Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
File: mq5G4hNZMNomjAZNzlrbtjoM7DY.mft (raw, json)
Hash identifier: mQVRmnKrA9NIcf0yRX/uXAvEmQN8YftYYKPUKL/RM+o=
Subject key identifier: C3:4E:E3:78:F2:7E:40:61:E9:27:DE:2D:37:6E:20:44:9F:6A:D3:89
Authority key identifier: 9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
Certificate issuer: /CN=9aae46e2135930da268c064dce5adbb63a0cec36
Certificate serial: 019A71B7FAE54CF817727CB3D76B999C7676
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
Manifest number: 10EA
Signing time: Tue 11 Nov 2025 07:01:13 +0000
Manifest this update: Tue 11 Nov 2025 07:01:13 +0000
Manifest next update: Wed 12 Nov 2025 07:01:13 +0000
Files and hashes: 1: STbkSsaZ4h0iV7Ywpice3xeLm7Q.roa (hash: OYYfvGM7goZ9gxelNf2ly9w5B8haX1abcCwOvQfYiPk=)
2: mq5G4hNZMNomjAZNzlrbtjoM7DY.crl (hash: uJxbhEwGXqVH+2EDuGKWpHllgPP2vRfEdDYy2BoD+58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:fa:e5:4c:f8:17:72:7c:b3:d7:6b:99:9c:76:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aae46e2135930da268c064dce5adbb63a0cec36
Validity
Not Before: Nov 11 07:01:13 2025 GMT
Not After : Nov 12 07:01:13 2025 GMT
Subject: CN=c34ee378f27e4061e927de2d376e20449f6ad389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:93:ea:b2:05:d5:bd:17:e4:87:02:b2:59:1a:
84:bf:a2:c4:bb:1f:05:65:68:7f:f1:d6:3e:90:83:
45:3d:6a:e3:e3:47:62:17:6c:d3:c4:f7:d3:64:b1:
f4:46:a8:a1:b6:dc:02:b6:1a:8e:9a:fe:f4:92:ce:
6a:8d:8c:ac:9c:be:80:8b:20:fe:26:75:81:29:55:
e3:41:20:cf:42:e7:6a:7e:e1:92:cf:12:81:f5:83:
49:00:8d:5c:98:28:d2:e7:1f:29:d9:ab:54:eb:be:
58:09:ee:f3:49:33:47:c0:a6:17:f1:0e:34:0a:ca:
87:a5:f5:07:43:66:49:3f:07:fc:45:d7:cd:6f:2c:
17:73:be:0c:96:a9:e3:8d:ea:80:93:98:4a:18:6c:
e1:89:04:fc:a3:b1:1a:0a:96:f3:7e:1c:a4:68:80:
58:ac:32:83:8c:67:fa:55:fb:8c:ab:57:41:ba:dc:
f0:4b:40:52:35:68:35:b9:95:17:bb:78:47:2c:05:
7c:ef:a3:0c:fc:74:f8:0f:d5:6e:91:d3:59:a6:7d:
1b:3e:61:b6:5b:80:95:73:23:ee:41:b5:c9:a6:b3:
64:83:97:f5:a8:d9:c6:ea:1b:c7:eb:8e:b8:19:eb:
50:9e:f8:60:5c:4d:d6:66:2f:97:96:d6:dd:6a:08:
26:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:4E:E3:78:F2:7E:40:61:E9:27:DE:2D:37:6E:20:44:9F:6A:D3:89
X509v3 Authority Key Identifier:
keyid:9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:e1:89:b4:70:b7:90:a1:17:4a:29:a8:64:d9:4f:86:cc:dc:
4c:2c:fb:42:cb:8f:81:ab:ae:80:5b:e9:7d:99:a0:09:69:73:
ee:7f:dc:18:a4:21:f7:58:33:7b:3d:31:9d:f8:a1:35:ae:78:
24:4f:f4:d8:91:68:9e:4b:9d:9c:22:06:47:bb:3c:69:18:d1:
1e:56:cd:42:ee:c2:1e:fe:70:3a:9e:d4:c0:75:3f:ab:66:6f:
71:06:9e:50:14:3a:09:b2:4e:2e:b8:eb:69:b9:0e:bb:2c:2e:
13:7e:8e:bf:67:9c:bd:d6:26:c5:be:f2:c4:3b:b1:e3:fb:27:
7b:06:15:fb:2f:5a:2d:37:e1:e8:4f:dc:ee:1a:27:c0:b2:ed:
60:39:79:04:28:70:70:36:e8:a9:1f:5f:b5:6a:10:61:e0:30:
d7:ce:7d:22:93:8a:2c:75:41:fa:a5:53:04:bb:9e:66:96:9e:
0c:85:1e:1b:57:6b:39:48:22:2a:95:a7:d0:59:16:df:4a:c2:
8a:cc:bf:97:bb:bc:46:d8:72:7b:a0:a7:97:d6:42:24:8b:b9:
59:03:16:c1:20:5b:51:37:c2:b9:1b:01:2f:ac:47:4d:88:40:
ff:57:73:f9:76:9e:cf:05:c4:ff:cc:51:59:ce:aa:dd:cc:15:
fc:1e:14:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:06:17 2025 by rpki-client