Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
File: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft (raw, json)
Hash identifier: Tt/98gLTVyLhCLXxMSTS598jIDv0SDd1ivDH2oD1X0E=
Subject key identifier: A8:C6:B0:58:85:8F:5C:7D:2F:61:F7:81:44:5E:BF:0B:D0:9C:2A:F7
Authority key identifier: AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
Certificate issuer: /CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Certificate serial: 019A4D73834A19A91F12D2EC2E333C3846F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
Manifest number: 1107
Signing time: Tue 04 Nov 2025 06:00:06 +0000
Manifest this update: Tue 04 Nov 2025 06:00:06 +0000
Manifest next update: Wed 05 Nov 2025 06:00:06 +0000
Files and hashes: 1: 1Z36oEX0lkx8ndMTGV0SwL3pu6s.roa (hash: oLjRdDjCa874D2Ohi+4lYwxZSVZ663VZAUA47G0Sbic=)
2: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl (hash: UMQQdhh+iKiQz3uOgMK+oAR45oFMIw1/Jxer/pzCVWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:83:4a:19:a9:1f:12:d2:ec:2e:33:3c:38:46:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Validity
Not Before: Nov 4 06:00:06 2025 GMT
Not After : Nov 5 06:00:06 2025 GMT
Subject: CN=a8c6b058858f5c7d2f61f781445ebf0bd09c2af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b5:06:f7:62:6e:76:7e:db:72:33:74:f2:46:
5f:5e:d4:ae:4f:72:6f:82:55:34:43:d1:7b:08:52:
57:f5:b4:e2:30:c2:07:57:31:c1:92:d6:7e:d7:f0:
6c:54:f4:ae:93:f4:6c:33:be:fc:d9:3c:78:73:13:
13:ed:fe:e8:fc:46:c7:b3:a5:9a:9b:ee:84:cf:c4:
fb:2c:8f:31:d6:30:cd:6a:e2:61:31:8d:c8:78:d2:
b9:fa:ad:61:98:7b:df:01:47:7f:9e:5c:32:01:5f:
bd:a1:3b:58:dd:98:42:35:de:a2:fd:27:bf:17:15:
9b:a1:a6:84:79:96:0f:11:95:5a:7b:a4:24:05:a2:
14:63:92:36:f2:c3:fd:c0:d6:ce:dc:3d:73:36:c6:
95:09:74:a1:ed:7c:c4:d7:c1:7b:c7:ff:7f:ea:bf:
d8:6c:c1:d9:a1:f2:5f:07:89:9c:34:9c:88:ed:a2:
9a:4b:48:c2:a5:ca:4f:64:7b:55:84:45:cb:1a:72:
bf:95:32:73:9a:1e:8e:ed:d4:44:9d:10:b6:93:df:
c5:0e:b8:b7:ae:d2:47:3a:c3:5d:a6:f9:c3:0f:7a:
f9:e1:2a:c1:3f:0f:45:73:35:12:ab:92:d5:ec:42:
d3:e4:56:c5:f0:53:04:ce:79:49:65:96:e6:d0:15:
33:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C6:B0:58:85:8F:5C:7D:2F:61:F7:81:44:5E:BF:0B:D0:9C:2A:F7
X509v3 Authority Key Identifier:
keyid:AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:7a:c1:e8:53:b9:fd:6d:47:2d:b4:1e:aa:e6:ea:e1:83:fe:
86:5f:4f:e0:73:69:e3:3f:06:6a:67:69:8e:68:cb:96:c2:6a:
31:46:a1:26:51:95:67:45:13:bf:d6:e0:c3:7f:d0:13:c1:55:
b4:80:86:67:2b:1d:1d:b6:5c:be:b9:15:00:32:5e:54:f4:6d:
83:5b:07:2c:01:fc:06:5e:3d:53:01:6d:22:3c:ec:93:41:28:
64:f4:60:09:d3:7a:8a:a4:74:0e:88:a5:59:3a:d7:48:a8:b7:
ec:42:88:71:4f:61:40:f1:11:de:40:58:40:10:31:73:b0:f6:
4a:9a:23:bc:e1:6a:09:04:6e:96:ee:60:7a:03:45:b2:ef:0b:
2f:5f:c8:76:f0:74:b7:09:2e:71:03:ff:81:dc:c2:14:3e:0a:
e0:f4:f4:ac:5e:8c:c0:4f:97:1a:b1:7e:be:da:3c:be:3e:22:
3e:24:7c:3c:24:18:63:93:ae:3d:fc:60:17:b9:73:96:17:ae:
90:0c:d6:07:58:2b:0f:17:8c:ea:57:bd:42:fe:de:ad:78:33:
7d:68:a6:f8:9f:0a:b5:e4:4a:30:c1:d2:3f:83:8f:b8:22:43:
d9:c7:24:5a:b1:64:d7:11:d0:a1:2a:a2:49:75:3a:c2:59:70:
cc:1f:4b:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNc4NKGakfEtLsLjM8OEbxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlYTg0ZDdlNjRiYTNlODViNTcwMzZjNzMxOGY5M2NjM2Q5
NGQxODcwHhcNMjUxMTA0MDYwMDA2WhcNMjUxMTA1MDYwMDA2WjAzMTEwLwYDVQQD
EyhhOGM2YjA1ODg1OGY1YzdkMmY2MWY3ODE0NDVlYmYwYmQwOWMyYWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLUG92Judn7bcjN08kZfXtSuT3Jv
glU0Q9F7CFJX9bTiMMIHVzHBktZ+1/BsVPSuk/RsM7782Tx4cxMT7f7o/EbHs6Wa
m+6Ez8T7LI8x1jDNauJhMY3IeNK5+q1hmHvfAUd/nlwyAV+9oTtY3ZhCNd6i/Se/
FxWboaaEeZYPEZVae6QkBaIUY5I28sP9wNbO3D1zNsaVCXSh7XzE18F7x/9/6r/Y
bMHZofJfB4mcNJyI7aKaS0jCpcpPZHtVhEXLGnK/lTJzmh6O7dREnRC2k9/FDri3
rtJHOsNdpvnDD3r54SrBPw9FczUSq5LV7ELT5FbF8FMEznlJZZbm0BUzcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKjGsFiFj1x9L2H3gURevwvQnCr3MB8GA1UdIwQY
MBaAFK6oTX5kuj6FtXA2xzGPk8w9lNGHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnFoTmZtUzZQb1cxY0RiSE1ZLVR6RDJVMFljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xNTdmMWUtN2NmOC00ZDk4LWE5MjQt
OTdjMzMyZjcyMzlkLzEvcnFoTmZtUzZQb1cxY0RiSE1ZLVR6RDJVMFljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8xNTdmMWUtN2NmOC00ZDk4LWE5MjQtOTdjMzMyZjcyMzlk
LzEvcnFoTmZtUzZQb1cxY0RiSE1ZLVR6RDJVMFljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV3rB6FO5
/W1HLbQequbq4YP+hl9P4HNp4z8GamdpjmjLlsJqMUahJlGVZ0UTv9bgw3/QE8FV
tICGZysdHbZcvrkVADJeVPRtg1sHLAH8Bl49UwFtIjzsk0EoZPRgCdN6iqR0Doil
WTrXSKi37EKIcU9hQPER3kBYQBAxc7D2SpojvOFqCQRulu5gegNFsu8LL1/IdvB0
twkucQP/gdzCFD4K4PT0rF6MwE+XGrF+vto8vj4iPiR8PCQYY5OuPfxgF7lzlheu
kAzWB1grDxeM6le9Qv7erXgzfWim+J8KteRKMMHSP4OPuCJD2cckWrFk1xHQoSqi
SXU6wllwzB9LkQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:53 2025 by rpki-client