Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
File: Q9JznRqU2rlXbiF80N-FdyBLIwA.mft (raw, json)
Hash identifier: w737kdGgNdVvijsEqi9Nj4dM2DIOn5CG4I5+LO96RUg=
Subject key identifier: E9:FD:BE:4A:23:1C:AC:5E:BC:85:40:91:DE:FE:0B:70:DA:86:52:31
Authority key identifier: 43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
Certificate issuer: /CN=43d2739d1a94dab9576e217cd0df8577204b2300
Certificate serial: 019A73A6EF50ED99B3265107C215D594AB87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
Manifest number: 0477
Signing time: Tue 11 Nov 2025 16:01:51 +0000
Manifest this update: Tue 11 Nov 2025 16:01:51 +0000
Manifest next update: Wed 12 Nov 2025 16:01:51 +0000
Files and hashes: 1: Q9JznRqU2rlXbiF80N-FdyBLIwA.crl (hash: 5/e4zVMw4Pe6MK0+D+0EDLeEMAArzY7RTnLibOOUSHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:a6:ef:50:ed:99:b3:26:51:07:c2:15:d5:94:ab:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d2739d1a94dab9576e217cd0df8577204b2300
Validity
Not Before: Nov 11 16:01:51 2025 GMT
Not After : Nov 12 16:01:51 2025 GMT
Subject: CN=e9fdbe4a231cac5ebc854091defe0b70da865231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bd:37:3c:90:62:4e:36:08:b4:5f:15:98:c7:
4a:8f:66:51:cf:e2:f9:08:b9:c9:a6:3a:0e:14:cb:
56:f2:69:61:8c:dc:3d:39:74:36:1e:49:b0:9f:36:
c6:d1:c4:74:a0:98:9d:19:f4:cb:55:8e:79:35:05:
a9:66:87:ce:a4:b0:32:66:e2:c6:63:0f:dd:a2:32:
b1:52:20:36:d1:e6:3f:e8:1f:9d:8e:76:18:57:8e:
9e:2f:9d:d7:c7:d9:82:25:4b:45:71:ff:0c:f4:4f:
fa:c7:fd:b9:a6:d4:4d:5e:43:a1:03:b6:80:67:18:
8c:ce:1a:70:3a:56:25:03:c0:a7:51:59:59:be:5d:
d6:3e:6d:76:0a:be:b6:6d:8c:25:9d:79:d3:fc:f3:
0e:a8:bd:0a:38:87:c7:b8:fe:a1:cf:f1:36:74:4b:
e7:9d:0f:d6:d3:63:67:79:83:12:82:2c:ea:a0:98:
f5:9e:26:17:f8:8c:72:63:83:8a:6d:7c:af:67:5c:
08:82:64:14:43:7e:3c:b6:0b:38:a9:55:07:1a:a7:
7e:cd:64:84:2c:e8:01:51:75:f5:dc:c8:67:85:5a:
fb:e3:a3:af:a3:b2:9c:97:18:af:89:a6:7c:86:a1:
65:8d:42:a9:08:46:d0:6f:f2:2c:c2:f5:7e:cd:e3:
73:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:FD:BE:4A:23:1C:AC:5E:BC:85:40:91:DE:FE:0B:70:DA:86:52:31
X509v3 Authority Key Identifier:
keyid:43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:4e:52:ad:84:f0:f4:aa:30:4a:bb:7d:96:a8:9d:2c:b1:dc:
6a:b7:3e:43:76:fb:d0:04:ac:25:25:62:e9:aa:1c:4f:9b:e1:
b0:ea:12:7f:01:64:8d:d5:98:29:34:30:63:3c:30:10:41:9e:
63:40:c2:85:8f:c4:85:8c:83:0b:70:53:75:0d:67:d5:03:46:
76:e0:fa:fa:c5:0d:8a:3e:8f:7a:80:7d:29:11:91:7b:f7:48:
c8:e4:3c:6b:39:c5:3e:ea:33:3f:aa:0b:3d:6f:52:60:ea:23:
17:b1:6c:17:9e:2a:f4:35:f5:16:9e:29:ea:25:36:ce:f9:ee:
2b:5c:eb:ac:63:16:2e:8f:04:0a:6e:d7:34:a7:a0:a1:82:d1:
47:3f:98:ed:a0:1a:43:9d:60:1f:78:81:38:cc:f2:b2:f8:37:
2a:32:ec:33:cf:95:42:46:47:33:7e:f6:8c:f4:d3:ee:39:c6:
ed:90:0b:88:c9:aa:f8:04:f9:71:66:fc:1e:94:7c:68:50:95:
07:a0:35:e2:6b:2c:51:f1:54:b2:c9:6b:42:3a:56:d0:ec:b0:
1f:88:24:bd:86:66:f0:93:1c:8e:d9:f2:f2:cf:6f:1b:ff:78:
4f:02:98:ae:95:d3:f2:b8:98:13:b3:5f:98:f7:c0:1a:d5:12:
e7:eb:7b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:38:00 2025 by rpki-client