Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
File: qbdbZNXaF9cLur2BGjmmAt2vljo.mft (raw, json)
Hash identifier: kPG0OuLQnnRnZXroEsYV+pmD98T7pZf5DtoWZN+Ofa8=
Subject key identifier: 53:05:B8:29:B2:02:9B:ED:5A:9F:1A:BB:D4:BD:94:45:64:D2:BC:44
Authority key identifier: A9:B7:5B:64:D5:DA:17:D7:0B:BA:BD:81:1A:39:A6:02:DD:AF:96:3A
Certificate issuer: /CN=a9b75b64d5da17d70bbabd811a39a602ddaf963a
Certificate serial: 019A4EBD53BF5DDBB2A174C32B94A0452C3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
Manifest number: 1717
Signing time: Tue 04 Nov 2025 12:00:21 +0000
Manifest this update: Tue 04 Nov 2025 12:00:21 +0000
Manifest next update: Wed 05 Nov 2025 12:00:21 +0000
Files and hashes: 1: Q1epDLLNnUzfsf-xFW4a-Y2XkJQ.roa (hash: w84BOAfcBqYsqabALnnfg1Wuoyv3VSmyIx6zia+PYNA=)
2: gLJC-FPMB6JG4uvuoXfj1y1VVB4.roa (hash: bJcY81wfY+5zVAZK4pJVEqgscj1+3rGIYBuBLom9f1Q=)
3: j51vgTDCax1tLhOyiZp4zqvzOKU.roa (hash: bN88IoNu8hIQldCCMN1vfnD2HLAoTn8gvr6w/tzj/KM=)
4: qbdbZNXaF9cLur2BGjmmAt2vljo.crl (hash: NMN6Myinqmq6U2YMAVZDCsmLGz0/hyCiJZNzcmVai28=)
5: z5yYOxFSpOQ1zd8dnbyl44cA2Cc.roa (hash: rTNzicdR5UxEu+zSwQpGpaPQg7acnJ6eKVlTT5jJQ8s=)
6: zG5x_Fm1P67jb96qcZkE3Ol2eTY.roa (hash: db5+QXNKRG2BQO2CHQMOqU0fUStvszTNPuMXFPPnliI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 12:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:bd:53:bf:5d:db:b2:a1:74:c3:2b:94:a0:45:2c:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9b75b64d5da17d70bbabd811a39a602ddaf963a
Validity
Not Before: Nov 4 12:00:21 2025 GMT
Not After : Nov 5 12:00:21 2025 GMT
Subject: CN=5305b829b2029bed5a9f1abbd4bd944564d2bc44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ab:cb:80:9f:66:2c:70:43:8c:e6:93:ee:06:
95:79:a1:d8:cd:73:05:b2:31:a5:7a:6c:92:96:b4:
a9:74:ea:f6:45:1c:42:3b:7c:02:e2:cf:aa:91:01:
86:d4:61:28:95:b2:c3:01:ed:21:26:fb:8b:4c:ad:
c6:38:30:26:c8:c2:37:57:54:ed:43:66:38:56:9a:
d3:2a:b8:e8:3b:17:c6:75:b6:9f:7a:a2:3b:4b:ad:
f4:a7:68:2d:72:01:32:11:d9:cf:14:13:29:77:83:
0e:72:61:24:8b:95:78:a6:ad:70:61:e0:0c:51:55:
57:5e:d8:31:66:17:f1:5a:32:2e:22:aa:2e:e4:78:
fb:b5:2f:f0:e5:17:a9:e2:98:37:2c:3c:d7:c6:8e:
53:84:3b:e5:88:96:80:69:b8:d7:e3:96:cf:3b:7e:
6d:fc:a9:2d:51:fa:9a:e3:33:a3:d8:08:ab:da:54:
c2:7a:2d:ca:24:fd:8a:42:3e:4d:93:5c:0e:5f:37:
5b:e7:f2:c7:b8:08:d6:c0:f6:8b:92:08:e7:45:8a:
8e:a6:ca:5b:e2:20:f3:00:d3:98:cc:3e:64:ea:6c:
cf:29:25:3f:41:06:61:58:5b:90:77:41:ba:c4:c0:
6e:4f:1d:3b:3a:1d:a7:30:a9:1c:68:28:69:0a:87:
72:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:05:B8:29:B2:02:9B:ED:5A:9F:1A:BB:D4:BD:94:45:64:D2:BC:44
X509v3 Authority Key Identifier:
keyid:A9:B7:5B:64:D5:DA:17:D7:0B:BA:BD:81:1A:39:A6:02:DD:AF:96:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:9f:f5:e1:b3:78:cd:d8:ce:fd:e6:dd:25:a2:75:a8:1e:bc:
ef:db:5d:88:ad:ca:c6:d9:c6:51:1d:e6:d1:5c:89:84:15:80:
9b:1b:bd:45:32:c8:eb:e6:c1:6a:66:27:da:cd:83:4a:0e:b2:
9f:77:87:96:3a:5d:69:03:1d:cf:4d:5b:bf:17:80:4f:56:41:
9d:fe:fa:e7:26:68:84:96:e2:d9:89:0a:71:b0:05:60:20:b5:
f1:5f:ef:c6:48:12:83:04:af:4a:0d:5d:20:61:13:93:5d:27:
35:55:06:6d:88:b5:0d:28:11:e1:d2:be:9a:79:4e:97:7e:0c:
ac:97:c5:7b:9e:f8:b5:c9:d1:c7:e6:a8:ed:e1:3c:3f:f2:92:
78:90:82:bf:38:d5:36:81:9c:a2:e4:d9:ce:2f:a3:62:4c:e4:
1a:70:66:38:05:f8:8d:22:4b:56:f8:06:a8:3e:59:32:13:e4:
56:d6:e3:eb:c0:49:7a:b9:8a:52:52:6e:51:7b:25:19:a3:8a:
a8:fb:a9:2b:04:b6:10:52:67:28:65:d9:43:e7:a6:a1:03:d8:
45:e3:72:b2:5c:5c:8d:2b:5a:4b:80:61:be:c3:c4:61:8a:3c:
a6:52:db:7a:26:d1:de:fc:87:85:4a:67:74:77:f4:2f:29:9e:
9b:0d:74:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:41:18 2025 by rpki-client