Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
File: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft (raw, json)
Hash identifier: 29BnzyWMV8vFVcMdj7LFA7tPSxQO1DcKmjv7XeKqiHc=
Subject key identifier: E0:6E:72:22:E4:26:4E:DF:B4:6A:24:53:D4:9E:41:66:61:1B:DC:61
Authority key identifier: 43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
Certificate issuer: /CN=43d518d7307788fca3891878490e4f32d9aaf6af
Certificate serial: 019A24AEF762EBE3ABE506E6771069503259
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
Manifest number: 1141
Signing time: Mon 27 Oct 2025 08:00:37 +0000
Manifest this update: Mon 27 Oct 2025 08:00:37 +0000
Manifest next update: Tue 28 Oct 2025 08:00:37 +0000
Files and hashes: 1: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl (hash: G5UIhcgg/zEUNSnPyD8gmyzoGnoViJcHWUpyGeBE/rE=)
2: hOsUXVARCl8NqYdv3cI6OIcfqwU.roa (hash: w1gjvrKQRUt3hmiD9OYkOr05DsegCS6tRj5zStTTlPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:ae:f7:62:eb:e3:ab:e5:06:e6:77:10:69:50:32:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d518d7307788fca3891878490e4f32d9aaf6af
Validity
Not Before: Oct 27 08:00:37 2025 GMT
Not After : Oct 28 08:00:37 2025 GMT
Subject: CN=e06e7222e4264edfb46a2453d49e4166611bdc61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b6:80:cb:6c:32:8c:38:67:94:6d:3f:b4:e4:
71:2d:67:de:87:37:69:c6:90:fe:10:17:15:5c:8f:
d6:b4:f8:3e:6c:ba:ac:f5:db:15:1f:b3:ec:58:c5:
f0:7b:5f:a0:ee:84:80:ca:f9:f7:02:e4:a4:c3:84:
27:d4:49:fd:72:fd:63:18:1d:5d:2b:62:d3:5c:1f:
b6:41:c7:9d:65:1c:f7:34:c2:54:a8:fb:5f:84:4b:
66:b0:13:22:9f:8d:1d:2a:9d:90:69:b3:f2:90:68:
f7:ad:e4:5d:b2:36:a5:87:41:b0:09:a3:2a:e3:5b:
cf:60:88:01:69:75:20:5c:47:a8:0d:ba:6e:22:85:
ae:4e:a8:e7:a8:ba:de:ed:64:6b:73:4d:d2:49:b4:
3a:c8:b0:29:94:57:7a:79:41:9b:b7:37:96:f4:d3:
2f:4e:e5:fe:bc:c3:bb:69:c9:be:bc:73:13:8b:36:
ae:3b:10:0a:dc:c5:0e:b2:8c:fd:d0:78:0d:39:43:
06:72:1b:e7:3a:ca:5d:f9:8f:b3:4f:3f:c8:8c:d0:
aa:26:63:4a:64:60:62:8b:c3:49:ac:d7:53:cd:9a:
a9:48:92:49:76:ae:4b:42:e6:31:46:6c:aa:4f:75:
47:65:39:a2:26:47:80:0f:7c:81:21:b7:b4:72:27:
eb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6E:72:22:E4:26:4E:DF:B4:6A:24:53:D4:9E:41:66:61:1B:DC:61
X509v3 Authority Key Identifier:
keyid:43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:47:35:37:a4:bb:3d:dc:65:e2:b8:27:da:a9:98:55:0a:ca:
38:0d:bf:ac:02:c4:b9:8d:7c:f1:d5:16:28:85:08:54:e6:81:
2b:cb:21:ef:f8:1d:4a:e0:77:0a:30:83:4b:73:cf:14:07:f2:
86:08:50:8f:89:b7:d8:a2:70:fe:fb:fc:bb:d8:9e:73:36:8a:
fb:47:36:bf:d4:f6:a8:0f:e0:da:2b:22:c6:3a:82:85:7f:77:
1b:27:73:a4:2f:a0:6e:5b:d9:cb:f6:e9:90:dd:9a:46:0c:a0:
df:c7:52:76:2a:1f:af:ed:e8:29:7e:9c:32:d8:b1:7c:bd:b1:
2f:4e:f6:12:d9:0f:be:95:52:16:d7:4b:32:98:63:a1:e5:a0:
15:af:15:86:34:20:20:6a:e5:08:91:17:0d:7e:9b:10:8d:92:
59:09:4f:16:07:85:de:28:43:21:ca:23:13:04:f2:86:fc:d7:
7a:c1:6a:c3:33:dc:cd:50:2c:b6:17:ef:f0:44:d0:76:8b:b2:
43:f7:10:58:4e:c2:75:f4:74:31:96:27:47:a1:97:06:0a:a6:
ab:cd:cf:af:ee:d9:fe:a8:ed:9e:c9:4c:63:0d:a2:34:83:2f:
fe:d2:9b:c5:09:f6:7b:df:cd:f6:9e:e7:70:19:17:41:50:c8:
ca:06:01:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:24:57 2025 by rpki-client