Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
File: qF7VXxRNceZz5j9LdnDEE0TAlYA.mft (raw, json)
Hash identifier: lOtAgHYu/rqnGvqab+2rviX69XL6bL3SoN+Z51vTWv4=
Subject key identifier: 84:F4:E9:24:B1:79:18:37:51:DC:DA:29:7B:18:94:04:1D:2A:36:CB
Authority key identifier: A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80
Certificate issuer: /CN=a85ed55f144d71e673e63f4b7670c41344c09580
Certificate serial: 019A7301497453E8B853E92F285E49735D99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
Manifest number: 02AD
Signing time: Tue 11 Nov 2025 13:00:55 +0000
Manifest this update: Tue 11 Nov 2025 13:00:55 +0000
Manifest next update: Wed 12 Nov 2025 13:00:55 +0000
Files and hashes: 1: cT2eGd63Px5rG_L6GRT2XCwHH8E.roa (hash: +Vm6cesMvrKle1O+NFaMGbBUxTSdI75W5YWzhqJGopE=)
2: qF7VXxRNceZz5j9LdnDEE0TAlYA.crl (hash: wwiK5urO6apg9/lPuDDKBbu+nVylkxlDmG0PaIwsmQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:49:74:53:e8:b8:53:e9:2f:28:5e:49:73:5d:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85ed55f144d71e673e63f4b7670c41344c09580
Validity
Not Before: Nov 11 13:00:55 2025 GMT
Not After : Nov 12 13:00:55 2025 GMT
Subject: CN=84f4e924b179183751dcda297b1894041d2a36cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5e:0f:72:9c:93:81:13:cf:f9:65:59:8b:eb:
1c:ac:ad:1b:70:4a:b8:b6:b4:59:f3:58:7a:ff:09:
9c:34:81:14:1d:c8:e0:38:04:6e:ca:65:94:91:68:
40:07:03:77:d0:aa:fa:fa:fb:79:22:b5:26:08:04:
b9:73:f1:82:09:69:31:f9:60:58:2b:2a:9e:e7:90:
5b:2d:33:d1:54:00:86:49:44:97:2d:13:e7:5f:09:
14:b5:89:2d:75:df:fa:52:fc:56:c3:33:65:3b:cc:
20:6e:59:d2:6b:0f:10:e0:f3:68:b4:13:ce:79:3b:
a9:f6:97:41:db:30:a7:cf:02:fd:9e:ad:36:70:5f:
7b:7c:e5:54:a6:b6:a7:30:7b:ec:75:b4:2a:90:31:
84:56:62:7f:a2:77:2a:24:29:06:e9:2a:cf:fd:e1:
fe:c1:d6:99:db:88:15:5f:0d:8c:ee:6b:55:fb:17:
7d:f8:e6:40:0a:85:86:68:57:9a:02:46:95:3d:08:
51:63:3c:78:03:89:60:08:9d:09:b3:71:78:3d:36:
f7:bc:0f:a3:24:2f:92:a3:b9:17:82:8b:ae:b3:d1:
3f:65:79:32:25:16:7d:ca:ec:d7:60:a5:aa:1b:59:
45:e5:b7:b0:be:f0:6f:66:ef:23:ea:e4:b4:a3:f0:
99:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F4:E9:24:B1:79:18:37:51:DC:DA:29:7B:18:94:04:1D:2A:36:CB
X509v3 Authority Key Identifier:
keyid:A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:7e:d5:47:e1:f6:37:bf:91:15:33:49:11:89:79:71:77:66:
a5:3e:f0:03:b8:54:94:b9:27:05:eb:d7:58:3c:72:28:89:20:
14:49:75:e9:83:3e:37:38:12:dc:d4:69:ad:16:b9:08:53:e2:
c7:08:d6:74:dc:dc:c2:97:ef:78:7a:df:aa:00:91:4e:f2:c0:
c1:da:8a:e5:e1:14:1f:f8:e4:0c:5e:7f:12:17:e3:d1:a8:9a:
d4:70:8b:fa:3d:99:9e:ae:6b:11:00:7f:31:44:7a:4a:5f:f6:
66:8d:b1:e2:91:53:96:9b:83:79:07:f0:55:49:26:ac:e2:ae:
78:94:34:f0:8e:16:1f:29:12:c1:d6:8e:20:7b:05:25:b6:d7:
2f:d6:f5:db:5a:48:e4:e2:b1:45:18:68:d4:26:5c:26:fc:f1:
91:8c:2b:33:2d:f9:15:99:74:ad:fe:32:95:a8:b6:79:33:f2:
68:26:56:33:f6:51:53:16:0e:2c:3d:ad:7f:ce:15:f0:2a:44:
b9:01:ef:58:e1:66:0b:ae:33:e1:7d:ac:f8:d8:17:41:82:eb:
8d:3b:d7:51:28:a5:98:03:82:5a:e6:33:25:c8:0f:91:9a:9a:
2e:27:ed:dc:73:90:a8:fe:62:1b:11:23:7c:1d:3c:09:2c:38:
e2:33:29:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpzAUl0U+i4U+kvKF5Jc12ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NWVkNTVmMTQ0ZDcxZTY3M2U2M2Y0Yjc2NzBjNDEzNDRj
MDk1ODAwHhcNMjUxMTExMTMwMDU1WhcNMjUxMTEyMTMwMDU1WjAzMTEwLwYDVQQD
Eyg4NGY0ZTkyNGIxNzkxODM3NTFkY2RhMjk3YjE4OTQwNDFkMmEzNmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzV4PcpyTgRPP+WVZi+scrK0bcEq4
trRZ81h6/wmcNIEUHcjgOARuymWUkWhABwN30Kr6+vt5IrUmCAS5c/GCCWkx+WBY
Kyqe55BbLTPRVACGSUSXLRPnXwkUtYktdd/6UvxWwzNlO8wgblnSaw8Q4PNotBPO
eTup9pdB2zCnzwL9nq02cF97fOVUpranMHvsdbQqkDGEVmJ/oncqJCkG6SrP/eH+
wdaZ24gVXw2M7mtV+xd9+OZACoWGaFeaAkaVPQhRYzx4A4lgCJ0Js3F4PTb3vA+j
JC+So7kXgouus9E/ZXkyJRZ9yuzXYKWqG1lF5bewvvBvZu8j6uS0o/CZjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIT06SSxeRg3UdzaKXsYlAQdKjbLMB8GA1UdIwQY
MBaAFKhe1V8UTXHmc+Y/S3ZwxBNEwJWAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC83NDlkNzctZTk5NS00ODlhLTg3ZTAt
ZDAwYTEzYWFlNTQwLzEvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC83NDlkNzctZTk5NS00ODlhLTg3ZTAtZDAwYTEzYWFlNTQw
LzEvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAX7VR+H2
N7+RFTNJEYl5cXdmpT7wA7hUlLknBevXWDxyKIkgFEl16YM+NzgS3NRprRa5CFPi
xwjWdNzcwpfveHrfqgCRTvLAwdqK5eEUH/jkDF5/Ehfj0aia1HCL+j2Znq5rEQB/
MUR6Sl/2Zo2x4pFTlpuDeQfwVUkmrOKueJQ08I4WHykSwdaOIHsFJbbXL9b121pI
5OKxRRho1CZcJvzxkYwrMy35FZl0rf4ylai2eTPyaCZWM/ZRUxYOLD2tf84V8CpE
uQHvWOFmC64z4X2s+NgXQYLrjTvXUSilmAOCWuYzJcgPkZqaLift3HOQqP5iGxEj
fB08CSw44jMpSg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:37:03 2025 by rpki-client