Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
File: QeODxYB-mzL1dtCluO53RMrPtxc.mft (raw, json)
Hash identifier: EMO6SnMXBC+acGcJMTbrWg4alWreqTco1KkoMyp+gMw=
Subject key identifier: 7B:67:64:71:97:B6:FF:0A:50:82:CF:59:B3:50:42:88:8D:4A:0D:46
Authority key identifier: 41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17
Certificate issuer: /CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717
Certificate serial: 019A4B8566CD027B5078CA836213C7BC14E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
Manifest number: 05DA
Signing time: Mon 03 Nov 2025 21:00:24 +0000
Manifest this update: Mon 03 Nov 2025 21:00:24 +0000
Manifest next update: Tue 04 Nov 2025 21:00:24 +0000
Files and hashes: 1: 03enaQCGw_eqXqIAwZyG-7zrfRA.roa (hash: YhNG/6VofCuK7pQjtVrVurKsTSoyBGAKru+JjLAKpoo=)
2: DUyUlX3xTZHlVnLSKpECvt4NkYU.roa (hash: ZP6huwEf1pdyFLtyz+3lIcMnm1rz3bsZAcR3RQdU+KU=)
3: QeODxYB-mzL1dtCluO53RMrPtxc.crl (hash: j9J8udGu6Bflh4flGbrNNfP5HntkGFw8RrurPZwtgmU=)
4: bB3G3EZqBAqArfU6X5zzc1opBME.roa (hash: gPeixOKastqxOj7HlHBp8UwchVAjS4fsBzFCexJl5H8=)
5: lKGyjDcky_IoNZN6qvlaMVTqM58.roa (hash: IiBQAy+zcf79xQNY8RIQMsijGISjsQrLjaoVvIJA9t4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 20:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4b:85:66:cd:02:7b:50:78:ca:83:62:13:c7:bc:14:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717
Validity
Not Before: Nov 3 21:00:24 2025 GMT
Not After : Nov 4 21:00:24 2025 GMT
Subject: CN=7b67647197b6ff0a5082cf59b35042888d4a0d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1e:c3:c9:cb:00:b1:13:5a:eb:e9:36:d3:83:
28:0e:b4:ea:e8:78:b6:fd:bb:c5:bf:f4:1f:92:e9:
38:68:ff:9f:2e:de:5a:e8:ad:be:76:ea:13:85:98:
7b:14:68:7e:ee:30:0b:27:4d:59:e5:c8:16:4d:8d:
f4:52:2e:3b:f0:61:6e:9c:e2:5b:67:56:0d:fa:70:
5c:a7:70:6d:ad:b3:62:dc:f1:79:73:c9:f1:c2:1b:
8e:1e:38:c1:c1:d3:83:5f:ad:00:1f:9d:dd:2b:58:
cd:96:a0:16:00:a2:57:90:9d:27:0d:08:b1:4f:a0:
17:84:da:bb:bd:3f:04:45:7c:ce:2b:58:43:87:85:
e0:77:17:af:26:fc:dd:19:0a:a2:d1:cb:83:d7:45:
6b:27:6d:cf:80:07:a7:21:57:40:2e:f7:fa:c4:11:
ee:87:67:98:99:74:e7:9e:fb:69:78:09:31:47:a0:
6f:55:8f:f2:0f:00:0a:e3:f7:81:d7:b8:03:42:b3:
33:46:e0:98:39:f4:2f:fd:34:d7:7f:2f:67:75:ac:
c9:56:29:3b:41:43:ed:96:5b:a0:e2:ba:20:57:b2:
65:a0:2b:9e:aa:69:5a:39:9e:e3:11:4b:af:1e:2c:
e9:f7:38:d4:2a:c0:3b:63:45:b2:d3:96:0f:c2:1c:
23:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:67:64:71:97:B6:FF:0A:50:82:CF:59:B3:50:42:88:8D:4A:0D:46
X509v3 Authority Key Identifier:
keyid:41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:7d:43:ca:92:ce:93:33:70:75:4e:cc:7a:72:87:4d:e7:ee:
08:3d:2c:84:d4:ea:f4:50:8b:fd:fc:7e:3a:53:c1:66:d8:16:
1e:c9:8e:86:df:8e:46:c0:c8:7d:02:ba:a5:b5:09:ee:fb:dd:
a9:73:d3:ca:9c:44:c9:f2:3c:8d:59:c7:3a:e9:f2:c6:a2:d2:
2b:ee:d9:4d:70:6b:67:fe:0c:50:1d:50:17:25:27:62:96:3a:
de:2c:37:5a:21:5a:be:1b:e3:9a:15:44:a1:d0:3e:77:dd:2c:
36:05:d7:b3:f3:53:fe:f9:d6:ae:a8:0e:04:64:e6:a7:6a:ab:
4d:c8:e9:39:eb:b4:9e:2b:27:2b:83:a5:f0:df:b2:9d:aa:f1:
0d:eb:d8:7a:a5:b8:40:c6:42:f0:e4:49:49:ee:4e:59:a8:51:
b2:99:67:d8:b0:0e:03:ee:d2:48:04:7d:a9:2d:a1:ed:e2:24:
a1:b3:59:c2:7a:30:4e:64:ca:fe:d6:54:f0:3c:a1:e4:16:36:
12:7e:e1:b7:34:6f:42:95:84:c9:37:c9:ad:a7:e3:51:d9:48:
7b:4f:97:62:22:be:2b:ed:1c:30:38:5b:1e:38:c6:44:3d:09:
de:c8:c9:9f:d9:a5:47:83:5f:06:dd:32:9d:d8:f7:de:c9:70:
19:4a:25:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpLhWbNAntQeMqDYhPHvBTgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxZTM4M2M1ODA3ZTliMzJmNTc2ZDBhNWI4ZWU3NzQ0Y2Fj
ZmI3MTcwHhcNMjUxMTAzMjEwMDI0WhcNMjUxMTA0MjEwMDI0WjAzMTEwLwYDVQQD
Eyg3YjY3NjQ3MTk3YjZmZjBhNTA4MmNmNTliMzUwNDI4ODhkNGEwZDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmh7DycsAsRNa6+k204MoDrTq6Hi2
/bvFv/Qfkuk4aP+fLt5a6K2+duoThZh7FGh+7jALJ01Z5cgWTY30Ui478GFunOJb
Z1YN+nBcp3BtrbNi3PF5c8nxwhuOHjjBwdODX60AH53dK1jNlqAWAKJXkJ0nDQix
T6AXhNq7vT8ERXzOK1hDh4XgdxevJvzdGQqi0cuD10VrJ23PgAenIVdALvf6xBHu
h2eYmXTnnvtpeAkxR6BvVY/yDwAK4/eB17gDQrMzRuCYOfQv/TTXfy9ndazJVik7
QUPtllug4rogV7JloCueqmlaOZ7jEUuvHizp9zjUKsA7Y0Wy05YPwhwjDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHtnZHGXtv8KUILPWbNQQoiNSg1GMB8GA1UdIwQY
MBaAFEHjg8WAfpsy9XbQpbjud0TKz7cXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9hZWE0NjUtYmE0NS00OWFjLTljNjgt
N2I0MWZhYmM2ZjY3LzEvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9hZWE0NjUtYmE0NS00OWFjLTljNjgtN2I0MWZhYmM2ZjY3
LzEvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM31DypLO
kzNwdU7MenKHTefuCD0shNTq9FCL/fx+OlPBZtgWHsmOht+ORsDIfQK6pbUJ7vvd
qXPTypxEyfI8jVnHOunyxqLSK+7ZTXBrZ/4MUB1QFyUnYpY63iw3WiFavhvjmhVE
odA+d90sNgXXs/NT/vnWrqgOBGTmp2qrTcjpOeu0nisnK4Ol8N+ynarxDevYeqW4
QMZC8ORJSe5OWahRspln2LAOA+7SSAR9qS2h7eIkobNZwnowTmTK/tZU8Dyh5BY2
En7htzRvQpWEyTfJrafjUdlIe0+XYiK+K+0cMDhbHjjGRD0J3sjJn9mlR4NfBt0y
ndj33slwGUoloA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 04:06:54 2025 by rpki-client