Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
File: qqlyrDzBD3FspJhQRaXwgktgyh8.mft (raw, json)
Hash identifier: 3bIPCCO0Tdi23wgmuIvl6JcLTsuZIZpbQViD9kpIY5Q=
Subject key identifier: A0:91:55:C0:FF:F4:6E:A9:22:C3:97:AC:1B:CF:9F:30:41:29:00:18
Authority key identifier: AA:A9:72:AC:3C:C1:0F:71:6C:A4:98:50:45:A5:F0:82:4B:60:CA:1F
Certificate issuer: /CN=aaa972ac3cc10f716ca4985045a5f0824b60ca1f
Certificate serial: 019A7113058EB5C53AA629AE7FFEFF8CA4C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
Manifest number: 022A
Signing time: Tue 11 Nov 2025 04:01:03 +0000
Manifest this update: Tue 11 Nov 2025 04:01:03 +0000
Manifest next update: Wed 12 Nov 2025 04:01:03 +0000
Files and hashes: 1: qqlyrDzBD3FspJhQRaXwgktgyh8.crl (hash: W6LoPXOqsU0KXfRRGTzUNyXmPsB2CgWtnowHcka5AWg=)
2: yIGIxees9MuARoWN6t0oVINh_4A.roa (hash: geAsTIsbC4XBTKHwgmaJ0ZNmwh/Z8F8NnaAnGD8ONe8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:05:8e:b5:c5:3a:a6:29:ae:7f:fe:ff:8c:a4:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaa972ac3cc10f716ca4985045a5f0824b60ca1f
Validity
Not Before: Nov 11 04:01:03 2025 GMT
Not After : Nov 12 04:01:03 2025 GMT
Subject: CN=a09155c0fff46ea922c397ac1bcf9f3041290018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:45:f4:56:92:34:97:b5:10:bf:fd:f1:2f:de:
5f:fd:36:f0:b6:5e:57:a7:9e:2b:dc:de:a7:23:38:
73:68:3e:c2:bf:54:de:1e:17:06:3b:5a:25:3a:53:
3c:a7:76:2c:c5:2a:ec:9e:bc:6c:65:60:f5:a9:77:
bc:3e:8b:d8:27:f5:70:a6:18:66:9e:c0:e0:39:e7:
4c:ec:46:15:2a:80:bc:27:d6:ee:ad:3e:53:d5:78:
0c:29:6d:b5:d0:61:7d:70:19:33:07:f6:4e:15:ae:
ef:05:94:0e:df:54:26:30:b5:2e:0d:fe:ba:ef:60:
e3:2f:10:01:b1:95:b1:d2:95:4a:0d:10:df:bd:9c:
bb:0d:a9:da:c0:62:0d:70:3f:82:e5:6c:a3:59:27:
1d:4f:a4:70:fb:97:43:06:4d:09:d1:c6:42:07:1f:
94:85:7e:0c:f8:34:7b:71:a1:2a:0d:46:28:6b:e2:
b5:2e:ac:ac:8e:0c:1f:4e:71:56:fe:1c:dc:2f:cf:
2e:ce:19:09:60:33:8c:43:1f:4e:0d:6b:ca:f4:4c:
1b:04:58:66:66:a7:13:72:7a:20:44:21:d4:3c:15:
14:16:19:79:15:09:d2:48:83:3a:40:6f:b9:98:1a:
5a:10:84:49:d5:4f:b5:ba:b2:c3:96:c0:9f:3f:ae:
7a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:91:55:C0:FF:F4:6E:A9:22:C3:97:AC:1B:CF:9F:30:41:29:00:18
X509v3 Authority Key Identifier:
keyid:AA:A9:72:AC:3C:C1:0F:71:6C:A4:98:50:45:A5:F0:82:4B:60:CA:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:52:42:6a:9d:91:99:5e:19:71:fe:75:30:98:5c:d1:03:20:
1b:71:a5:76:20:60:84:92:74:15:dc:0b:e6:ac:60:fb:da:26:
17:35:bf:d0:d3:02:5c:04:51:32:97:10:9c:65:83:e8:74:4e:
47:69:0e:14:0e:4d:86:f4:57:60:36:2a:25:1b:b4:4e:0b:03:
6e:d0:31:5f:e3:d6:6e:e0:5a:d2:97:32:12:7a:3b:74:6e:21:
69:c0:8d:7c:bb:47:32:0f:ba:74:fb:a5:98:77:5c:95:31:b7:
4b:d7:45:1a:23:4d:c5:8d:c0:5b:a0:83:ab:94:99:d0:2b:79:
12:c8:ff:3b:d0:fa:c8:09:ee:20:b6:f0:8a:71:a5:6e:5a:a4:
32:2b:93:d5:d9:d5:5e:7c:90:f9:0c:5f:ce:1c:ad:2f:cb:6e:
4e:08:5e:20:79:67:20:71:9b:5a:53:ff:cf:41:82:ef:59:ba:
a0:20:91:2f:cf:83:7a:fa:6f:c5:2e:e8:e4:2a:d9:f2:87:0d:
d0:d8:f1:86:61:48:db:71:75:7c:26:20:6b:59:fa:0a:d6:4c:
b3:18:50:34:69:37:56:b9:59:4d:fc:58:0a:08:d4:35:6b:28:
e6:fb:0e:09:2e:db:a7:64:a7:28:87:03:de:43:8d:da:30:00:
c0:79:29:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:36 2025 by rpki-client