Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
File: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft (raw, json)
Hash identifier: kXr2hcCEkjpLuGpRRadw5dMXLQDx7essq80ojXxFaDQ=
Subject key identifier: 12:3F:DE:FC:A9:2B:19:6B:5D:94:F9:39:A4:D2:4D:9D:D2:08:D0:F4
Authority key identifier: 42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16
Certificate issuer: /CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716
Certificate serial: 019A4F62A2E076DBB435D9AD0B723E9B1229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 15:00:55 +0000
Manifest this update: Tue 04 Nov 2025 15:00:55 +0000
Manifest next update: Wed 05 Nov 2025 15:00:55 +0000
Files and hashes: 1: 83F_Jp7hhNkTyKzmQu0uAqQ-Hug.roa (hash: /GIKVjlq0TkCjqFIvHfnkG7+yghgu5kkQctxwrpV6qw=)
2: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl (hash: DLVJgz2EjDU4kUcaT5pHanx/16k+FcnnJp7u3DmxhRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:a2:e0:76:db:b4:35:d9:ad:0b:72:3e:9b:12:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716
Validity
Not Before: Nov 4 15:00:55 2025 GMT
Not After : Nov 5 15:00:55 2025 GMT
Subject: CN=123fdefca92b196b5d94f939a4d24d9dd208d0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e1:f6:09:ce:a5:40:25:60:62:52:91:34:9e:
41:24:f3:76:6b:6a:7f:32:12:80:0a:79:c0:3b:20:
6b:72:f1:93:0b:4d:1a:e2:15:96:fc:35:83:a5:db:
24:40:9e:c3:c3:57:1e:1e:04:e5:be:0a:85:54:2e:
0c:08:35:5e:f9:d0:a5:dc:0c:8c:33:ad:1d:4c:5a:
97:13:c3:c1:2a:62:64:4f:6f:2c:1c:7d:8b:94:c5:
7b:78:13:67:f7:b4:be:02:af:b2:6f:6e:87:78:d6:
98:ed:86:f0:e5:b6:6d:8d:d5:e0:11:8b:14:0f:fb:
4d:59:34:fb:d3:30:a8:0a:5c:47:45:5d:73:a8:04:
96:c5:98:80:79:1b:43:88:cc:33:d1:1b:11:b1:c8:
5e:7f:b4:2d:a8:cc:19:32:2e:07:f6:8b:51:ea:4c:
aa:84:96:65:bd:f9:e6:ef:a7:82:b9:88:f5:24:89:
cb:f7:c1:84:13:83:ee:19:94:7d:5b:a3:df:0b:86:
a2:d8:46:ac:76:a2:9d:8f:6a:fe:9c:88:15:c7:58:
23:50:db:f8:28:c8:ea:4a:ec:5a:19:46:67:d4:9a:
5b:a9:0a:e3:e4:4b:82:6f:88:d4:85:14:fe:04:eb:
56:20:02:bd:62:af:03:6c:ee:2a:4d:60:17:bf:45:
6d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3F:DE:FC:A9:2B:19:6B:5D:94:F9:39:A4:D2:4D:9D:D2:08:D0:F4
X509v3 Authority Key Identifier:
keyid:42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:05:09:14:2a:17:91:9a:97:f2:f5:49:be:17:f0:2f:f9:36:
e0:69:59:e7:2c:9c:31:8f:ef:6d:5a:c6:10:05:f6:49:52:80:
53:4e:9e:1f:0f:ce:3b:b4:11:34:3c:1e:92:92:d4:ed:ea:e2:
79:89:54:0f:2e:50:d6:7e:eb:24:82:fd:17:d9:a3:b6:19:2c:
f8:d7:cd:bb:ed:90:26:0a:f5:8a:13:d2:55:65:60:25:ab:ff:
4c:39:e6:92:8a:a3:84:22:e7:45:99:8a:f6:62:5e:1f:05:61:
64:c6:20:60:97:bf:13:7e:6a:de:65:2e:65:c8:9a:b1:8d:5b:
53:24:d5:24:9b:01:21:3a:34:bd:99:02:f8:55:21:7c:70:ab:
d0:33:e8:c0:9b:e5:b5:d6:b1:fe:ae:f5:54:d9:2e:59:90:82:
22:d5:2e:e6:35:79:13:82:7b:fe:96:cd:ee:ae:5d:1a:d8:db:
79:16:d2:2c:aa:ad:11:6a:54:dc:7e:a9:b3:79:e9:87:55:83:
1b:9c:9e:28:2f:05:a4:56:8f:2e:67:16:74:c4:3a:d1:69:41:
9b:d6:1f:05:26:33:89:a4:60:ba:49:17:0e:bb:21:6b:4b:51:
ae:86:21:3b:b2:69:d9:2b:25:b8:e3:80:bb:bb:6a:4e:ee:98:
6b:64:db:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYqLgdtu0NdmtC3I+mxIpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyNGZkMWEzYTAyNThkY2NhNjdmYzlkZGRiZjRlMzYxNTdl
NmE3MTYwHhcNMjUxMTA0MTUwMDU1WhcNMjUxMTA1MTUwMDU1WjAzMTEwLwYDVQQD
EygxMjNmZGVmY2E5MmIxOTZiNWQ5NGY5MzlhNGQyNGQ5ZGQyMDhkMGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOH2Cc6lQCVgYlKRNJ5BJPN2a2p/
MhKACnnAOyBrcvGTC00a4hWW/DWDpdskQJ7Dw1ceHgTlvgqFVC4MCDVe+dCl3AyM
M60dTFqXE8PBKmJkT28sHH2LlMV7eBNn97S+Aq+yb26HeNaY7Ybw5bZtjdXgEYsU
D/tNWTT70zCoClxHRV1zqASWxZiAeRtDiMwz0RsRschef7QtqMwZMi4H9otR6kyq
hJZlvfnm76eCuYj1JInL98GEE4PuGZR9W6PfC4ai2EasdqKdj2r+nIgVx1gjUNv4
KMjqSuxaGUZn1JpbqQrj5EuCb4jUhRT+BOtWIAK9Yq8DbO4qTWAXv0VtmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBI/3vypKxlrXZT5OaTSTZ3SCND0MB8GA1UdIwQY
MBaAFEJP0aOgJY3Mpn/J3dv042FX5qcWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MTM3NTItYjhkYy00ZGZmLTg2Njct
NzQ3YjBlNTdhYjVlLzEvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS85MTM3NTItYjhkYy00ZGZmLTg2NjctNzQ3YjBlNTdhYjVl
LzEvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAwUJFCoX
kZqX8vVJvhfwL/k24GlZ5yycMY/vbVrGEAX2SVKAU06eHw/OO7QRNDwekpLU7eri
eYlUDy5Q1n7rJIL9F9mjthks+NfNu+2QJgr1ihPSVWVgJav/TDnmkoqjhCLnRZmK
9mJeHwVhZMYgYJe/E35q3mUuZciasY1bUyTVJJsBITo0vZkC+FUhfHCr0DPowJvl
tdax/q71VNkuWZCCItUu5jV5E4J7/pbN7q5dGtjbeRbSLKqtEWpU3H6ps3nph1WD
G5yeKC8FpFaPLmcWdMQ60WlBm9YfBSYziaRgukkXDrsha0tRroYhO7Jp2SsluOOA
u7tqTu6Ya2TbRQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:25:15 2025 by rpki-client