Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
File: qK9MCjctAUVV99TXyJz5lvBRQvU.mft (raw, json)
Hash identifier: B8t77l6ajPgsex4Thq3KKJQb0zwtKo2GGFbNNXDQJ4w=
Subject key identifier: 18:49:A4:80:46:DE:27:E2:E7:59:9D:76:6C:A1:F0:ED:A9:E1:21:F7
Authority key identifier: A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5
Certificate issuer: /CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
Certificate serial: 019921B204C05D8249A9B18B2E14B9DDEDAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
Manifest number: 0404
Signing time: Sun 07 Sep 2025 01:02:18 +0000
Manifest this update: Sun 07 Sep 2025 01:02:18 +0000
Manifest next update: Mon 08 Sep 2025 01:02:18 +0000
Files and hashes: 1: qK9MCjctAUVV99TXyJz5lvBRQvU.crl (hash: vOtJzSg8TIVna2U9a5rB+0iRY65HgxQ4nBKa+tpY4UU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:04:c0:5d:82:49:a9:b1:8b:2e:14:b9:dd:ed:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
Validity
Not Before: Sep 7 01:02:18 2025 GMT
Not After : Sep 8 01:02:18 2025 GMT
Subject: CN=1849a48046de27e2e7599d766ca1f0eda9e121f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:30:4a:3b:07:ad:6d:b7:b1:31:19:0f:14:87:
44:0c:60:4c:91:76:aa:dc:ed:ad:45:49:31:7b:01:
97:e5:12:17:38:1d:56:4a:7d:71:09:7f:d5:d7:b0:
82:14:52:df:43:19:12:49:7b:3e:5c:3e:90:65:6c:
be:62:b3:7d:fa:57:3a:3d:2d:7f:78:fb:b3:e2:44:
bb:67:91:84:70:91:26:4a:a3:c7:01:e3:34:25:ff:
ba:1a:ba:fd:d7:99:3a:f3:17:74:de:f2:a8:5f:bc:
b1:20:e0:75:14:26:a8:4e:90:bb:e5:a8:57:ea:84:
d6:a4:77:43:c3:0e:50:11:19:0c:13:87:0c:70:d4:
37:b5:cc:71:52:e5:d1:6d:ce:b2:5e:77:4a:5c:23:
4c:13:a3:af:9b:a6:5c:4f:03:98:9b:38:a0:f9:5b:
39:76:2c:0a:14:e0:b2:d1:c4:70:e1:5b:fc:bf:1b:
f9:2c:95:1d:8d:9a:f2:cd:2b:58:5f:20:b2:9f:a2:
da:62:e3:96:95:82:f8:c1:eb:99:c6:31:7b:a7:ac:
b9:8b:66:8e:d1:63:92:a3:26:2c:3f:92:e9:1d:6f:
18:23:8d:52:89:cc:b7:e3:a6:bf:cd:ad:4e:d0:56:
51:7d:e2:af:ec:87:d8:a2:eb:15:98:16:77:c6:08:
92:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:49:A4:80:46:DE:27:E2:E7:59:9D:76:6C:A1:F0:ED:A9:E1:21:F7
X509v3 Authority Key Identifier:
keyid:A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:67:d0:2f:08:17:ef:3f:88:5a:00:34:33:ed:fd:e3:d9:be:
5b:0f:72:30:4d:36:61:85:a9:cb:14:ca:6e:62:65:83:f3:23:
5d:0b:9a:8b:42:25:0c:db:30:63:31:7e:d9:93:19:6c:b6:38:
bc:13:c2:51:fb:bb:5f:ac:06:d8:c5:85:70:59:6a:0a:c5:19:
f6:13:ae:91:16:ac:7a:ad:b8:5b:a8:72:9f:8f:c1:c2:54:60:
b5:77:31:2b:c7:47:04:29:b0:a2:8c:b6:af:5b:b9:e9:1a:36:
92:67:c9:d2:84:7e:8c:59:83:8f:a2:65:68:61:b8:ab:fc:94:
2c:f4:21:4a:9a:d5:8c:fa:42:64:35:55:8b:93:c6:29:df:40:
15:6a:e1:4e:05:8d:9e:18:fe:63:82:4b:6d:14:1e:32:cc:0e:
4f:56:22:71:5b:14:a1:98:22:b0:84:6a:f1:ce:00:c5:93:fd:
7a:57:71:64:bd:e8:76:6d:5f:d3:92:3e:3d:2d:4c:c8:67:02:
47:98:72:aa:ca:b1:4a:45:5a:6f:65:95:58:21:66:f2:e2:3e:
a2:55:d7:2a:b2:54:ba:bf:b2:cc:39:d5:e7:f2:3e:ff:10:84:
78:fe:af:73:20:65:35:2b:7f:5b:95:ca:f4:ba:d7:a2:b6:f7:
95:58:64:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:25 2025 by rpki-client