Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: sI10dJNSjCqpBOnlReBQSTU27+dGFE8wzQoGxAVqJfA=
Subject key identifier: 48:04:A1:C4:3C:A3:58:FB:C0:ED:85:20:0A:00:49:4C:6B:34:E1:A3
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 019A5151274D189F69B401D5CC01D873E0B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0D01
Signing time: Wed 05 Nov 2025 00:01:03 +0000
Manifest this update: Wed 05 Nov 2025 00:01:03 +0000
Manifest next update: Thu 06 Nov 2025 00:01:03 +0000
Files and hashes: 1: 0SSsSk3JYtZfVKoUdIXep-skUls.roa (hash: lo1rRlcKmSiP/o5fsPXMsNzyze1q/0lfZDjTXaH15HI=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: /x0WyIy22p7PRTIp9w3hk6PIZAn9IUS3jSndtE5Joss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:51:27:4d:18:9f:69:b4:01:d5:cc:01:d8:73:e0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Nov 5 00:01:03 2025 GMT
Not After : Nov 6 00:01:03 2025 GMT
Subject: CN=4804a1c43ca358fbc0ed85200a00494c6b34e1a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c7:dc:83:a5:41:e5:28:95:e1:86:cb:e5:8d:
3d:76:86:7c:55:ff:9b:e0:1f:9c:99:9d:2a:f0:36:
44:0c:fa:76:32:f8:6e:8a:7d:49:bd:62:19:59:1e:
f6:53:71:4f:2a:f0:90:4d:45:e5:11:4d:1f:30:60:
08:f5:1d:6e:be:6a:d6:02:b4:3c:d3:b0:c9:79:57:
b6:54:71:53:75:f1:33:85:8c:75:0f:1e:e1:9b:77:
b5:df:fd:de:1d:3f:b2:75:e1:6d:52:bb:da:cf:bd:
ad:1d:56:62:f5:80:f5:73:95:41:b3:a5:23:17:50:
1c:fb:0b:2e:ee:62:c2:7c:4e:c7:13:cb:67:84:25:
a6:f5:20:5a:0b:29:82:a9:a0:5c:d8:6a:06:3e:b5:
9d:04:fd:ba:f0:94:aa:21:2e:79:5a:8d:22:54:27:
f8:f3:31:22:64:63:8b:79:f8:cb:27:4b:8c:d0:58:
86:fc:ab:5b:c2:aa:96:cf:7c:35:3a:62:b1:a5:76:
0f:03:2b:69:51:39:c9:d4:0a:fe:67:70:01:66:94:
d6:a1:7b:2c:a4:ac:8d:2c:94:b8:29:6c:f7:66:59:
7f:e4:5d:fb:ea:35:2e:24:02:07:90:a9:96:02:55:
b6:58:69:57:15:63:33:19:68:12:90:4e:44:c0:78:
ad:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:04:A1:C4:3C:A3:58:FB:C0:ED:85:20:0A:00:49:4C:6B:34:E1:A3
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:65:f9:fe:47:da:95:45:45:71:15:aa:43:aa:15:b1:af:4c:
1e:a7:5f:11:ee:3f:05:ff:c9:a4:87:3b:9c:e5:73:85:de:75:
ab:65:b7:03:a7:b2:37:e0:5f:2a:79:da:1d:ca:18:d0:ae:ed:
47:0f:53:fc:94:3f:d2:cb:89:a4:6e:95:6b:01:c9:bb:3f:20:
be:cb:da:6a:aa:8d:8f:5e:6d:61:f2:0a:d8:6c:4c:e8:96:92:
85:1c:1a:cd:27:d4:91:f3:c2:06:25:5a:15:08:d5:5e:07:e8:
42:3b:ea:9f:9a:89:d4:88:42:50:a4:d9:52:fe:0a:02:d4:41:
9f:dc:66:e4:6e:88:e7:e1:73:3d:ab:be:e5:9f:51:cf:01:b6:
dd:20:83:c6:b0:ad:a9:55:d3:fc:52:34:78:3c:0b:58:40:61:
d4:20:02:7e:14:25:11:ca:64:6f:e1:99:69:be:99:62:43:5e:
19:7a:6e:a8:58:b7:6b:9b:d1:a6:65:8e:bc:4f:c7:63:4c:d1:
5e:05:71:b2:95:30:c6:eb:0f:ff:22:d1:3b:a1:86:db:86:1b:
2c:9d:65:fe:1f:de:6b:81:de:87:95:11:fe:f9:cc:b2:2b:59:
ac:58:b8:cd:b4:b6:66:ad:77:0b:3b:ab:fd:74:8d:bb:52:1e:
da:55:ba:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:17:34 2025 by rpki-client