Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
File: Q8FllZZq-wus8deTfyRdagUiIaM.mft (raw, json)
Hash identifier: 2RzTrQ21B45kNRmBxIO+dIQZXKJo7VlQE5AEEe571rs=
Subject key identifier: B8:33:07:6D:DF:F8:2E:0F:85:6C:F0:B1:A2:46:E5:B0:DA:8F:54:59
Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3
Certificate serial: 0199269FEF28726C3A26AE09D1D148B03FC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
Manifest number: 1675
Signing time: Mon 08 Sep 2025 00:00:39 +0000
Manifest this update: Mon 08 Sep 2025 00:00:39 +0000
Manifest next update: Tue 09 Sep 2025 00:00:39 +0000
Files and hashes: 1: 52v68hN6UT4PPJjjqq1uuE_KUSs.roa (hash: /ZapQrg7UEXSt0NcWwZ+kj+0zgSiaiRBd7g+qhPDHBg=)
2: 8S9ibO6esCTeLY2sD14WhmMZOvI.roa (hash: bmTNDF41Sq+c7Se/EWf8YA8iGIHNg20TI2zfC/lGrO0=)
3: Q8FllZZq-wus8deTfyRdagUiIaM.crl (hash: 5oE8gbW4OGNTyN0YvRHV6SovF2X82Bkyd+XGILBzMxw=)
4: WvCj9VbsFj7fqJOx6tk2wit_WpE.roa (hash: /cLe2CDT0v+6sDR4E14KbBpNPCZZWPI/9CgtItdZn+0=)
5: a5Civ4TQY8vU2rue9PuRjdGc5Mc.roa (hash: QP4yk7Jx/AL7wrs9Y5ybfTghTEkjk/U3Nsn5OFbBsqk=)
6: gqvKWohVcj0Z7jlOtSMQwdCwp3g.roa (hash: hvyUYeos7vf6+TZ2NgvLPFstgzyNO3xqXZO7/gB/Dow=)
7: i6WUIDE1FurqyNNZ1EYEHsIVqvc.roa (hash: n8PwD1+DrWnTVld/M9MqGCrSY8HTEouEds18pHnIKJc=)
8: ih3tlDmlbrDwbuabWdJCxXWHffo.roa (hash: 80OP5bzoyzQkUOxJ3u7VzQr4QzoK9uZZaNU7fzcue8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 17:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:26:9f:ef:28:72:6c:3a:26:ae:09:d1:d1:48:b0:3f:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3
Validity
Not Before: Sep 8 00:00:39 2025 GMT
Not After : Sep 9 00:00:39 2025 GMT
Subject: CN=b833076ddff82e0f856cf0b1a246e5b0da8f5459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:13:b8:82:10:24:27:1c:62:98:c8:d8:0f:fb:
55:57:19:53:d5:9f:4a:cb:34:ae:4d:a4:94:5a:f5:
46:d0:79:99:76:ba:d4:30:de:c4:ac:a9:31:ac:a9:
dc:58:d9:63:e0:f7:9b:5a:be:e0:5a:27:4f:d7:f3:
c4:48:6b:f8:fb:cb:58:30:bc:2d:0f:30:ef:5d:0b:
19:63:d3:38:52:ac:02:2b:58:f4:7f:cb:ce:f5:64:
33:32:18:7e:05:35:8e:df:f8:55:30:4f:e9:84:96:
94:0a:ee:b6:a2:68:97:ba:cf:b0:b1:3a:2c:87:59:
6f:1e:aa:8a:f4:95:93:12:35:ee:0a:ee:b1:69:83:
95:43:2f:1a:39:7e:cb:3b:1a:5a:76:a7:ff:96:b1:
39:be:94:76:4e:7a:8e:3c:14:e7:11:e3:e1:aa:79:
47:c5:15:eb:23:c4:d0:7e:0e:0f:97:7b:36:a0:61:
6e:17:56:cb:81:19:f1:ac:d9:37:af:41:cb:6a:a6:
71:d9:20:85:bb:11:c9:ea:15:4f:40:24:56:9a:60:
b4:e8:f7:66:0c:44:e5:52:c7:67:ac:d9:16:8e:8b:
73:e1:34:88:3c:ad:b5:ea:c3:d6:ae:93:0d:e0:00:
71:12:f1:fd:b9:19:eb:bb:f5:e1:84:6c:73:f3:3e:
94:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:33:07:6D:DF:F8:2E:0F:85:6C:F0:B1:A2:46:E5:B0:DA:8F:54:59
X509v3 Authority Key Identifier:
keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:ce:29:fc:14:5c:a3:a7:7c:7e:1e:39:97:b6:05:30:6b:4e:
d3:ec:11:2d:3c:e6:88:59:77:18:57:bd:0d:34:20:5c:32:e9:
7d:ed:3f:55:a4:56:06:a6:ca:db:18:23:ab:05:b3:0d:73:9d:
0b:c7:bf:7a:0c:d6:c7:6f:05:5d:e8:5e:76:50:9f:4a:8f:d5:
5f:1d:ff:2b:31:d0:31:39:8a:6e:f5:7c:f3:18:be:be:f0:8c:
31:e7:99:c9:0d:ff:56:62:e6:66:5c:7c:7d:f6:05:4f:23:63:
aa:8c:37:ee:43:82:87:96:9c:23:ea:96:e4:37:26:43:4f:29:
e7:39:03:d7:d9:ad:9b:c4:cd:1c:b3:b9:e0:eb:5d:7c:99:2f:
83:77:4b:40:2e:a5:e7:47:65:ac:48:f2:d4:f6:a5:d2:38:95:
31:6f:e4:1b:7d:0c:57:e2:f9:ef:82:a4:8b:fd:be:8d:09:34:
64:6d:0b:8a:07:47:4b:75:82:e3:e7:f1:d4:43:f1:72:85:6f:
b5:ca:8d:8e:cf:11:33:a2:2d:ee:24:26:5b:e3:1a:ab:35:40:
9c:39:91:76:78:a9:d0:d3:87:3a:94:bb:21:e0:da:33:f9:06:
79:22:c9:a9:ae:17:62:31:ea:d6:e4:9b:6d:35:74:93:2b:48:
8b:d4:6b:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 02:03:02 2025 by rpki-client