Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
File: qYW1Uh0gkBiCR48PCUGWLD6clPo.mft (raw, json)
Hash identifier: N9Den/P4IM2qOdkgFcw9asQt41W/xbm63I31dcbM1CE=
Subject key identifier: 75:FD:54:60:F4:E1:44:77:D0:D2:21:42:F4:A1:F7:D1:2A:0E:58:D1
Authority key identifier: A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
Certificate issuer: /CN=a985b5521d20901882478f0f0941962c3e9c94fa
Certificate serial: 019A73380B2DE2C4D02B1FE27E7C23D3C300
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
Manifest number: 03A6
Signing time: Tue 11 Nov 2025 14:00:43 +0000
Manifest this update: Tue 11 Nov 2025 14:00:43 +0000
Manifest next update: Wed 12 Nov 2025 14:00:43 +0000
Files and hashes: 1: 5AKIjXxvlD1ejPdjcCa3GKRo67k.roa (hash: tQg1Hre7Hi5yVH1kQPOYLNbXNBUZ5paMSfhayTmbmmc=)
2: qYW1Uh0gkBiCR48PCUGWLD6clPo.crl (hash: iYQj9/g4tkDEwcMIBRqXFk2/r7l/qhlDNZt4zaDga1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:38:0b:2d:e2:c4:d0:2b:1f:e2:7e:7c:23:d3:c3:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a985b5521d20901882478f0f0941962c3e9c94fa
Validity
Not Before: Nov 11 14:00:43 2025 GMT
Not After : Nov 12 14:00:43 2025 GMT
Subject: CN=75fd5460f4e14477d0d22142f4a1f7d12a0e58d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3b:7f:bc:30:40:87:73:16:c2:c8:32:25:12:
80:7a:de:db:d8:a0:68:4f:2b:c7:ec:79:f7:1e:9a:
52:86:83:4d:3a:bc:53:1b:d2:cb:66:20:61:b4:fd:
eb:25:48:54:af:b1:8b:78:bd:af:e4:1a:a8:4a:fe:
27:44:aa:67:bc:7b:95:54:e4:2c:ae:d2:31:27:2a:
34:ca:bc:c4:d3:78:28:e2:c4:49:72:79:05:1d:02:
8a:38:71:c5:ce:d9:64:79:91:aa:e6:bc:8a:81:44:
ee:ea:2e:cd:34:fb:ae:8e:3a:8a:b0:44:64:a4:48:
e0:2c:32:10:7a:a6:20:1b:09:a8:00:3a:f8:a2:89:
f2:40:4c:4e:56:87:ec:f0:ae:36:f2:5b:d8:1d:dc:
9c:f2:35:dc:f0:da:3a:fe:4a:92:5b:c8:20:08:0b:
55:25:2f:f1:ea:08:a6:13:02:d3:4c:1b:d9:24:fe:
e6:da:48:d4:61:1c:cd:79:ae:f3:26:84:12:e6:8e:
5a:a1:22:ad:e4:9c:8e:fd:b6:31:97:f2:14:9c:b6:
91:37:0e:a8:1b:37:e1:8d:e7:e5:31:21:e3:94:a4:
d7:3b:63:64:5a:e7:8c:17:36:03:58:7e:0b:6c:7d:
8c:ed:bc:11:7e:0e:24:20:fb:d3:a1:a5:08:06:33:
52:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:FD:54:60:F4:E1:44:77:D0:D2:21:42:F4:A1:F7:D1:2A:0E:58:D1
X509v3 Authority Key Identifier:
keyid:A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5d:40:ad:49:56:f1:c3:a1:6f:c2:6d:c5:fa:58:07:13:eb:
50:d1:96:d5:1e:cf:90:6a:92:ce:3a:83:10:41:3f:36:53:c8:
c2:09:a9:cf:ff:75:f7:72:97:58:74:84:15:ae:79:91:9a:11:
9e:27:e3:71:0e:40:c1:05:7e:05:93:46:fd:c3:bc:e5:ca:7d:
17:3e:db:b9:86:a7:aa:91:87:1b:e5:bb:c8:41:55:f1:f1:fc:
cb:2d:78:66:4e:be:87:96:5a:c5:00:49:d3:9f:58:bc:98:54:
53:c9:a2:ad:1a:6f:45:ec:10:45:4c:17:64:e8:53:18:f2:91:
b7:19:51:e4:75:09:5c:0b:3e:f3:03:8b:e5:33:92:93:c4:1b:
79:b0:56:bd:99:40:d3:bc:51:e1:31:b9:a6:0c:e5:db:56:53:
d7:c6:cc:0e:5b:61:2f:4c:9b:37:4a:c9:d0:b5:ad:88:67:f8:
3a:02:6f:f4:37:97:da:8c:c5:20:81:37:bb:f8:50:63:76:fc:
ca:61:c0:f0:74:dd:f0:f8:1f:ad:bc:24:a4:31:dc:61:bb:c9:
0f:d9:1c:f2:e9:36:40:a6:9d:ac:8b:5d:16:48:1a:0d:6c:73:
24:0f:88:34:4e:d4:f5:d1:f5:59:74:b0:49:4b:97:4e:23:b4:
16:cf:6d:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpzOAst4sTQKx/ifnwj08MAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5ODViNTUyMWQyMDkwMTg4MjQ3OGYwZjA5NDE5NjJjM2U5
Yzk0ZmEwHhcNMjUxMTExMTQwMDQzWhcNMjUxMTEyMTQwMDQzWjAzMTEwLwYDVQQD
Eyg3NWZkNTQ2MGY0ZTE0NDc3ZDBkMjIxNDJmNGExZjdkMTJhMGU1OGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Dt/vDBAh3MWwsgyJRKAet7b2KBo
TyvH7Hn3HppShoNNOrxTG9LLZiBhtP3rJUhUr7GLeL2v5BqoSv4nRKpnvHuVVOQs
rtIxJyo0yrzE03go4sRJcnkFHQKKOHHFztlkeZGq5ryKgUTu6i7NNPuujjqKsERk
pEjgLDIQeqYgGwmoADr4oonyQExOVofs8K428lvYHdyc8jXc8No6/kqSW8ggCAtV
JS/x6gimEwLTTBvZJP7m2kjUYRzNea7zJoQS5o5aoSKt5JyO/bYxl/IUnLaRNw6o
GzfhjeflMSHjlKTXO2NkWueMFzYDWH4LbH2M7bwRfg4kIPvToaUIBjNS5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHX9VGD04UR30NIhQvSh99EqDljRMB8GA1UdIwQY
MBaAFKmFtVIdIJAYgkePDwlBliw+nJT6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS83ZmZiM2UtOGE0Yy00MGI3LTg3NmUt
NjAwM2Q1YWVlZDFmLzEvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS83ZmZiM2UtOGE0Yy00MGI3LTg3NmUtNjAwM2Q1YWVlZDFm
LzEvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATF1ArUlW
8cOhb8JtxfpYBxPrUNGW1R7PkGqSzjqDEEE/NlPIwgmpz/9193KXWHSEFa55kZoR
nifjcQ5AwQV+BZNG/cO85cp9Fz7buYanqpGHG+W7yEFV8fH8yy14Zk6+h5ZaxQBJ
059YvJhUU8mirRpvRewQRUwXZOhTGPKRtxlR5HUJXAs+8wOL5TOSk8QbebBWvZlA
07xR4TG5pgzl21ZT18bMDlthL0ybN0rJ0LWtiGf4OgJv9DeX2ozFIIE3u/hQY3b8
ymHA8HTd8PgfrbwkpDHcYbvJD9kc8uk2QKadrItdFkgaDWxzJA+INE7U9dH1WXSw
SUuXTiO0Fs9tTA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:19:18 2025 by rpki-client