Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.mft
File: qQ2awu8R1UaTddbebGv3IRKeO3E.mft (raw, json)
Hash identifier: qrPnvm/W4l8Ye0XqGb1MFlDUyhmFkNUOO07Ld+4Xb5c=
Subject key identifier: 75:AE:E2:A1:9F:33:6F:F1:3E:8B:C2:5E:AA:AE:4F:D5:A2:02:30:76
Authority key identifier: A9:0D:9A:C2:EF:11:D5:46:93:75:D6:DE:6C:6B:F7:21:12:9E:3B:71
Certificate issuer: /CN=a90d9ac2ef11d5469375d6de6c6bf721129e3b71
Certificate serial: 01993424B2561B5319759D53AFD098C5F27D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.mft
Manifest number: 15BA
Signing time: Wed 10 Sep 2025 15:00:44 +0000
Manifest this update: Wed 10 Sep 2025 15:00:44 +0000
Manifest next update: Thu 11 Sep 2025 15:00:44 +0000
Files and hashes: 1: qQ2awu8R1UaTddbebGv3IRKeO3E.crl (hash: pCFCudQG5G5FQsDwLVLV49CfJe1+xZWaUG4hPv8beTk=)
2: yuW5WVwgNaxBxObKx0w_CE3bdf0.roa (hash: bxzeDx/FJJDZscd0BPoaz8SHe0rmx/Qll6/QwchRolI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 15:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:24:b2:56:1b:53:19:75:9d:53:af:d0:98:c5:f2:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90d9ac2ef11d5469375d6de6c6bf721129e3b71
Validity
Not Before: Sep 10 15:00:44 2025 GMT
Not After : Sep 11 15:00:44 2025 GMT
Subject: CN=75aee2a19f336ff13e8bc25eaaae4fd5a2023076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:9b:13:be:cf:b8:e0:4c:fd:72:3a:40:f5:0c:
1d:b8:db:88:9c:47:1d:0f:45:3c:85:2e:d1:75:b8:
e7:2f:03:6b:f0:4c:47:e4:9e:0d:d9:fc:21:5a:48:
16:d7:04:8d:da:ad:ca:c8:3e:52:7e:66:6e:e8:d2:
ce:fe:e5:99:54:1d:ff:f9:34:88:fd:ca:2d:ae:60:
9c:e7:d0:00:d3:18:c9:79:82:3f:a7:a0:13:f2:5e:
4b:a7:09:99:a5:62:6f:9b:90:81:fd:c4:a1:a3:4d:
0d:3d:2f:2a:ac:39:f0:e3:8e:49:b6:cb:74:f9:64:
2b:b9:cf:71:55:55:07:1a:3c:2c:20:00:ad:3e:54:
04:5a:37:dd:25:4b:f3:96:e7:71:6f:73:e0:7b:8a:
1d:e3:e2:9c:58:06:c8:f3:02:ae:a6:f0:d1:cd:05:
ca:44:55:a3:d4:d2:b6:f6:a9:ba:d9:ad:68:d1:8f:
74:fe:08:4f:c5:72:b8:8a:6a:37:b6:60:fc:17:68:
96:13:b1:64:66:81:e7:b0:f9:c0:39:bb:ab:08:db:
ab:dd:9a:aa:16:ae:c2:2d:25:3e:d9:16:07:3e:b9:
44:98:5b:8f:62:0a:2d:dd:41:c1:5c:aa:3c:ca:ba:
84:cf:ba:4b:53:73:b4:cb:ae:6e:48:df:3f:15:cf:
64:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AE:E2:A1:9F:33:6F:F1:3E:8B:C2:5E:AA:AE:4F:D5:A2:02:30:76
X509v3 Authority Key Identifier:
keyid:A9:0D:9A:C2:EF:11:D5:46:93:75:D6:DE:6C:6B:F7:21:12:9E:3B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:51:9a:b3:05:bf:80:b1:80:4c:1f:92:81:9a:ed:50:6d:55:
97:72:8f:c1:a5:b3:9d:9c:f0:88:3a:7c:af:75:4e:8d:f9:51:
6e:89:78:7e:33:7b:66:23:11:e5:39:e3:d3:9e:5a:e1:78:62:
57:82:87:c8:8a:b7:d3:a8:1e:bf:c0:09:e1:37:7d:db:ea:c9:
1e:3b:54:b7:10:80:6d:f0:8d:1b:87:9f:89:ca:dd:a9:68:0b:
04:ad:b2:02:77:ca:4d:e0:45:8f:ab:66:8d:33:71:7f:1e:f9:
65:8c:07:71:b7:16:46:a4:62:21:48:db:43:bf:54:ec:84:c1:
f5:7d:2b:44:74:ed:60:d8:f3:68:31:0f:98:d1:26:97:35:1a:
2f:7a:42:fb:c9:08:45:03:a1:f2:44:35:ad:c7:45:30:92:3d:
80:a4:bb:9c:9f:4e:5f:95:1f:6c:63:a6:d8:10:8b:7d:f0:8f:
1d:bd:09:28:82:4d:be:b1:e7:86:c1:ae:0b:f5:66:2f:81:9f:
8a:02:3b:23:a7:48:28:1f:c0:27:73:6e:c2:d9:ca:72:23:0c:
92:3e:26:d6:e2:cb:3d:51:39:a7:36:f2:65:1a:58:92:bc:6a:
55:07:55:36:a1:34:ee:d8:00:2c:52:7c:ac:52:2d:c4:81:f7:
e3:eb:c6:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 01:19:37 2025 by rpki-client