Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
File: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft (raw, json)
Hash identifier: GD7HdKyRF7j0ctGfdhU1EeyjG+a1Cb1jjnjBrneBOmo=
Subject key identifier: C0:91:19:A2:1F:98:D3:A6:8C:57:B2:99:38:21:3F:D2:4C:76:2A:10
Authority key identifier: 43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
Certificate issuer: /CN=43d518d7307788fca3891878490e4f32d9aaf6af
Certificate serial: 0199334999CABD1A2E37869A4BD5E638F73A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
Manifest number: 10C4
Signing time: Wed 10 Sep 2025 11:01:25 +0000
Manifest this update: Wed 10 Sep 2025 11:01:25 +0000
Manifest next update: Thu 11 Sep 2025 11:01:25 +0000
Files and hashes: 1: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl (hash: YD0KmkceCIgLDntxbsCPhKBvWwYg7GKjDks0YHfljb8=)
2: hOsUXVARCl8NqYdv3cI6OIcfqwU.roa (hash: w1gjvrKQRUt3hmiD9OYkOr05DsegCS6tRj5zStTTlPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:49:99:ca:bd:1a:2e:37:86:9a:4b:d5:e6:38:f7:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d518d7307788fca3891878490e4f32d9aaf6af
Validity
Not Before: Sep 10 11:01:25 2025 GMT
Not After : Sep 11 11:01:25 2025 GMT
Subject: CN=c09119a21f98d3a68c57b29938213fd24c762a10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:0c:0b:62:25:03:d5:c7:6c:dc:fd:5b:09:
91:df:5c:f1:f3:47:89:c5:07:85:7a:e3:65:78:1c:
9d:04:ed:ce:fd:32:e1:1c:61:3b:d8:19:62:27:2b:
39:96:33:22:f5:56:ce:61:76:1f:db:5c:23:39:cf:
9a:8c:32:2d:7f:57:5b:11:98:54:bf:5d:b0:27:2b:
e2:f0:6c:89:be:5c:a0:a1:28:62:ed:0a:b2:a7:92:
73:01:0c:2c:b8:46:f3:7e:28:18:3c:5f:6d:80:e0:
8d:bf:ea:25:d1:3e:fd:3e:4a:3c:99:60:65:58:58:
cf:2a:a3:02:13:f8:c8:de:cd:9c:93:fb:99:ee:5d:
06:f7:62:ec:49:a4:a9:09:2c:85:05:68:72:70:a5:
16:c9:7c:4a:2d:2f:7d:56:dc:20:b0:97:e7:85:36:
44:e2:74:b2:42:20:14:13:6d:de:83:48:e2:90:a0:
eb:4b:df:4e:15:b8:78:67:4f:c8:42:45:3c:9d:3c:
91:6d:b4:20:5b:fb:64:f0:00:3f:1a:0b:30:f9:99:
b6:f1:f1:f2:c9:8f:9f:ed:c2:65:7d:a7:d4:3c:bf:
4c:ec:b3:79:2c:83:7a:b7:75:67:d6:59:0a:6c:a7:
d1:33:25:46:a9:17:f8:79:55:f3:6b:52:a8:1a:82:
5d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:91:19:A2:1F:98:D3:A6:8C:57:B2:99:38:21:3F:D2:4C:76:2A:10
X509v3 Authority Key Identifier:
keyid:43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:d1:e7:1e:94:c1:16:56:6b:89:fd:99:0a:0d:fa:47:fb:03:
27:09:c0:be:68:c7:91:b0:74:0b:64:14:c5:22:4f:e2:a9:76:
5d:a2:87:c8:84:f8:e5:3e:6f:16:2c:65:ce:d1:dd:c6:2a:1e:
4c:7e:66:b1:e7:79:f7:a0:1a:b1:04:ff:60:e2:80:0d:8a:76:
71:35:c5:46:3b:16:bc:04:da:16:62:96:fd:03:93:34:d5:b1:
e3:8e:7d:ee:f3:49:90:a9:16:31:ac:2b:52:ba:12:a5:ec:c8:
5a:f1:c2:f5:c4:aa:0e:20:56:0b:3d:d7:97:b8:07:77:b6:c7:
de:76:2b:76:6d:ce:08:4d:d2:7e:96:73:aa:61:80:5d:a2:58:
94:b3:24:08:fc:0f:61:2e:22:11:89:07:ff:82:99:c8:71:fa:
e6:1c:1d:0f:c9:5e:24:b9:6d:3d:81:78:87:af:cc:5c:d0:0e:
39:88:fb:ca:cc:db:55:78:6b:66:a7:05:47:16:fc:db:62:e3:
d1:5c:12:f7:34:6e:c7:4f:88:62:6c:2a:b5:1c:f3:f6:12:fc:
90:33:cc:da:b3:24:2b:af:0a:42:9a:48:37:83:0c:0e:8c:db:
d9:10:07:7b:ad:37:38:a2:b2:8e:c0:69:d1:31:9f:90:eb:9d:
61:6f:a9:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 17:05:38 2025 by rpki-client