Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
File: qS25uA37nJVniwfvLJU9YxB_X2I.mft (raw, json)
Hash identifier: A/86zYDFujQ968FGimwlPWFV4v9CGzwt4xAPGO8VX6Y=
Subject key identifier: E6:33:7B:43:D2:9A:7C:E5:11:BF:C0:51:09:95:56:81:ED:4F:7B:62
Authority key identifier: A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62
Certificate issuer: /CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62
Certificate serial: 019A4E19001B81A212B9C7144BE8C3880016
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
Manifest number: 096D
Signing time: Tue 04 Nov 2025 09:00:52 +0000
Manifest this update: Tue 04 Nov 2025 09:00:52 +0000
Manifest next update: Wed 05 Nov 2025 09:00:52 +0000
Files and hashes: 1: qS25uA37nJVniwfvLJU9YxB_X2I.crl (hash: 2AF54uIWo2defzhHY5vxYYJsesgFvrUaLGIaRSjOKLI=)
2: u2PcO0qxdpMSmR6nWgSSQ3nTHEM.roa (hash: hawJL7X7ALdqooYTS/10qneIqHecH3wASpMJDU35WRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:00:1b:81:a2:12:b9:c7:14:4b:e8:c3:88:00:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62
Validity
Not Before: Nov 4 09:00:52 2025 GMT
Not After : Nov 5 09:00:52 2025 GMT
Subject: CN=e6337b43d29a7ce511bfc05109955681ed4f7b62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:50:fe:cf:c9:ea:ad:47:00:3d:e5:ca:61:41:
a0:64:4c:42:74:b8:c2:da:be:54:f1:59:e5:f7:48:
e5:88:50:26:db:76:de:31:ff:e7:b5:78:38:35:06:
34:52:52:77:58:2a:19:62:38:89:1b:1a:5c:1c:00:
df:8a:f1:1f:a6:f5:c6:28:28:a5:cb:61:ab:1f:d0:
a6:d0:9a:95:18:f2:6f:eb:5a:bb:a9:7e:db:dc:a6:
c4:e8:9d:0f:b4:f6:48:6c:25:94:13:71:88:dd:f3:
e1:9f:80:f5:48:c9:c3:15:4f:17:10:db:35:5b:a3:
5f:78:6d:96:f9:80:26:76:fa:63:00:9c:3c:68:68:
9f:17:01:f6:b0:20:bb:ba:0b:db:fc:0f:30:bb:86:
c0:b5:db:10:47:9c:af:d5:58:99:f9:f1:7b:7a:a0:
ea:19:7d:da:bc:ed:62:6a:87:c4:14:e7:4f:01:62:
a3:2d:ff:ae:0e:90:bc:26:b4:c9:e2:29:cf:16:ec:
aa:16:7b:4c:77:27:64:96:f7:30:9b:20:cf:00:52:
19:44:cc:6c:a2:97:5f:a8:cb:90:8c:50:19:ce:2e:
20:6b:3f:45:39:56:4f:ed:1a:d3:eb:d6:3c:f5:8f:
f0:da:14:2e:e2:c6:38:a2:b5:42:df:f1:5b:ad:a1:
92:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:33:7B:43:D2:9A:7C:E5:11:BF:C0:51:09:95:56:81:ED:4F:7B:62
X509v3 Authority Key Identifier:
keyid:A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:07:8b:73:70:cc:82:ac:00:88:8f:6f:45:f6:e6:bd:bc:7a:
6a:36:61:9f:e9:8a:75:b4:2f:3b:75:10:0e:4d:be:4c:58:f2:
67:84:a3:26:4e:62:be:79:86:b2:88:17:3c:4b:d0:7b:ec:b7:
a6:0d:cd:96:62:6d:ca:53:81:a5:6e:98:1e:d8:e0:ed:75:f9:
f1:bb:52:9a:cf:af:0f:c3:fa:e1:07:8b:fb:47:1a:00:2b:34:
a4:cc:00:d4:85:60:dd:25:f2:1e:ad:3c:7d:a0:ce:cc:02:99:
ff:62:39:64:51:14:74:69:26:41:43:3a:67:3b:55:f3:eb:e4:
ab:df:b3:b3:7c:82:74:b7:34:04:44:06:e6:41:29:b7:5c:8f:
b8:78:8d:7b:22:f9:8a:e3:56:f7:33:c8:2a:05:e3:d0:5b:e4:
d4:77:7a:e4:c0:a5:a0:01:ba:23:e4:ff:5c:8d:83:19:14:c5:
3e:e3:24:94:ef:d2:9c:80:3f:c2:e9:2e:26:33:e2:59:8a:8f:
da:67:7d:ed:0e:7b:a9:b8:11:c6:26:3b:81:02:eb:cf:3c:5a:
df:9b:3e:06:8c:97:d0:57:f2:45:e7:91:d2:4d:d6:17:8a:05:
fa:f0:dc:2c:a5:23:72:f7:30:fc:03:c6:2c:55:00:98:85:34:
eb:32:11:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:59:12 2025 by rpki-client