Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
File: q2TJrlviZApf1pRYanBMo0wgh78.mft (raw, json)
Hash identifier: uRoM7stAGYjDjmw0x6v+vdxY3xeg2b8lwUss8d/cZX4=
Subject key identifier: 11:59:A0:92:5B:A3:29:B3:21:CF:45:35:22:CE:12:7B:75:BC:4B:0B
Authority key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
Certificate issuer: /CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Certificate serial: 019A52D25A6627AACB8A1DED9635F352602B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
Manifest number: 1710
Signing time: Wed 05 Nov 2025 07:01:48 +0000
Manifest this update: Wed 05 Nov 2025 07:01:48 +0000
Manifest next update: Thu 06 Nov 2025 07:01:48 +0000
Files and hashes: 1: JLsWf4ypDqy3C3Vznf4c_jhkWzQ.roa (hash: W+Y7OMJT6eANPHdTBze3RK40F6OnPRrXmssah9nRki0=)
2: q2TJrlviZApf1pRYanBMo0wgh78.crl (hash: R4uSD0fmGdRCRZ5TZiQ4/DSyPLCVePJzwC1AzOq8K1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:5a:66:27:aa:cb:8a:1d:ed:96:35:f3:52:60:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Validity
Not Before: Nov 5 07:01:48 2025 GMT
Not After : Nov 6 07:01:48 2025 GMT
Subject: CN=1159a0925ba329b321cf453522ce127b75bc4b0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ef:24:e9:13:e8:df:a0:e0:60:58:3a:25:61:
25:01:e6:0b:0e:67:3f:fe:df:be:6a:37:db:ad:53:
0b:3a:ab:7b:9d:d3:f0:19:a5:98:06:e5:55:68:06:
e4:7f:80:f3:70:14:72:99:9f:e6:b2:ea:3c:be:79:
a3:fe:8e:2e:98:7f:e4:a8:41:49:eb:95:cf:68:67:
8a:5e:82:f4:68:70:a5:5c:fa:04:9b:61:31:33:aa:
e1:b3:cd:70:bb:f3:bf:9e:21:3e:67:83:2a:d6:4c:
0e:3b:23:71:65:1c:c7:fb:4e:d4:bf:61:92:61:7f:
fa:99:26:9a:d1:98:5e:04:9e:0e:b3:50:35:dc:e3:
35:a0:ca:07:e8:a5:a9:5d:07:a8:b7:0e:97:bb:cd:
4b:51:4d:8c:e5:58:1b:7b:c1:69:c1:8d:d6:37:cf:
c0:f5:0e:93:32:e2:ea:b1:14:63:da:07:5d:e4:e3:
06:4c:c4:72:10:28:37:43:c6:f6:63:f6:1f:8b:ed:
39:66:9d:01:09:0b:4f:4c:f1:c9:6b:53:04:5d:fa:
ac:26:19:de:72:47:7e:83:84:0a:51:44:54:aa:1b:
4a:14:41:fb:07:e1:39:5d:41:db:71:fb:b4:90:15:
b0:70:98:f3:59:9b:a9:22:81:cd:79:04:00:81:87:
06:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:59:A0:92:5B:A3:29:B3:21:CF:45:35:22:CE:12:7B:75:BC:4B:0B
X509v3 Authority Key Identifier:
keyid:AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:ba:00:73:40:54:29:a4:52:81:80:03:5f:18:10:90:f2:06:
a4:76:60:ce:9a:9c:9f:3c:23:7d:6e:f0:10:2c:2a:fb:3c:e1:
a0:e6:f4:ba:55:71:4a:da:a9:b7:18:23:db:aa:4f:6d:1a:14:
c5:51:f4:6d:b6:05:4b:52:2f:19:cd:cc:36:28:2d:54:71:ce:
f4:22:28:e6:20:c0:e6:c7:b7:8a:f9:37:de:00:aa:4d:da:f4:
6e:5d:fe:11:8d:a3:4e:c6:21:74:95:f9:1a:d1:e1:97:d2:12:
a0:0c:e0:50:bc:7c:b7:23:54:ae:26:66:eb:e0:10:5a:e9:f3:
be:46:48:8c:5e:3c:f0:a3:bc:84:25:68:88:ec:62:77:48:a7:
be:db:58:6f:08:71:b6:94:6e:b0:95:82:04:9b:c8:a7:51:b3:
22:8f:e7:d5:e2:26:22:51:8d:24:b0:3b:2d:6e:8d:b0:f1:42:
33:95:a5:c6:47:dc:04:7d:45:4d:ca:91:08:c4:b2:0d:e3:c8:
5f:30:61:4a:92:6d:d7:69:3e:d7:cf:d7:99:58:e5:fe:cd:da:
c1:4d:92:52:ac:a4:3f:d2:d3:c1:d9:9d:ec:55:d2:1e:3c:77:
d8:51:85:c0:fc:e8:eb:81:44:60:d8:52:ef:e0:c0:fe:93:2b:
1c:df:7d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:35:46 2025 by rpki-client