Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier: GmQHaKqRpfDUQQ7rNhrR2eLC7OKrQIiaUJDi7UQlgzs=
Subject key identifier: 65:A1:AB:F0:84:E1:F4:F2:52:DB:AA:45:87:31:75:ED:BD:2A:BD:C7
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 019A4E190EEF0643D37D69ACF78DAC625ECC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 09:00:56 +0000
Manifest this update: Tue 04 Nov 2025 09:00:56 +0000
Manifest next update: Wed 05 Nov 2025 09:00:56 +0000
Files and hashes: 1: KE4XnKQhqPguqlRYcxIoqo981UE.roa (hash: az71zExo8C/1i/65qlceZGsCGShh0tDnt7kF10fzzW0=)
2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: S10u78qKtqfaja0TuzhObp2Y1/mstUxGWoWsKMI6MoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:0e:ef:06:43:d3:7d:69:ac:f7:8d:ac:62:5e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: Nov 4 09:00:56 2025 GMT
Not After : Nov 5 09:00:56 2025 GMT
Subject: CN=65a1abf084e1f4f252dbaa45873175edbd2abdc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e2:a8:dc:ba:98:ec:80:af:62:3d:a2:a1:e4:
51:ee:ac:0f:2b:29:64:e8:29:15:8e:cf:54:a5:e9:
f8:e5:e8:36:ef:f2:85:8f:68:07:ad:52:7a:b5:24:
e8:dc:84:d6:79:77:7b:49:e7:e5:d6:24:dd:74:e4:
a0:06:dd:c5:2c:ee:a2:5d:15:c4:7c:ed:5c:6a:34:
cf:d2:af:ed:2f:44:0c:61:44:fe:50:5e:84:71:ee:
ef:d7:6f:e1:6c:d7:d9:2b:3e:63:4c:a9:1c:a8:b0:
b0:c2:5b:c1:b6:4a:d8:41:53:4e:1d:6e:fb:1f:a6:
d9:84:90:79:91:8f:ca:6e:a4:b4:cf:4a:55:f7:5a:
93:88:a0:67:4f:45:89:4d:5e:96:9d:48:d7:c2:4b:
d2:04:f5:79:49:32:e6:74:fe:da:96:31:70:ce:c7:
4f:5f:3b:54:2c:52:49:28:a8:27:e8:ef:a9:c4:f6:
5f:01:52:aa:97:c3:3b:40:f1:5d:1b:05:f0:2b:cc:
fb:3d:a9:df:36:0d:b9:db:83:28:28:9d:9f:28:df:
b6:9b:4c:f5:81:09:37:2a:eb:eb:c9:d1:78:42:27:
30:d0:42:8b:4b:93:f0:16:c2:80:d0:97:b3:b2:a7:
50:fb:b0:a1:ab:c5:e9:20:ba:ed:37:86:7b:1e:78:
5f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A1:AB:F0:84:E1:F4:F2:52:DB:AA:45:87:31:75:ED:BD:2A:BD:C7
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:27:65:88:03:81:57:e2:55:dc:42:01:ea:31:ab:6b:dd:c4:
b7:31:ba:3f:f6:c8:51:7b:b4:71:ab:f0:79:cd:46:61:15:5f:
82:ef:ca:f8:16:c8:8d:ce:45:51:59:3c:71:3b:2d:92:68:3d:
7a:32:94:3e:97:65:db:62:25:45:e4:af:19:63:15:c9:81:2a:
90:7e:b5:f0:3c:12:07:07:2a:8c:77:9b:88:e6:72:f2:fe:05:
bf:07:1f:89:95:c7:a1:10:a3:8a:17:f3:13:13:af:e9:9b:11:
70:46:e0:bd:93:ae:5c:36:98:0f:32:11:e1:a0:f3:d4:ab:7f:
5e:02:2f:29:88:19:d9:7e:95:55:8f:c8:3f:48:61:51:e1:a5:
63:36:c7:21:5c:56:84:69:a3:8b:00:ec:d4:57:06:ef:16:c6:
94:4b:68:03:03:9d:4f:18:87:c6:a5:57:a3:3d:7d:7f:98:18:
c8:c9:9e:14:e6:9d:dd:63:61:6e:bb:35:47:2b:27:ef:0d:3a:
76:3c:6e:04:49:ca:53:b6:39:ab:24:ae:50:bd:db:df:97:30:
43:99:ac:2e:85:84:43:1d:cc:57:7e:36:47:49:4e:fd:5b:93:
1f:cb:6e:68:f0:66:9c:6e:ac:33:33:07:54:aa:fb:d0:24:c8:
67:ae:9d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:00:11 2025 by rpki-client