Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
File: qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft (raw, json)
Hash identifier: ee4TqE23iKXHySQhPaO+K8pI58namuAyHkU8A5Z9TMA=
Subject key identifier: BA:F1:B8:DE:8D:37:CA:7E:0C:75:95:E1:A8:DE:77:63:4E:86:42:AD
Authority key identifier: A8:AB:7D:68:D6:9A:52:AA:50:C7:99:99:0B:92:18:41:9C:14:79:35
Certificate issuer: /CN=a8ab7d68d69a52aa50c799990b9218419c147935
Certificate serial: 0199228C9A17555BA79426E67715987858B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
Manifest number: 9C
Signing time: Sun 07 Sep 2025 05:01:03 +0000
Manifest this update: Sun 07 Sep 2025 05:01:03 +0000
Manifest next update: Mon 08 Sep 2025 05:01:03 +0000
Files and hashes: 1: QfAqEIrfh5GlI2pgvhMIdjzs2sM.roa (hash: dMt2CrdZCWtAfbu3OjW6t5fx1eVLHzaohbZwBE6VIR4=)
2: qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl (hash: TxsZtWkQ3xYvfwvzXiRyBz5Y8FYkvwpkbOmQ/Ww7onc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:9a:17:55:5b:a7:94:26:e6:77:15:98:78:58:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8ab7d68d69a52aa50c799990b9218419c147935
Validity
Not Before: Sep 7 05:01:03 2025 GMT
Not After : Sep 8 05:01:03 2025 GMT
Subject: CN=baf1b8de8d37ca7e0c7595e1a8de77634e8642ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d7:81:c9:8a:03:07:a7:d1:f5:c4:70:3f:f3:
e9:35:a9:31:8b:d8:7f:23:91:3a:19:4e:cb:3b:5f:
65:5f:7c:82:0e:f8:a1:32:63:7a:e3:60:d8:3f:85:
07:35:d9:f4:f7:aa:b1:9c:7c:48:52:2c:77:ca:bd:
95:e5:71:02:e8:f0:b3:78:fd:ce:39:59:e7:5b:eb:
e5:11:0d:39:46:9b:de:5f:c3:2f:32:fa:64:d0:1b:
e5:aa:55:81:10:1b:5b:01:55:8c:d2:a0:00:24:e4:
f6:95:16:06:25:1c:46:ca:64:e6:83:fe:95:f8:e8:
43:b1:02:74:38:bf:56:a5:74:d7:79:ca:1d:d6:50:
e3:87:06:61:8f:5b:55:67:4b:c2:53:ce:4d:77:0a:
82:34:f8:c9:2c:7a:fc:51:1b:55:0f:84:76:7f:a0:
38:7d:e1:61:4b:fa:99:91:ba:1a:08:bf:6e:6e:69:
d5:e3:b5:a9:d8:e4:d0:10:73:da:14:9c:4d:06:2f:
86:94:2a:fa:9c:be:8b:2e:4d:18:ce:71:5a:5a:b7:
f8:ef:bb:48:0d:ad:4c:63:4d:30:bf:c4:af:da:bc:
7d:06:de:9c:14:27:17:73:b1:f8:ac:f8:45:75:43:
60:03:66:97:b6:e5:dc:86:2e:b7:54:f1:81:0a:6c:
29:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F1:B8:DE:8D:37:CA:7E:0C:75:95:E1:A8:DE:77:63:4E:86:42:AD
X509v3 Authority Key Identifier:
keyid:A8:AB:7D:68:D6:9A:52:AA:50:C7:99:99:0B:92:18:41:9C:14:79:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:0f:78:bf:fd:e0:57:43:ad:41:df:99:06:64:88:67:4d:e8:
6c:9f:35:bf:8d:db:ee:e8:14:b4:60:8f:80:fb:41:ea:28:9e:
de:2c:1f:38:9d:33:0f:bd:af:19:3a:66:21:d1:e3:1c:94:b4:
f3:54:ad:da:b3:11:33:d4:ad:65:74:fd:ac:20:fb:db:ec:bc:
e6:33:12:93:cd:5d:90:cc:17:6d:cd:28:90:55:88:11:7c:21:
e5:d0:54:37:f0:ea:cc:14:17:4a:ee:ec:56:4d:17:c4:90:e3:
c0:ab:8f:d8:da:9c:d3:f4:82:d3:2f:16:cb:31:7b:dc:03:46:
c4:62:20:9e:a7:c4:a1:6e:4a:bb:dc:60:b7:23:f4:90:0c:b6:
74:d4:bc:96:3a:05:bd:1c:7c:88:bf:7b:67:d9:47:8d:fb:59:
78:7c:83:41:7d:4f:8d:7e:46:39:dd:db:0f:5b:ae:69:21:41:
db:f8:da:f1:d9:17:88:a8:49:8f:91:ea:fc:78:d2:2f:3e:32:
18:d1:bc:de:94:b3:92:21:33:03:06:10:08:48:96:0f:cb:2c:
a4:4c:15:6a:03:f0:c7:bb:7d:25:b2:cb:3d:36:6c:3f:5e:48:
94:13:45:13:e0:9f:e6:bc:00:42:ff:ed:b6:23:cf:0e:ff:d2:
84:20:3d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:49:44 2025 by rpki-client