Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
File: fQtE5JJUnht9pTLIDDSIUMWkToA.mft (raw, json)
Hash identifier: 3pWxzwBwj6M4jYUiON06q7LHz+y6g3K7I2EJe7Oa2hY=
Subject key identifier: E8:A9:C2:FC:A1:48:12:BD:E1:F9:3B:95:73:6D:DC:81:23:52:8D:DC
Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Certificate serial: 019A04ECD6F420FA538C0AC396211C041EA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
Manifest number: 16E8
Signing time: Tue 21 Oct 2025 04:00:21 +0000
Manifest this update: Tue 21 Oct 2025 04:00:21 +0000
Manifest next update: Wed 22 Oct 2025 04:00:21 +0000
Files and hashes: 1: Vh9zdU6UPXBw1wsGMQVn_pjjotw.roa (hash: RHQ7Mk9Ul2niP+vY1weS4xjGH8dOqLq3Efjab5Bc1HU=)
2: fQtE5JJUnht9pTLIDDSIUMWkToA.crl (hash: LTacLn9TnhHrSPIA/WUqVFPetuhJEpK/WiX3vUnuoFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:ec:d6:f4:20:fa:53:8c:0a:c3:96:21:1c:04:1e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Validity
Not Before: Oct 21 04:00:21 2025 GMT
Not After : Oct 22 04:00:21 2025 GMT
Subject: CN=e8a9c2fca14812bde1f93b95736ddc8123528ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:09:f9:28:4b:f3:8f:f1:3a:e5:c8:b5:44:b7:
4f:6c:e2:20:19:8a:06:01:e2:18:5c:dc:36:a7:8a:
8d:86:a2:4c:7a:3f:2d:14:7c:c8:5e:52:e6:fc:35:
33:0e:b6:a0:45:0e:d7:5f:ad:ba:83:24:eb:3f:34:
9e:78:b4:73:83:70:06:33:d9:ac:f6:db:61:b2:c2:
98:e0:b0:f5:73:74:ef:63:ca:c0:43:db:e1:c9:0d:
d9:52:f9:fd:4f:cc:b0:ff:c5:43:cf:2d:6a:ec:03:
68:a2:69:7b:57:fe:b8:85:19:83:05:b1:30:6e:dc:
b9:47:2f:eb:ed:0c:4b:eb:b8:55:c2:e6:2c:0d:a3:
6f:77:4b:ee:50:0d:a9:52:62:ac:58:23:84:fd:51:
f0:8c:e7:c8:cd:cd:e4:55:84:33:56:80:36:bf:a9:
8e:27:79:12:5b:9f:fa:07:39:3c:61:7f:45:55:29:
35:f7:d9:bb:fe:d6:15:22:a5:56:95:72:51:68:53:
47:e9:1c:21:52:63:eb:4f:75:d1:9e:28:98:93:e0:
a7:7d:11:7c:4d:9a:21:5e:7e:52:ec:83:2a:04:bb:
80:f8:99:5b:b7:d5:49:af:7a:e5:7c:f7:82:64:2f:
90:d3:57:93:46:2f:8a:68:5f:07:f7:31:24:64:63:
bb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A9:C2:FC:A1:48:12:BD:E1:F9:3B:95:73:6D:DC:81:23:52:8D:DC
X509v3 Authority Key Identifier:
keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ed:06:75:4e:4e:3d:da:20:7e:c2:0b:b3:25:70:af:91:e3:
24:31:43:0b:3c:c1:12:f7:5d:22:33:f1:f2:dc:53:91:a8:41:
83:b4:d3:e5:df:33:32:12:3d:bb:0b:0e:87:de:19:3e:df:8b:
b9:d6:8d:39:6c:8d:8c:4e:b7:35:cf:ca:7f:52:40:f3:8c:3d:
a3:c0:0e:1d:7d:69:fd:08:88:d2:de:1e:3d:19:b8:5d:2d:e9:
a4:a9:d1:ae:0f:14:56:c9:10:f1:87:92:bd:0f:81:39:29:69:
4b:7e:c0:99:a6:6a:88:8e:57:56:97:ce:0a:70:43:bc:50:64:
39:6d:e6:ce:86:17:7e:f6:dc:f2:18:cb:42:3d:8d:b0:a0:c2:
e1:43:89:54:1e:ab:cb:fc:fd:af:f7:e7:a5:f5:ea:31:1b:0e:
41:82:5c:95:4f:92:03:50:df:57:a6:fe:dd:3c:9c:79:ce:8a:
5d:e3:47:b3:83:b4:61:c3:da:2d:c9:11:19:fc:0b:ed:88:46:
1c:c0:30:72:f7:6e:1f:d2:ec:f1:5a:b4:b7:e1:cc:82:2d:c6:
77:38:b6:9a:97:77:30:d5:07:b6:98:22:7d:c4:96:8c:7c:cc:
f3:1f:52:48:71:4a:24:d1:3c:66:77:38:47:61:0d:12:0b:37:
79:0c:82:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 07:28:54 2025 by rpki-client