Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
File: Q2TnsO7yBINcffKon2DAK-HYmt0.mft (raw, json)
Hash identifier: Iizyjz796ICHozqp6Gg9NyctMBiGvpc6/kPjcFiK2F4=
Subject key identifier: FC:84:AF:69:29:C6:4C:49:9E:B9:08:19:0B:BF:3D:04:25:0D:1C:FC
Authority key identifier: 43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD
Certificate issuer: /CN=4364e7b0eef204835c7df2a89f60c02be1d89add
Certificate serial: 019922C3855D7319B7A3FEEFA1584B3DA501
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
Manifest number: B0
Signing time: Sun 07 Sep 2025 06:01:02 +0000
Manifest this update: Sun 07 Sep 2025 06:01:02 +0000
Manifest next update: Mon 08 Sep 2025 06:01:02 +0000
Files and hashes: 1: 4Lqe88CYtrJZ1_QwsLbbBZVtRAc.roa (hash: 4DmhBXf2oC0XIM1RLi3zAk7AYqn+M5oHIj926WSgGgs=)
2: Q2TnsO7yBINcffKon2DAK-HYmt0.crl (hash: oX6yx+JVvvbl059AFHJKGnJRi7OF71QjbqTfYov7Fec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:85:5d:73:19:b7:a3:fe:ef:a1:58:4b:3d:a5:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4364e7b0eef204835c7df2a89f60c02be1d89add
Validity
Not Before: Sep 7 06:01:02 2025 GMT
Not After : Sep 8 06:01:02 2025 GMT
Subject: CN=fc84af6929c64c499eb908190bbf3d04250d1cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:01:86:d4:26:cc:b1:2f:2e:2c:0f:31:7b:54:
ca:73:50:36:1e:a1:b9:5e:90:d9:f3:c7:82:a6:a6:
5e:c0:1a:cd:59:92:48:d4:a2:0e:75:09:ab:a1:84:
9f:14:7a:a4:f7:75:3c:3e:5f:d1:9c:f8:20:e2:f1:
7e:d8:db:61:17:3b:01:06:b2:ac:42:c4:e0:3e:85:
f5:e4:ec:63:be:67:dc:c2:9d:38:b7:6e:23:76:ad:
bd:1b:fe:18:5d:74:50:9f:b0:b2:31:b4:43:4a:b1:
0e:0a:54:4d:cf:ed:4b:3a:d7:ca:c7:f9:ee:20:f2:
22:bf:e9:99:9e:57:3f:f0:bd:5a:f0:0f:5a:2b:52:
5e:9f:77:33:f6:42:46:1b:45:21:4e:11:66:70:ec:
45:20:14:79:00:56:2d:8b:b0:32:0c:36:25:fb:4d:
1f:56:57:73:e5:7a:7e:81:be:81:b0:e6:98:7b:61:
8e:9e:e4:d7:32:39:18:ed:eb:e0:73:aa:bd:c0:3d:
84:5b:fe:46:de:26:77:08:a2:ae:14:a2:a2:ed:29:
83:8c:8f:25:92:23:d7:d9:a4:71:12:7e:d5:d0:b7:
75:c6:f9:d6:fd:78:79:d4:83:e9:80:31:12:c5:de:
15:2e:21:88:f3:1f:68:b2:95:5f:76:fc:41:75:b4:
4f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:84:AF:69:29:C6:4C:49:9E:B9:08:19:0B:BF:3D:04:25:0D:1C:FC
X509v3 Authority Key Identifier:
keyid:43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:f4:2e:76:46:a7:af:96:53:d8:5f:20:08:0a:2f:91:7f:e0:
28:f5:62:be:3c:46:08:a9:75:fa:50:50:9a:cf:55:18:68:b8:
e1:6f:60:39:81:ab:65:75:b2:2c:a3:da:1b:b3:5f:c2:7f:d2:
29:7f:eb:73:3b:32:ac:18:d8:c8:36:6b:c9:a2:52:9f:d9:8b:
30:6e:a1:fb:7d:34:66:0c:72:14:05:98:52:20:db:fd:e6:00:
f6:c8:8e:e8:fb:6e:0a:25:3e:0d:96:6a:41:f0:15:e5:8a:fc:
73:a4:41:e2:0d:d2:38:43:7e:e9:13:43:1d:64:1a:e8:33:ab:
62:74:62:6c:a8:43:6b:4b:18:8f:de:c7:2b:59:b1:c9:78:12:
18:f9:b4:5a:7a:b6:2e:49:2e:ca:3d:b3:fe:67:a6:e1:0c:9b:
93:47:a8:e0:55:27:d1:f7:b3:90:49:6e:82:8e:ab:5f:61:d5:
7c:b2:48:14:05:ee:57:9e:42:d5:8d:1b:05:11:10:39:a4:fe:
4e:94:ba:ee:75:86:64:ce:75:c2:8d:2c:ca:eb:8d:af:36:6a:
93:07:b7:04:fb:2a:f4:7e:c8:b7:68:44:94:42:97:68:1d:3c:
d2:14:26:6b:77:d4:19:a2:b3:2c:53:e4:18:3b:b6:dc:c6:a6:
4d:bc:b0:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:47:38 2025 by rpki-client