Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: H+x4BFqbZVYFJs2GeZgbhFwlQ2IHTVbHDWd9YhWvZzc=
Subject key identifier: 8B:B7:77:9E:9F:4C:47:D7:C8:3B:BA:58:AB:77:CB:1C:9E:34:81:48
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 019A213FA5BB1F199C7910C8921FA5725B88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0EE9
Signing time: Sun 26 Oct 2025 16:00:10 +0000
Manifest this update: Sun 26 Oct 2025 16:00:10 +0000
Manifest next update: Mon 27 Oct 2025 16:00:10 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: XpkpmcBRuM2Q24RiHGh/tBc61fTQuv3dVmsvNoCq3Nw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 14:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:3f:a5:bb:1f:19:9c:79:10:c8:92:1f:a5:72:5b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Oct 26 16:00:10 2025 GMT
Not After : Oct 27 16:00:10 2025 GMT
Subject: CN=8bb7779e9f4c47d7c83bba58ab77cb1c9e348148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:02:71:cb:7d:b8:a1:cb:41:5e:ef:fa:5b:0b:
ac:85:08:27:cd:73:e1:43:05:f2:58:49:ca:3c:72:
98:df:de:72:5a:54:20:d2:5b:f4:4d:b6:59:b2:3d:
1b:5f:0b:09:c9:2a:ec:16:28:a4:70:4d:01:07:5b:
de:c8:a5:f0:c6:96:fe:fe:af:e0:d0:fe:ed:65:0c:
01:db:7d:52:00:00:87:38:cc:fd:3f:2c:22:6a:f1:
54:72:57:09:fd:51:be:0f:ab:20:b5:78:39:4f:05:
d5:0e:08:93:59:41:1c:0b:7a:df:92:d5:b3:5f:1f:
fe:a6:5b:3a:21:5f:9a:35:ed:d3:66:c5:53:f0:ef:
ed:33:47:19:47:52:68:a3:1b:6c:c1:99:4b:25:18:
c3:86:27:1a:bd:fc:da:04:7f:b1:59:da:e4:7f:84:
28:16:a1:09:ea:ed:ed:e4:f7:f8:70:67:ea:48:31:
87:c9:c7:11:ba:d6:fb:90:c6:c7:28:23:34:9e:74:
9c:33:3a:94:a3:43:ad:23:c1:51:e2:d6:32:d0:f0:
6b:de:06:be:31:c4:4d:a7:49:d2:1c:a5:aa:e3:bf:
de:1d:fa:98:3f:45:ee:44:67:57:6a:8a:c3:94:4e:
8c:e6:78:9b:77:9e:78:db:84:3a:2e:8a:bc:92:e4:
da:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B7:77:9E:9F:4C:47:D7:C8:3B:BA:58:AB:77:CB:1C:9E:34:81:48
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:ba:9b:6b:b9:e2:9f:16:21:20:ba:8d:eb:33:9b:05:7c:65:
71:e1:69:6f:fe:24:2a:3f:cd:9d:9f:43:51:e6:1c:3f:f3:0d:
46:2f:7f:d7:8e:ea:26:fb:f9:cc:6c:55:71:14:7b:fd:b4:1c:
46:c8:ec:3d:38:52:bb:ce:3a:a1:e1:20:27:fb:28:99:0c:4e:
d0:2b:eb:06:0c:cc:42:fe:21:97:ff:72:de:96:d0:3d:a9:b9:
a8:57:88:94:f0:4a:95:53:98:4f:9f:71:72:5c:1e:6b:2f:06:
13:84:57:db:3d:b6:79:f8:90:a9:d7:88:45:0e:43:18:52:08:
a7:ff:36:f3:f2:33:e5:31:dd:b5:43:1b:e6:9c:cf:89:6e:b7:
98:27:ca:e0:3a:5f:e6:f7:2b:34:0a:75:53:88:2a:4e:08:18:
d6:2a:98:47:65:cc:f9:90:49:e6:18:ad:4c:5c:fc:7b:22:25:
23:60:9f:70:40:7b:59:ff:01:d1:48:46:fd:e8:71:3a:26:45:
00:fd:6b:aa:b9:c5:6d:39:a5:d5:1d:8c:98:9b:f6:6c:ef:38:
6b:f5:6f:6b:a0:e5:08:48:ad:2f:0d:37:f8:b5:49:2d:50:96:
dd:67:5a:40:4c:6d:2c:cc:40:69:7e:a3:38:0e:d2:09:cc:5d:
cc:e4:46:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 22:53:58 2025 by rpki-client