Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: iLDhC5qt9hB+vhN432DtpicmZS8/QiAH0oJPyWSzTq0=
Subject key identifier: 48:3C:B1:5F:E9:0A:00:C4:13:04:1B:7C:64:A5:E4:7E:77:31:07:69
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019A22C0C18C6C17157CF6FF9EA9BA8BB181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 1688
Signing time: Sun 26 Oct 2025 23:00:49 +0000
Manifest this update: Sun 26 Oct 2025 23:00:49 +0000
Manifest next update: Mon 27 Oct 2025 23:00:49 +0000
Files and hashes: 1: UkqG3VMYAz9uABWF42sKAydGWoA.roa (hash: /dg3EZ5BvktCoE6vyv9z5Q4gql01gT6XeimrmuNAS5k=)
2: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: Llb1i2UpxgsSTihT0+yifIHxlizfrzHkkSlgfBnqKHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:c1:8c:6c:17:15:7c:f6:ff:9e:a9:ba:8b:b1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Oct 26 23:00:49 2025 GMT
Not After : Oct 27 23:00:49 2025 GMT
Subject: CN=483cb15fe90a00c413041b7c64a5e47e77310769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:21:11:84:32:25:75:e9:72:ed:01:7a:40:12:
92:02:71:ec:49:a1:d5:60:d9:8f:9c:70:96:34:40:
98:39:a2:ae:52:82:29:42:04:d2:df:18:c3:7e:78:
41:ed:31:99:17:59:5e:5a:1e:4a:53:03:90:2b:e6:
4a:a2:c9:9b:f9:86:02:10:81:ef:9a:ea:08:4a:53:
3d:63:e8:83:06:42:fe:d3:53:07:e9:3c:e8:24:9f:
e0:b4:ed:09:1c:57:cf:93:54:9e:df:d4:f9:22:4b:
a2:6b:0f:71:84:d2:a2:73:13:38:63:09:a1:68:43:
b7:55:f3:23:91:52:29:44:86:93:bd:74:40:3e:a3:
7f:cd:1f:bd:36:21:67:55:d9:7b:e1:b2:f4:28:50:
58:12:02:b7:49:2a:76:d3:6e:d3:5c:12:5e:d2:b1:
5d:12:25:02:8b:a2:a6:d1:92:f5:cc:ac:0d:a9:40:
f9:31:a0:a7:a3:8e:92:53:90:00:38:a8:7a:8e:c1:
79:e8:2a:70:d2:f4:73:ef:7c:c1:46:c6:11:ad:52:
87:82:9c:ca:b0:55:9a:e1:94:10:74:96:cd:c8:76:
7e:3d:cc:d4:e6:1b:cc:51:a2:04:4a:d4:18:d3:b0:
28:43:8e:6c:d5:9d:0e:80:0a:15:32:5b:13:a3:91:
0c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3C:B1:5F:E9:0A:00:C4:13:04:1B:7C:64:A5:E4:7E:77:31:07:69
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:13:4e:f7:92:a1:de:5e:94:b6:11:5c:06:33:06:bd:5f:88:
c7:82:87:48:9f:0f:54:d3:fd:ec:f8:ce:95:d7:cd:38:d1:4b:
75:5e:93:e2:d2:41:f9:8c:b5:47:e4:41:3b:2a:a9:69:fa:ca:
7d:18:ed:60:53:23:f5:79:a7:ea:32:64:06:e0:fa:21:04:cb:
d3:ef:90:e1:52:01:c4:2d:05:83:3c:77:0e:29:9b:33:fd:e0:
e2:1c:f9:85:b3:30:2a:78:fc:ab:61:62:b1:3f:30:85:ab:3b:
93:c8:a1:6f:e2:82:2c:ae:1a:9f:52:16:9e:92:cb:05:b4:d2:
d3:e6:52:77:45:41:53:ea:b3:2b:0b:f6:3c:8c:50:ae:ab:6d:
26:b3:bf:1e:fe:06:e6:da:9f:27:9a:a8:61:d4:bb:71:73:ce:
9d:ef:56:11:41:19:82:81:a5:fd:ce:4d:9a:26:de:e1:10:a3:
d4:ea:04:76:37:9b:58:a7:68:71:b1:57:80:93:b9:22:a8:6d:
74:82:5f:cd:6a:02:81:a0:d4:22:4b:14:e2:94:79:cb:fc:1b:
74:b4:3d:1b:a7:44:0c:7c:ab:f2:f7:90:e2:51:76:83:27:fb:
e0:b6:64:4a:51:57:af:91:89:c4:9f:a9:11:e5:9b:69:77:64:
26:7c:c4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:42:09 2025 by rpki-client