Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: r/Fg8vcdZAaXh2JuZUwIpKIo1WDW5YwdUaqsCa66nKM=
Subject key identifier: E2:4E:DA:61:65:41:4D:59:E0:0C:28:10:A4:07:DB:21:6E:34:F1:71
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019A4D3D2238339DB782C7D18BF018D6FC11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 169E
Signing time: Tue 04 Nov 2025 05:00:43 +0000
Manifest this update: Tue 04 Nov 2025 05:00:43 +0000
Manifest next update: Wed 05 Nov 2025 05:00:43 +0000
Files and hashes: 1: UkqG3VMYAz9uABWF42sKAydGWoA.roa (hash: /dg3EZ5BvktCoE6vyv9z5Q4gql01gT6XeimrmuNAS5k=)
2: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: C4ucacOWQYxPeMtJkXXCDS4OXMPZTtyeNTW2ub4HoQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:22:38:33:9d:b7:82:c7:d1:8b:f0:18:d6:fc:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Nov 4 05:00:43 2025 GMT
Not After : Nov 5 05:00:43 2025 GMT
Subject: CN=e24eda6165414d59e00c2810a407db216e34f171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f5:0b:05:32:38:59:57:45:2f:a3:33:90:de:
4d:f2:27:3f:72:a5:1e:25:af:48:c8:c1:5c:e7:6a:
04:8f:7c:1f:19:21:62:b3:c5:a4:54:3a:cd:0d:0f:
db:4b:ee:98:ef:30:9e:d6:27:98:2f:17:47:40:3b:
eb:d2:31:72:64:fe:37:02:5b:60:61:ff:9b:c0:9f:
09:9a:da:c5:6d:4c:c2:74:1a:11:3e:03:0a:87:2d:
e0:72:3e:2b:77:b1:0c:86:b5:37:1f:3f:93:b4:c5:
13:a6:e3:60:15:bf:12:93:82:f1:54:56:6e:b6:6d:
18:56:b5:6c:76:f0:df:03:3a:e2:3f:8b:87:17:0f:
56:77:f3:a6:84:52:09:70:2c:a2:c8:e3:40:00:7b:
35:70:62:39:51:a7:4e:d6:3d:dc:f3:6a:31:0c:5c:
e7:fc:2e:a9:94:4f:60:35:e9:b2:ca:75:f8:df:71:
3d:1c:2e:6d:3e:ab:50:38:89:49:dd:ce:a0:f9:44:
85:72:27:f4:8e:6e:b4:0f:06:22:9a:9b:48:bd:5b:
2f:7b:96:ca:4e:13:44:fc:f6:19:3f:35:ed:62:0f:
da:a8:28:21:d0:f5:cc:aa:94:32:0b:8f:f8:1c:15:
4f:97:6d:f8:a1:26:41:2e:3f:03:b1:dc:b0:cc:e1:
8f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:4E:DA:61:65:41:4D:59:E0:0C:28:10:A4:07:DB:21:6E:34:F1:71
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:6f:c9:3d:20:fb:3f:f0:c4:9c:61:df:46:00:fe:8f:89:77:
4e:da:7a:dc:a8:76:89:4f:a5:14:ef:0a:4f:45:e9:30:a7:2d:
e3:57:d1:e7:88:be:f4:56:70:e1:99:7d:4e:f4:c7:b5:16:c1:
b0:4a:93:29:08:f0:ff:58:b6:b0:57:45:4d:de:1b:2d:1e:a4:
7f:6b:1f:91:26:84:d9:27:5d:d6:19:ef:94:82:37:a5:82:54:
9d:11:71:00:61:e8:d7:d2:03:6d:62:a1:5c:7f:a9:b2:95:2e:
b0:1f:08:72:94:01:e4:6a:e3:6d:de:1d:13:58:5c:10:bc:3b:
50:aa:91:b0:f2:a7:9b:c3:69:1d:92:b0:50:42:ca:d6:4c:64:
b8:38:cb:ed:ae:bf:ba:7e:3e:00:46:b7:26:4c:ad:85:c1:6c:
23:a5:66:80:60:5e:9d:2e:5c:5b:7b:78:82:d5:da:16:96:b0:
66:39:ee:71:9d:90:94:73:5d:eb:8d:0d:64:12:cd:2c:0e:9e:
bf:07:78:21:5f:7a:c8:e2:86:f9:5a:72:de:b2:f8:88:33:89:
8c:e8:80:cd:22:0e:fe:95:38:05:3e:5d:c4:21:2f:38:c8:48:
07:43:5f:0f:ef:cf:e5:f9:0d:d3:50:98:aa:62:ae:5a:26:e2:
9a:d0:01:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:15:55 2025 by rpki-client