Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: G0GzrG4yPYFdVCp83eL/WY72KE85BLISWSYOaiOlRHs=
Subject key identifier: 0B:22:A3:BF:12:28:EB:78:C4:FB:B5:3B:E7:18:BC:4D:E5:F0:0E:6B
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 019A7293611670CFC71349634FF21EACBC89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 041A
Signing time: Tue 11 Nov 2025 11:00:52 +0000
Manifest this update: Tue 11 Nov 2025 11:00:52 +0000
Manifest next update: Wed 12 Nov 2025 11:00:52 +0000
Files and hashes: 1: Lh_NKL7D2mWFyhzHGugt5SgY5Oo.roa (hash: DjvsQWCGurUIzxMM5VASKrLIiSf6rVM8+QHojBeXG6I=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: hiut4gn2wyiAcDxwu9Alhwm67d6feg0H3gzbpB6dMuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:61:16:70:cf:c7:13:49:63:4f:f2:1e:ac:bc:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Nov 11 11:00:52 2025 GMT
Not After : Nov 12 11:00:52 2025 GMT
Subject: CN=0b22a3bf1228eb78c4fbb53be718bc4de5f00e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:77:43:b5:b7:0e:3a:4b:02:5f:43:79:6e:a6:
3a:a1:4d:e3:13:cd:be:a2:ea:3d:82:32:53:80:c1:
f6:3d:39:d6:fa:78:de:ad:4f:79:c6:ac:74:74:9c:
d7:a8:cd:76:29:d5:bb:e8:67:1e:1e:85:2a:9b:e1:
0f:9e:03:fc:b9:77:a4:51:6e:cd:59:e8:3d:f1:d3:
1e:cc:0f:5f:e1:9a:1e:b7:aa:b5:6b:b7:7c:5e:28:
dd:8e:38:8c:cb:c3:e2:c7:d1:cd:2a:b6:8e:8d:6b:
ee:03:88:7a:dd:55:a4:6a:e6:fa:50:52:dc:0a:43:
1a:83:0b:28:8a:fa:c4:40:5a:37:61:5a:59:2c:06:
c0:51:d1:51:4d:e6:f6:ad:ba:74:c0:0f:0d:42:27:
c8:62:7c:8f:89:15:39:38:e6:34:b2:d1:3e:af:1c:
fa:2c:f3:7a:a0:a5:80:98:4a:a5:2f:c9:b8:02:dc:
af:19:8a:42:76:31:6c:94:78:d8:d6:11:33:c8:f3:
07:0b:1e:ac:df:0c:69:d8:cc:61:45:0e:65:b2:ab:
86:0a:d9:b5:66:45:3c:70:84:75:25:98:fe:3d:36:
e0:f5:fd:ef:50:3e:41:6e:e0:a9:86:ad:84:e2:db:
cc:ae:d8:44:75:d0:f6:e4:f8:c4:dd:04:00:d7:ab:
48:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:22:A3:BF:12:28:EB:78:C4:FB:B5:3B:E7:18:BC:4D:E5:F0:0E:6B
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:d9:e2:7a:ba:24:ad:42:d4:1f:33:20:91:81:2f:68:1b:9b:
3f:77:7a:f5:32:15:c7:47:9d:2d:ed:7b:c3:ac:69:b2:4f:d1:
96:e1:4f:e9:61:64:44:b6:9f:69:09:bb:d9:cb:99:8e:fe:52:
59:3a:dd:77:9f:2b:4f:c8:41:30:df:d3:d4:ca:d9:88:87:ad:
6e:e9:98:21:35:92:f9:63:b7:06:07:40:45:64:7c:31:46:19:
d2:6e:3e:ee:d0:43:7d:0d:7a:0f:d3:c4:78:0e:24:83:72:ef:
fc:a8:d4:a7:7e:a4:f5:29:68:7f:53:3f:bb:14:70:74:5c:f0:
07:e3:12:48:17:69:74:82:0d:e7:e7:3b:ae:84:0f:85:c5:1c:
ad:10:41:24:08:c4:8e:63:96:fb:e3:61:a2:f4:f7:9a:01:33:
cf:b3:ca:60:4d:3b:e4:46:f4:7b:04:9f:13:2e:0f:46:df:bc:
90:3f:ea:1c:85:8d:2e:5d:ae:e1:ad:3e:09:5c:ce:a1:6b:a6:
db:66:a2:e4:62:99:48:cc:f9:c9:f0:50:c8:dd:9c:47:26:d4:
0f:a0:ad:87:d0:f5:96:bf:43:9d:47:b1:ea:95:1e:bd:7a:c3:
26:02:15:41:61:52:92:41:8c:1d:de:91:e7:0a:f1:c9:d4:15:
de:3c:38:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:39:12 2025 by rpki-client