Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
File: qiEQS093IiTRGFaiTt-UZqhE0mw.mft (raw, json)
Hash identifier: c0Xid/1djiVsTn2jV8hylRfR2WXwp1hNL2QFAUyQiZ4=
Subject key identifier: 02:C3:D1:29:47:48:DE:8E:9D:49:66:96:71:BF:71:99:77:A8:A1:DA
Authority key identifier: AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
Certificate issuer: /CN=aa21104b4f772224d11856a24edf9466a844d26c
Certificate serial: 01993380F72EA7CC5206D29B16BB473783A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
Manifest number: 0A74
Signing time: Wed 10 Sep 2025 12:01:53 +0000
Manifest this update: Wed 10 Sep 2025 12:01:53 +0000
Manifest next update: Thu 11 Sep 2025 12:01:53 +0000
Files and hashes: 1: C9Uc2-MMZLc56ntn-MTlSYOC9E8.roa (hash: 7Vks3Vs+iWpgcZieiS4e05rACvsjBFcyY3uhYDWshE0=)
2: qiEQS093IiTRGFaiTt-UZqhE0mw.crl (hash: MrnpBgz8hMCUZJaOJZLcsY2PwCGXYr+o8kg+XysGJdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:80:f7:2e:a7:cc:52:06:d2:9b:16:bb:47:37:83:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa21104b4f772224d11856a24edf9466a844d26c
Validity
Not Before: Sep 10 12:01:53 2025 GMT
Not After : Sep 11 12:01:53 2025 GMT
Subject: CN=02c3d1294748de8e9d49669671bf719977a8a1da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4d:d7:7a:14:87:e4:a0:76:f1:14:1b:64:f2:
56:37:d9:9c:8f:f7:75:da:2f:82:df:07:1c:28:31:
e0:dc:59:70:2c:ee:47:2f:ef:ca:af:e2:95:bb:da:
b4:c5:33:74:83:9d:63:40:a5:97:c1:25:f2:77:e7:
44:9e:2f:01:30:ba:81:69:68:9b:6b:ba:a6:e8:b3:
a1:f2:24:75:3a:97:56:78:ca:bc:bb:1f:1a:82:8a:
3f:a0:e0:51:47:e3:ac:b2:79:50:51:1c:71:2a:39:
6d:36:56:f8:51:c2:a9:05:50:0a:5b:d7:50:55:5d:
b6:4d:ea:b3:57:75:f4:61:c6:dd:6c:a2:43:8d:23:
53:b7:ae:7a:4c:15:ad:e9:4c:3a:9d:85:c6:de:d7:
81:fd:a2:3a:a7:75:60:5f:0f:74:de:76:cd:24:35:
01:66:2e:25:bb:e0:e6:0b:f1:9c:68:84:12:77:2c:
50:5d:6d:76:df:2e:56:23:7f:dc:ac:cf:1a:20:e9:
80:0a:ef:80:ee:f9:c7:5e:07:29:33:49:8d:41:06:
15:35:4a:36:94:34:10:42:f7:b0:e4:ce:82:c5:7e:
6e:db:35:b1:b6:a7:d3:03:cf:f9:9e:12:8e:17:cb:
6e:78:e7:87:dd:a1:d1:ae:3e:33:62:44:ca:50:8d:
ff:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:C3:D1:29:47:48:DE:8E:9D:49:66:96:71:BF:71:99:77:A8:A1:DA
X509v3 Authority Key Identifier:
keyid:AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:83:5f:26:87:b8:f3:4c:10:e9:6e:62:ac:0f:af:56:b2:ba:
91:b3:9c:83:be:e1:d7:04:0a:67:bc:3a:74:ac:e5:ab:df:e8:
fe:f7:68:39:c9:2e:b3:83:5b:1b:90:c8:16:d4:77:e1:ba:1e:
ef:bb:f4:32:79:55:65:86:f4:8e:13:5d:73:e8:c8:b0:8d:10:
f0:c7:48:cd:7a:b5:76:3d:dc:f7:c0:ef:65:e8:e2:e0:5c:34:
32:69:29:cc:18:c6:f2:67:09:d8:68:6a:86:5b:2b:2f:37:33:
b4:52:95:90:43:a8:5c:15:3b:63:70:8c:cd:c2:56:6d:11:a5:
62:53:06:ab:37:3c:cc:a5:d5:de:d3:6e:f6:bf:57:68:fa:0b:
61:28:c2:98:ab:ae:13:95:f8:20:8f:de:63:d7:87:db:98:80:
3d:78:1d:66:ae:24:80:22:91:99:ec:4c:77:2a:0f:1b:aa:82:
15:6d:1c:2b:55:10:6d:36:53:f9:e6:54:e3:1c:10:63:4b:3a:
07:00:d3:81:b1:ab:6e:58:38:22:6c:bf:19:f4:fe:33:93:84:
f7:f9:01:28:b1:df:d3:c8:42:bf:79:a9:fb:bc:e8:5a:ac:c2:
74:f4:95:06:b7:27:80:86:3f:bd:1e:14:02:cc:02:27:ff:f3:
fd:69:0e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 20:14:07 2025 by rpki-client