Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: kHvGaY4R9HRS5g33nSS0l7ssxzuDk4UXmOCMx5edaqc=
Subject key identifier: FB:34:1E:6D:50:4F:54:65:53:7E:42:B5:59:E3:0B:BD:25:D5:95:70
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 019923D5BE0CE3E740C17E0F211D64E876EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 0E61
Signing time: Sun 07 Sep 2025 11:00:34 +0000
Manifest this update: Sun 07 Sep 2025 11:00:34 +0000
Manifest next update: Mon 08 Sep 2025 11:00:34 +0000
Files and hashes: 1: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: QP+RXwYF1bf3f+xMEgm4aDMmR/X//CwekB2/Zrf/icY=)
2: Tt9cDnLqp2SOeeoElhH21A1JSmo.roa (hash: g7FEq0smlg0TkkjLfygzTEzTD8KkWT+7GvQHUxPqdJo=)
3: pSYXiKXGXABhmANIG0Y2vhGLRUA.roa (hash: kjXcWabBcy+Nz9B+eKiIbdHIvrnXu/XwD/9ZftdegXw=)
4: uJ1wgWjtfF_PUvxzUj8noSaLQx0.roa (hash: 5K3mYspcTrH8J1dlAJJG2SBHWuIALi8AQG16SYzuq8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:be:0c:e3:e7:40:c1:7e:0f:21:1d:64:e8:76:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Sep 7 11:00:34 2025 GMT
Not After : Sep 8 11:00:34 2025 GMT
Subject: CN=fb341e6d504f5465537e42b559e30bbd25d59570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:28:8a:f4:8a:ef:da:c9:9e:ef:8a:c9:ff:d0:
6d:36:d1:4c:56:e7:97:85:a4:70:c9:3d:60:d5:01:
69:3d:91:3d:9c:d8:54:42:c7:f2:99:cd:28:2c:07:
cf:9c:30:5f:e2:4b:fd:c0:b7:2c:cb:92:be:82:86:
66:ee:f4:31:4e:7e:b0:5e:1a:4c:0b:95:b7:c2:0a:
0a:fe:70:90:d3:f4:f2:2e:d4:09:a9:10:b0:c0:d2:
dc:07:50:7a:b5:40:54:cd:df:0c:04:b6:42:c3:3a:
da:4b:c9:e8:95:42:8f:a2:54:04:fb:3e:57:ed:24:
dd:44:0e:6e:96:98:4d:1f:3a:1b:54:08:1a:14:c6:
bc:a7:f5:9c:7e:5f:66:14:9b:c4:61:cc:bc:c9:50:
d9:38:15:7c:c6:43:9b:32:4f:d3:d7:b4:3a:3e:7d:
4e:3f:16:a3:71:3a:3f:02:4f:7b:81:33:89:ca:03:
61:76:ae:aa:d3:9f:61:3e:de:8a:78:43:86:37:49:
66:36:d5:97:f4:b3:85:a8:19:0e:22:ed:e5:d4:9f:
1c:d5:5a:4f:bc:5c:9b:6e:05:c3:96:18:b0:a3:1f:
5d:51:6c:ec:67:56:d6:01:49:83:97:8b:b2:70:a5:
df:59:26:f9:b0:1b:66:fe:08:cb:9d:2e:da:7d:ee:
7d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:34:1E:6D:50:4F:54:65:53:7E:42:B5:59:E3:0B:BD:25:D5:95:70
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:82:69:d5:cf:36:86:91:39:ff:75:5d:62:a8:2f:3f:8a:f6:
57:d0:f2:21:7a:b2:cc:ff:58:d0:04:0b:8b:80:53:1b:c6:df:
34:85:26:b1:36:60:0c:27:58:30:05:5a:fa:3f:f0:37:17:f6:
83:e0:40:4e:b7:70:de:29:8c:e0:06:0a:45:1d:e3:e2:db:e4:
70:20:af:83:f5:32:0b:a2:50:b2:09:2a:58:3a:cb:08:ae:a9:
8b:7a:0c:da:fb:21:b0:1b:c0:71:cf:2d:1d:7f:f8:2c:28:e2:
03:a3:a2:57:c8:81:dc:a3:61:b0:58:f4:88:ad:eb:b7:ed:e8:
4c:a9:d2:df:e9:ac:c4:c3:5a:55:2a:a1:e2:80:42:99:60:fe:
b0:d1:5a:81:e5:5e:41:a4:35:c2:e6:fd:ce:90:da:a4:2b:ab:
e6:89:fa:1d:64:51:23:5a:43:14:d1:38:aa:86:2f:cd:12:3c:
3a:bc:fc:45:9a:fb:11:29:fc:93:6c:b5:f0:3d:e2:d0:02:5e:
80:26:8c:36:d6:81:a0:81:08:a8:24:74:86:7a:56:c1:4b:92:
02:3a:79:ee:a5:00:b9:f2:8b:75:cf:5e:2c:b8:29:4e:c0:af:
7a:09:a2:66:4a:d7:48:f7:0b:f9:c1:06:3d:4b:fb:60:06:08:
4c:32:ee:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:35:42 2025 by rpki-client