Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
File: qoXGfyIwng2EwwtUJSlyUyhgUVE.mft (raw, json)
Hash identifier: 5GUCDLbAqHYEo0RDo0wKzSijWREaFqKtGQLCC4dQlnc=
Subject key identifier: FF:C4:20:50:DE:C5:6A:69:CC:46:C5:E1:C7:5F:77:B4:15:63:EE:07
Authority key identifier: AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
Certificate issuer: /CN=aa85c67f22309e0d84c30b542529725328605151
Certificate serial: 019A4D07A4EA18C83E33C9586E8B3AA9480D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
Manifest number: 0D8D
Signing time: Tue 04 Nov 2025 04:02:17 +0000
Manifest this update: Tue 04 Nov 2025 04:02:17 +0000
Manifest next update: Wed 05 Nov 2025 04:02:17 +0000
Files and hashes: 1: U6h0E3CpWcLE4IcpdPD5N0_flWE.roa (hash: /MeOIU5IzJfeECJ9wAs+zMCbOflzuiKPgRuM31+tyrU=)
2: qoXGfyIwng2EwwtUJSlyUyhgUVE.crl (hash: m11Lz1qC+Cd9NlPq9yPmfu23frz4jkobkwCQZh6SvHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:a4:ea:18:c8:3e:33:c9:58:6e:8b:3a:a9:48:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa85c67f22309e0d84c30b542529725328605151
Validity
Not Before: Nov 4 04:02:17 2025 GMT
Not After : Nov 5 04:02:17 2025 GMT
Subject: CN=ffc42050dec56a69cc46c5e1c75f77b41563ee07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:06:61:f8:6c:47:75:73:4e:8e:c2:a1:3c:c5:
13:80:73:88:12:87:76:32:6a:e2:3e:b1:a9:0b:2b:
d7:8b:79:f1:b6:19:a9:7c:8f:85:1a:f7:bc:03:bf:
55:08:13:48:e2:4c:9c:c0:66:48:2d:fc:c7:87:70:
36:20:aa:55:f1:12:3c:88:08:fe:d2:5d:3a:eb:6a:
fd:10:06:74:13:c4:02:41:dd:55:20:46:c8:e8:b8:
20:fb:83:4f:23:f9:5f:2e:eb:e2:92:50:09:b3:95:
b0:c2:f5:1a:65:be:35:47:db:51:92:84:4a:6d:7b:
b9:9a:d3:a8:57:91:01:67:f5:07:b4:43:70:39:91:
88:e1:4b:46:eb:5b:dc:ee:28:be:e4:23:54:f2:1d:
76:46:dc:41:62:32:2e:4d:60:b1:d4:5a:d4:4a:42:
31:5b:60:62:cf:60:da:fd:f3:c5:e8:41:1d:15:29:
bd:f4:71:4c:83:1f:52:75:0d:08:1e:c8:3b:7b:20:
13:8f:f2:a7:c6:ea:f9:88:f4:4c:27:91:13:3a:9e:
6c:36:dc:81:d8:04:16:32:3f:1a:fe:74:de:78:ec:
42:88:b4:ad:f2:fb:e5:d6:f6:53:d4:bf:b3:4b:ac:
ce:93:0d:80:a4:16:b7:f1:c7:6a:ba:3b:69:d8:52:
74:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C4:20:50:DE:C5:6A:69:CC:46:C5:E1:C7:5F:77:B4:15:63:EE:07
X509v3 Authority Key Identifier:
keyid:AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:8a:98:6f:78:27:92:ec:76:50:db:52:c3:aa:85:44:ea:a5:
87:f1:93:47:f2:9d:e8:e6:c5:14:28:81:c9:0f:5b:b4:ee:c8:
10:82:5f:fb:e3:99:95:35:f2:05:32:1e:3b:69:c9:15:92:e7:
3e:d5:28:2d:d4:94:8b:e3:88:5e:cc:0b:89:bc:3e:91:57:de:
ad:24:28:f2:68:73:72:03:43:36:37:73:47:1f:c3:f7:d4:bc:
bd:24:d0:14:d4:38:b5:c1:1c:c8:3f:1c:20:7e:9e:60:85:e2:
a0:82:1c:b5:e6:8a:ba:87:7c:42:bf:45:ad:b8:53:df:2d:58:
2a:23:ed:2d:61:28:3e:b6:1a:f1:58:52:57:80:ab:97:8e:5b:
c3:1f:81:03:a5:9f:3d:c7:46:fa:28:1d:45:2a:e2:84:3d:5f:
05:1a:9d:5e:33:1a:73:5a:f8:a4:a5:77:8a:82:fe:21:b3:10:
c3:fd:11:88:6f:e1:77:5b:0c:c8:84:6b:fc:98:3e:d7:57:46:
98:a2:9d:9e:d6:2f:a4:a8:ff:b0:17:95:a3:17:0a:2d:e7:8d:
7d:47:38:65:f3:77:bf:9e:9d:9b:d2:9d:cf:77:1a:73:03:b3:
22:2e:f3:49:b6:4a:24:f0:3c:58:f1:da:92:8e:e1:3f:76:11:
1f:0f:70:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:05 2025 by rpki-client