Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
File: qyt5QmiS7R2nsuYYZ3DPsErmA80.mft (raw, json)
Hash identifier: 0wBAN0EYhnheO92ZdgKyTjK0ByHDwi2tSMwmBgnMGBE=
Subject key identifier: C9:DA:2C:25:43:32:0B:49:00:BA:07:5D:49:27:76:61:71:7E:23:94
Authority key identifier: AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
Certificate issuer: /CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Certificate serial: 0199228C7ECB4B84B6D843BB99B8EC8CF148
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
Manifest number: 0917
Signing time: Sun 07 Sep 2025 05:00:56 +0000
Manifest this update: Sun 07 Sep 2025 05:00:56 +0000
Manifest next update: Mon 08 Sep 2025 05:00:56 +0000
Files and hashes: 1: qyt5QmiS7R2nsuYYZ3DPsErmA80.crl (hash: +c08ZqyeP9661gHSO+YNzeIzns03R4E7MS/JaygmW68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:7e:cb:4b:84:b6:d8:43:bb:99:b8:ec:8c:f1:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Validity
Not Before: Sep 7 05:00:56 2025 GMT
Not After : Sep 8 05:00:56 2025 GMT
Subject: CN=c9da2c2543320b4900ba075d49277661717e2394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:28:84:63:89:51:87:35:e6:0e:b8:2a:f3:76:
20:3c:ff:81:b5:f5:d4:25:ad:56:3d:bc:6d:74:63:
82:46:64:68:d2:47:e9:84:47:7b:cc:13:66:67:82:
66:49:55:7e:7c:e9:8f:54:cc:b9:a3:fd:42:ed:fb:
e9:11:a3:0f:b9:06:0f:67:6d:a3:ee:28:2e:49:16:
bc:d6:48:f7:73:c9:9f:98:70:a0:94:32:df:5e:cc:
4a:2e:da:60:0b:f3:37:67:df:c5:a3:e2:0c:41:9c:
21:a7:df:a5:e5:4c:21:00:10:09:34:8b:ca:f7:f9:
ed:f6:66:70:ee:b2:4d:a9:6d:2b:d2:50:6f:8a:78:
d5:fd:d7:c0:ff:29:2b:b9:6c:9b:8b:a0:96:8d:58:
59:df:f1:22:40:bd:55:2b:fc:c0:4e:19:81:10:4d:
81:3a:12:27:1e:d1:3d:9d:16:ba:eb:09:bc:9c:3c:
ad:c2:21:34:fd:5f:4f:8c:b2:77:c3:a6:d3:ac:7c:
f4:23:b6:a0:29:a3:e4:38:d9:42:0a:7a:f7:0c:3d:
ff:9e:54:1a:28:da:2d:dc:4a:c8:81:1d:20:38:37:
80:2a:0b:39:df:97:f5:bf:7a:94:b0:8f:84:57:fc:
17:26:ea:db:2c:99:3e:04:54:c8:15:df:e9:81:c8:
0b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DA:2C:25:43:32:0B:49:00:BA:07:5D:49:27:76:61:71:7E:23:94
X509v3 Authority Key Identifier:
keyid:AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:0e:57:72:27:1c:fa:e1:e4:d7:7d:76:45:05:9d:1e:f8:01:
2b:f2:1d:28:c2:f6:0c:d3:cf:b0:4a:dc:3b:ad:08:dc:f6:90:
df:44:b4:f7:d9:40:69:04:fe:69:4b:cd:43:0c:21:b1:30:20:
5d:41:1a:c1:33:af:6b:a9:e9:81:84:ca:67:eb:fb:7b:96:5e:
69:6d:aa:a9:df:b2:c0:15:ef:41:7a:af:6d:a6:77:5d:52:c5:
f5:37:46:80:af:cc:24:dd:b6:5c:8d:bb:b9:3b:f1:44:2b:28:
da:0d:43:18:05:d3:4b:9c:49:17:fe:58:92:a7:23:92:c0:e1:
23:7c:47:6a:83:53:e2:1d:3d:73:ef:c4:7e:a3:fa:24:7e:2d:
0f:5b:94:f1:03:17:75:b7:3c:f0:48:4b:da:ab:fd:b6:f3:b2:
b5:86:a4:53:b9:c0:8d:71:33:73:ef:c2:39:96:b7:01:5e:f5:
91:87:00:44:c7:cc:7f:d6:6b:79:26:01:82:6c:be:c1:ee:ce:
59:15:09:7d:27:f8:06:6d:d7:b2:6d:28:83:40:cf:9e:8f:8d:
e8:e0:fb:08:fc:f2:03:3f:85:0f:45:e9:b0:98:57:f5:d1:09:
e9:28:71:f1:37:66:33:11:3e:70:27:03:74:3c:2c:f3:80:ac:
47:4a:33:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:32:54 2025 by rpki-client