Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
File: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft (raw, json)
Hash identifier: 1AgCKMpcu/f+g/vWpgtZruu7H2Q9GwZI7hkmYHgdJ7E=
Subject key identifier: 79:DB:2B:42:88:FB:B2:2C:90:DD:40:09:4E:BF:D6:DA:15:B4:66:CD
Authority key identifier: D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
Certificate issuer: /CN=d50697943676399ac5cac6a3e476545af0df49dd
Certificate serial: 019A4EF43D2B0ADECE3975B6BAA894CE8DCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
Manifest number: 0955
Signing time: Tue 04 Nov 2025 13:00:20 +0000
Manifest this update: Tue 04 Nov 2025 13:00:20 +0000
Manifest next update: Wed 05 Nov 2025 13:00:20 +0000
Files and hashes: 1: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl (hash: Enh6MmseJh2TT5BeJUTD1Q4QS1coRtgcuDPyyTrbG94=)
2: BoO9SwQEMHsLwB3D3d0QdThU64M.roa (hash: xEZ0t9PxPtT9JsjJCaQCvAAhYcQDNvD5JhyTg8dedDI=)
3: HUjG5wlXIs_S_8BTLmPoqHtpE_8.roa (hash: n0+Gv3Td1KV66vO7s/EA+fLLoF/hxd3hZyfSfNcw3NA=)
4: UNVV8q9mxHzj40ukB0dOp3qehFE.roa (hash: BXbVtWFAEKhtBygy5e3mBPkEaoCOBDieBmzKaOr8eAc=)
5: i9UroOeG3v0LQXKmV9ahi8I0w0c.roa (hash: WzgmOp30C9OQ/f6QU939qr7xdVO2Usi3fvlLxJ7jHeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:3d:2b:0a:de:ce:39:75:b6:ba:a8:94:ce:8d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50697943676399ac5cac6a3e476545af0df49dd
Validity
Not Before: Nov 4 13:00:20 2025 GMT
Not After : Nov 5 13:00:20 2025 GMT
Subject: CN=79db2b4288fbb22c90dd40094ebfd6da15b466cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:70:40:16:29:99:67:4e:b9:92:4b:1b:b6:a3:
5d:c5:03:ac:43:5d:9a:55:5a:7e:2f:d8:14:a0:04:
45:09:3e:da:b8:69:b6:9d:01:a6:76:42:7f:e9:c3:
69:c9:bd:fc:b8:c5:ec:dd:60:16:45:1b:42:90:b3:
f9:22:24:1e:69:36:af:69:6f:70:4c:96:34:1a:d0:
59:d7:3e:42:8e:82:4e:f1:f1:2b:5d:f9:5b:9a:50:
44:2e:ac:30:64:93:1d:2c:e0:a5:9e:e2:7e:a8:27:
52:65:d7:3a:3c:27:ad:26:87:f5:03:b3:dc:27:3c:
6a:6a:ee:0e:47:7b:e3:b2:8b:21:6c:3d:f4:e0:62:
c8:ac:0f:42:d4:d5:a4:91:de:76:cc:50:77:d9:09:
30:52:36:55:c1:81:9e:4f:6d:39:11:d6:c5:81:a8:
51:aa:01:27:92:d5:cd:b3:b3:7e:0b:ef:aa:58:e8:
52:91:65:8e:2e:a0:09:67:30:ed:2b:fa:50:bb:7c:
22:13:a2:7b:13:e0:3f:0f:6b:a3:4f:d6:4b:48:51:
37:08:f3:a6:f1:69:8f:e8:a7:1d:16:b8:09:05:38:
15:bd:27:4e:49:3b:35:e5:df:1b:88:a7:60:b3:55:
c8:40:c6:5f:ae:3d:2f:fa:9e:2a:02:66:55:3f:25:
76:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:DB:2B:42:88:FB:B2:2C:90:DD:40:09:4E:BF:D6:DA:15:B4:66:CD
X509v3 Authority Key Identifier:
keyid:D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:24:c4:07:de:c3:a7:bc:aa:94:30:15:36:80:28:b2:1b:7b:
01:a7:52:6c:06:c3:3f:c8:de:7e:06:d4:90:7a:e9:47:0c:7b:
dd:99:51:7e:ee:17:bf:8d:64:28:9b:62:d2:41:dd:25:ac:6e:
ce:b0:2e:63:80:3b:75:cd:fa:88:3d:66:3d:df:cc:43:2d:71:
e3:a6:de:0e:2b:c6:a8:18:41:8c:45:04:04:6d:9b:16:f8:62:
cf:ee:61:0b:16:96:b1:29:42:f5:1d:5b:7f:86:ed:7b:05:3c:
08:b2:c3:95:dc:eb:8b:29:38:a9:9c:6a:7b:9e:1e:1d:38:5f:
d7:e1:f2:d3:c8:f3:e1:97:7d:6b:f4:f8:51:d5:25:f0:09:be:
28:15:88:7b:9b:fb:f2:8d:ca:c1:e5:7f:5b:a9:b8:96:c5:35:
a6:35:62:35:08:3b:c5:18:21:62:64:a2:87:3d:57:24:92:3a:
38:67:ac:aa:88:bb:8e:81:b3:cc:30:db:89:2b:fd:52:b1:b3:
61:2f:83:da:f7:67:3a:f1:3e:c7:07:e9:3b:c3:17:93:40:c1:
e6:87:e2:89:24:03:18:03:6e:e0:43:6f:76:69:44:4a:d2:6e:
34:4b:b6:69:4d:20:60:f9:f2:6c:cb:5b:c7:3c:b6:bc:2f:80:
ee:73:08:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:47:32 2025 by rpki-client