:28 +0000
Manifest next update: Wed 12 Nov 2025 07:01:28 +0000
Files and hashes: 1: qK9MCjctAUVV99TXyJz5lvBRQvU.crl (hash: EV5KjfGAfZ7kJLFt5VKJaKmVbqzmbTXnoKNgBC2OZaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:35:e2:48:5e:fd:b2:d9:82:18:37:c5:ae:cf:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
Validity
Not Before: Nov 11 07:01:28 2025 GMT
Not After : Nov 12 07:01:28 2025 GMT
Subject: CN=91a9e0a4ec31db275bb82830bab3f4001a150577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:33:4b:d5:a8:39:97:2a:c9:6b:4d:3b:12:
a1:4d:2e:61:65:95:fe:7b:84:91:93:e6:81:b3:28:
32:b5:e0:21:a8:90:da:64:ae:23:b0:f1:6d:66:ae:
a8:64:f6:26:33:a6:85:8b:81:17:52:36:7f:a9:eb:
62:76:8c:b2:4e:c0:a1:9a:5a:60:26:10:ae:b4:4b:
62:f6:b7:6f:c1:b5:cd:b0:91:50:9e:b5:6a:c8:76:
28:ca:85:72:1d:fa:13:b1:f2:77:be:a4:45:11:fa:
c5:07:4f:1c:79:9a:80:2b:ad:8a:c2:76:ba:94:d3:
20:e5:4c:ef:d9:0d:03:17:05:0d:82:f8:1c:9a:37:
23:82:12:a2:d9:34:9e:b9:5c:82:22:7d:29:72:5c:
13:f7:c4:c0:b3:e2:f1:4f:63:88:40:7c:5b:74:9f:
43:87:57:e9:a7:13:56:2a:86:e6:a5:33:e0:c0:18:
61:a8:c5:a5:a1:b7:7c:a0:97:da:9e:95:59:74:e3:
c7:1d:47:1b:b8:b3:7c:df:15:9e:c3:91:64:1e:10:
3e:26:1d:27:8e:97:72:2a:0d:e1:30:bb:5d:a1:52:
28:c0:36:26:cd:23:16:64:fb:1c:62:83:6d:93:61:
3c:41:1d:a9:23:0f:08:34:2d:55:6e:eb:0c:59:79:
17:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A9:E0:A4:EC:31:DB:27:5B:B8:28:30:BA:B3:F4:00:1A:15:05:77
X509v3 Authority Key Identifier:
keyid:A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:b9:21:88:de:09:2a:cf:29:cf:11:71:ee:a8:d9:2f:e7:9e:
42:53:ec:7b:91:92:53:39:d4:9a:af:d3:76:7d:23:c0:5f:1d:
c3:9c:d1:57:2d:c3:a5:69:a0:ea:63:86:d9:37:6f:f1:95:4f:
85:41:a1:cc:74:b7:47:f0:01:27:be:6e:58:12:b0:fc:02:02:
25:2d:b3:8b:9c:c9:4a:93:b9:93:3d:e4:5a:24:40:f4:18:50:
1f:89:8c:c9:55:3a:af:03:01:6e:d1:7a:63:27:f8:8e:7b:99:
20:03:1d:b0:01:dc:fc:8d:13:74:8a:f2:d9:49:0b:85:fa:d0:
cf:31:a0:46:6d:2d:c9:e4:b2:aa:82:b7:e3:ba:a3:3e:11:6a:
7e:fb:0d:cb:8c:54:db:d9:87:be:d2:92:6c:cd:c8:37:5d:28:
c5:98:e2:2e:8a:64:ed:ab:f0:4f:94:58:9a:66:c1:c9:15:11:
94:52:2b:28:05:a8:ab:b9:f4:cd:5d:2d:c8:c3:33:ad:22:83:
c2:19:17:45:c7:f4:c7:cd:b1:7f:07:45:63:bd:1c:8c:e1:3f:
16:88:c2:22:4d:12:cb:a6:e3:6d:45:8c:1c:2b:b4:13:a3:5e:
f9:08:9d:9f:5c:a6:00:fb:69:2b:84:de:ed:9c:bb:a6:f3:7b:
68:ef:99:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:48 2025 by rpki-client