Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
File: mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft (raw, json)
Hash identifier: UWodUFu84WNhibYxsKytr5C7tq00unPW4+QIEUWAiFk=
Subject key identifier: 9D:E6:2B:A5:F1:F0:CD:FE:8A:41:59:1C:E9:2B:58:86:F1:46:97:61
Authority key identifier: 99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
Certificate issuer: /CN=996f903f91a85a60c546ee1141348cc3c8036927
Certificate serial: 019A19F3F7B7D5982018812351C312AAD550
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
Manifest number: 1384
Signing time: Sat 25 Oct 2025 06:00:10 +0000
Manifest this update: Sat 25 Oct 2025 06:00:10 +0000
Manifest next update: Sun 26 Oct 2025 06:00:10 +0000
Files and hashes: 1: mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl (hash: h+Fgljjgzd/X9Q2fT9ocsOgBIkBVlQ972J6ys1PsIpA=)
2: oGPLcgnT5_jMQFeXtQh3bXaXriM.roa (hash: QUvCaj08Q2TK+WnTDqsu5pyPq9XzMOcObz9WAotvcYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:19:f3:f7:b7:d5:98:20:18:81:23:51:c3:12:aa:d5:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996f903f91a85a60c546ee1141348cc3c8036927
Validity
Not Before: Oct 25 06:00:10 2025 GMT
Not After : Oct 26 06:00:10 2025 GMT
Subject: CN=9de62ba5f1f0cdfe8a41591ce92b5886f1469761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9b:9f:dd:64:46:4c:86:ad:e2:d4:fe:cd:5e:
01:0d:a6:52:d4:ce:cc:52:02:22:8e:a7:b1:93:71:
c8:45:5a:10:11:dd:f9:42:fb:69:8c:72:6d:34:77:
49:85:ab:58:6e:1e:92:63:d8:0b:d6:35:a9:5b:6a:
a2:65:ec:f3:fc:f4:18:e2:38:3c:b9:dd:1a:7c:a1:
4c:72:01:d4:6e:67:1d:f9:5a:97:09:14:59:ef:bb:
f0:2a:7d:ee:87:3a:3d:45:37:df:b8:6e:69:cf:b6:
5a:ce:25:ec:82:b0:7a:c8:9a:3e:6b:17:dd:a7:a6:
6a:1a:05:e9:7d:66:dd:8b:50:20:d3:28:c0:3e:53:
30:bc:92:ea:38:75:c4:84:e6:dd:ec:00:dc:99:b1:
a9:34:95:f1:1d:db:6f:a8:8d:39:1c:e1:a5:c2:c8:
7c:05:34:55:9c:e8:ca:e9:25:a0:da:0e:05:d2:23:
fb:97:0e:c3:15:7a:ed:6e:8f:2f:67:30:e0:b7:04:
7d:e3:ce:ce:f7:46:d0:33:83:7f:07:41:03:4a:cc:
c9:18:31:95:34:cb:26:da:df:7a:d8:38:5f:49:61:
de:1e:d3:cc:ce:ef:1d:e7:59:05:50:07:d9:0a:0d:
0b:af:ac:a7:db:75:8b:35:6b:e5:ad:bf:99:3c:12:
ed:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E6:2B:A5:F1:F0:CD:FE:8A:41:59:1C:E9:2B:58:86:F1:46:97:61
X509v3 Authority Key Identifier:
keyid:99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:7c:3c:37:25:55:35:e3:ce:f1:b2:c5:b8:16:e0:4d:44:0e:
36:24:1d:bb:51:80:ef:76:a5:9b:29:f3:5f:ad:85:39:b8:ee:
43:50:15:14:75:a0:03:26:8d:9a:58:0e:9d:53:08:fc:37:3f:
47:c9:31:97:e2:14:99:31:39:cb:88:51:a5:8c:4c:6f:e9:6b:
0e:2d:29:bd:a6:63:6b:24:3b:1f:bf:27:d2:3e:2a:93:13:82:
e5:b0:c7:9f:87:23:75:94:5b:a1:50:d1:72:21:03:07:20:cc:
2e:b4:42:74:66:ac:bc:44:70:d6:e6:45:bb:6a:e0:75:96:6a:
31:e3:ad:27:cb:51:21:07:5e:65:7b:de:02:62:ba:28:90:fa:
4a:ec:81:ad:b0:b7:01:87:74:38:9a:5c:19:94:ff:fd:1a:d2:
a8:10:4e:fc:15:70:9e:5e:12:18:a7:72:84:ea:e5:72:0b:de:
f5:cb:d6:38:e7:b2:06:31:ce:64:83:96:20:7d:f4:10:8e:0a:
2e:7b:c8:43:5a:8c:85:41:5c:55:e6:eb:7a:a6:99:51:79:41:
85:96:96:35:84:2b:c6:50:f6:f1:69:cf:36:9c:5b:65:15:43:
b7:bd:69:54:5c:fc:a5:59:d8:4f:70:06:e3:27:1d:7e:1f:a3:
2d:3b:8f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 15:38:16 2025 by rpki-client