Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
File: Q_2TYug7hS8_0zEbCQlvYommoPg.mft (raw, json)
Hash identifier: l1FO89SnLGCL1cD3aNpH+LqER08kODq53cJoRy57ZTw=
Subject key identifier: B0:07:32:61:93:40:2F:A1:ED:D3:C4:46:3F:E4:E4:B3:AB:38:04:2D
Authority key identifier: 43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8
Certificate issuer: /CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8
Certificate serial: 019A70DC87C16CFB6F1F2DC8E976CAEC1490
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
Manifest number: 0FF3
Signing time: Tue 11 Nov 2025 03:01:32 +0000
Manifest this update: Tue 11 Nov 2025 03:01:32 +0000
Manifest next update: Wed 12 Nov 2025 03:01:32 +0000
Files and hashes: 1: Fy-RDVpoQYqhk9YIhC0_OXJ7Ngw.roa (hash: MSpbkpTae0BKWb0wW1Z5MLxX2eex/b1uULBuB1GrJoU=)
2: Q_2TYug7hS8_0zEbCQlvYommoPg.crl (hash: 3GlRWZR/o5/fqrMT8U/BOMXzyeQ4P0SkazyEz0KmNQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:87:c1:6c:fb:6f:1f:2d:c8:e9:76:ca:ec:14:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8
Validity
Not Before: Nov 11 03:01:32 2025 GMT
Not After : Nov 12 03:01:32 2025 GMT
Subject: CN=b007326193402fa1edd3c4463fe4e4b3ab38042d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:98:2f:8a:e0:4b:37:80:fa:cf:d4:9a:76:11:
0d:12:40:04:14:d0:6c:c2:2f:c0:a1:aa:b5:fe:18:
5e:b7:9a:fa:68:54:19:fc:5e:c5:ad:10:52:2d:22:
6a:df:36:ee:70:1f:0d:ef:b1:bd:cd:ac:2a:6f:d0:
7e:60:19:72:e8:07:82:48:ee:91:56:91:33:d6:1f:
29:e6:26:c0:4f:99:43:b2:dc:97:ab:99:77:49:14:
4a:ea:a7:cc:36:fb:8f:cb:c3:be:7a:15:17:48:f4:
b2:ac:eb:1c:c0:c9:3a:c1:b0:6d:6b:74:df:76:d1:
98:8f:b2:1f:e9:42:0e:90:12:d1:90:d9:ab:66:df:
99:a0:60:0e:b0:7d:cb:b6:e3:c2:ac:26:ca:cb:6c:
86:0b:cf:88:4a:b4:bb:ad:0d:5d:46:fe:87:6e:68:
93:df:9d:62:43:f8:c5:9c:25:f7:d3:95:ad:6c:ce:
e8:73:ee:9e:d2:6d:0a:be:b3:d5:79:9f:e7:de:00:
30:eb:f3:b6:9a:e9:02:f8:99:cb:b5:e7:9b:a8:b5:
5a:cd:37:61:ac:76:64:ce:2c:71:ce:6b:79:61:a5:
8c:bc:c7:41:86:ca:30:e6:63:e4:2f:0e:6f:be:a7:
bb:5a:2f:d4:0f:4b:b1:4b:ce:8b:92:b2:5c:cf:3c:
f5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:07:32:61:93:40:2F:A1:ED:D3:C4:46:3F:E4:E4:B3:AB:38:04:2D
X509v3 Authority Key Identifier:
keyid:43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:fc:c2:9c:be:dd:c0:09:3e:1c:1a:da:23:ba:de:fc:b4:08:
c3:bc:fe:6f:f1:2d:6a:9f:2b:c1:4a:8e:8e:61:4e:22:ed:fe:
e6:d3:f3:8f:0b:77:a9:e6:de:55:f9:98:83:d6:38:32:b6:90:
e3:78:fe:40:3b:f8:da:90:6c:69:45:86:33:06:c2:ec:a9:76:
f4:08:99:d1:25:aa:a4:83:de:82:4c:b9:b8:91:d1:27:e3:f7:
9a:64:97:a8:7a:c0:69:1c:59:9f:99:de:7e:04:bc:3c:44:37:
6e:bc:47:91:6a:eb:d0:23:cb:be:00:fe:d6:6f:1e:24:2e:a7:
23:8e:f8:4d:ca:d6:a7:0a:e0:66:9c:ef:22:4c:3c:30:42:9c:
ad:0b:a9:6f:ba:9b:02:10:f7:02:6e:2f:a8:1a:f6:81:f6:fd:
4b:5f:23:e1:d3:92:e3:31:99:a5:91:f6:35:43:d0:e2:32:b1:
3c:e9:59:55:9f:18:25:89:ad:03:1b:2f:94:08:88:50:56:93:
33:85:9d:dc:81:65:a9:ae:9c:9e:d8:c4:0a:17:af:97:d0:02:
4a:e3:58:e7:80:75:06:1c:5b:3c:f2:56:b6:7d:dd:1a:ef:2e:
85:8b:4a:a2:59:a9:83:a1:34:63:5f:e0:48:29:d1:f8:5b:fb:
31:a0:0f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:56 2025 by rpki-client