Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft
File: tqNouOZvnhWmEOwY1rFHtrokzuc.mft (raw, json)
Hash identifier: kkerXi1cZbpnsYM/EGPs9PfKaa9hoFjlfzs1gh9s8Ag=
Subject key identifier: BF:87:5A:08:6E:C9:4D:7F:98:2B:F2:8D:34:0B:8E:E8:52:B3:2B:3D
Authority key identifier: B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7
Certificate issuer: /CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7
Certificate serial: 019A729364973BD2042824C15F77A75A751E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft
Manifest number: 01AC
Signing time: Tue 11 Nov 2025 11:00:53 +0000
Manifest this update: Tue 11 Nov 2025 11:00:53 +0000
Manifest next update: Wed 12 Nov 2025 11:00:53 +0000
Files and hashes: 1: 76JdDApMBw2HG_-2b61i99W245Q.roa (hash: NIJoLQsfvrL/qonBB3ZwrtyRIgvdYG24/geuGhv0roI=)
2: tqNouOZvnhWmEOwY1rFHtrokzuc.crl (hash: uk4VtmA7kCBdP/cwoxERVfi+Kwsk/o6SoAG9c9OY4pc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:64:97:3b:d2:04:28:24:c1:5f:77:a7:5a:75:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7
Validity
Not Before: Nov 11 11:00:53 2025 GMT
Not After : Nov 12 11:00:53 2025 GMT
Subject: CN=bf875a086ec94d7f982bf28d340b8ee852b32b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e0:b0:62:bf:b5:8c:94:ec:4b:7b:7a:48:ca:
89:3f:d9:93:28:75:28:31:a8:d4:30:90:f0:2d:d3:
f1:ed:48:81:0b:fe:ab:c6:f9:99:58:ef:ef:11:47:
29:72:c8:16:28:72:c6:97:82:4f:56:bb:1c:9b:ed:
68:09:d0:52:19:71:b0:6a:4b:06:cb:a7:13:f2:a9:
a8:55:b7:32:8f:0b:68:5c:9d:12:91:a2:6b:4b:7b:
2d:1c:02:87:08:b3:11:52:f1:85:08:c1:a0:8a:a1:
ba:eb:98:2a:9e:19:a0:f2:44:1a:79:d8:97:62:36:
97:55:ab:ca:b0:7d:03:38:72:7a:11:85:f1:1d:9f:
36:36:91:15:34:8c:5a:ee:f3:98:f6:98:57:47:c0:
54:4e:51:85:bf:68:72:85:6e:97:fe:52:e1:61:5f:
50:b8:fd:30:b6:cd:70:b9:68:04:57:5a:b9:34:0b:
2b:48:9d:f5:e0:91:f6:7a:f2:3d:08:8f:1a:73:79:
27:02:d2:97:69:76:f4:f5:7f:33:d5:58:2e:19:53:
e6:dd:dd:72:b0:b3:df:6b:29:b5:35:1e:f5:8a:ed:
fa:65:fe:63:ea:b7:33:67:27:47:40:69:d0:49:65:
46:a2:32:34:d1:fe:e4:35:8a:79:cd:1a:5a:b2:db:
02:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:87:5A:08:6E:C9:4D:7F:98:2B:F2:8D:34:0B:8E:E8:52:B3:2B:3D
X509v3 Authority Key Identifier:
keyid:B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:0e:98:1b:75:6b:e8:47:f2:0f:22:b3:2e:16:7a:c0:82:04:
53:b6:eb:ac:e0:fd:d3:6d:ee:53:24:bf:47:b4:d2:90:cb:1c:
ac:cb:f2:e5:dd:ab:ad:d7:e8:b3:0b:3b:3b:ef:4e:85:86:7d:
33:d4:90:44:a7:68:d0:96:45:c7:36:5b:5a:a0:54:fa:49:bc:
4f:6b:01:6e:ab:d6:53:db:04:a3:0b:23:c6:70:6c:22:d2:7b:
23:27:16:a6:a0:85:94:e2:c6:44:5a:9e:c4:fd:72:d2:bd:27:
1a:91:aa:12:c0:85:99:b7:0b:b1:a3:4c:28:5b:c6:ff:77:4c:
37:f2:bf:51:cb:3d:20:a0:52:8f:a9:09:6c:5e:ed:07:f9:d3:
a0:83:c6:47:c3:cf:15:16:f0:e9:db:68:54:aa:59:fd:cf:77:
53:2d:c7:f3:0d:72:76:04:63:f1:92:06:96:2b:4b:64:6b:11:
c5:76:04:43:86:47:0a:f3:b4:13:81:13:7e:6f:f8:d4:78:6e:
02:b1:9b:7d:06:ea:cb:9f:d1:08:cf:75:cf:3c:61:48:c5:b4:
2c:dd:7a:19:31:de:71:a7:9a:68:7e:64:55:57:91:f7:fc:02:
36:88:eb:49:95:a9:30:40:32:84:3c:e0:e4:bd:46:84:ef:78:
76:80:d7:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk2SXO9IEKCTBX3enWnUeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2YTM2OGI4ZTY2ZjllMTVhNjEwZWMxOGQ2YjE0N2I2YmEy
NGNlZTcwHhcNMjUxMTExMTEwMDUzWhcNMjUxMTEyMTEwMDUzWjAzMTEwLwYDVQQD
EyhiZjg3NWEwODZlYzk0ZDdmOTgyYmYyOGQzNDBiOGVlODUyYjMyYjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruCwYr+1jJTsS3t6SMqJP9mTKHUo
MajUMJDwLdPx7UiBC/6rxvmZWO/vEUcpcsgWKHLGl4JPVrscm+1oCdBSGXGwaksG
y6cT8qmoVbcyjwtoXJ0SkaJrS3stHAKHCLMRUvGFCMGgiqG665gqnhmg8kQaediX
YjaXVavKsH0DOHJ6EYXxHZ82NpEVNIxa7vOY9phXR8BUTlGFv2hyhW6X/lLhYV9Q
uP0wts1wuWgEV1q5NAsrSJ314JH2evI9CI8ac3knAtKXaXb09X8z1VguGVPm3d1y
sLPfaym1NR71iu36Zf5j6rczZydHQGnQSWVGojI00f7kNYp5zRpastsCwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL+HWghuyU1/mCvyjTQLjuhSsys9MB8GA1UdIwQY
MBaAFLajaLjmb54VphDsGNaxR7a6JM7nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9iYTE4NjgtYWI3Ni00YmUxLWJjNTMt
NzQ4MGQ4YTJmMWJlLzEvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9iYTE4NjgtYWI3Ni00YmUxLWJjNTMtNzQ4MGQ4YTJmMWJl
LzEvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlQ6YG3Vr
6EfyDyKzLhZ6wIIEU7brrOD9023uUyS/R7TSkMscrMvy5d2rrdfosws7O+9OhYZ9
M9SQRKdo0JZFxzZbWqBU+km8T2sBbqvWU9sEowsjxnBsItJ7IycWpqCFlOLGRFqe
xP1y0r0nGpGqEsCFmbcLsaNMKFvG/3dMN/K/Ucs9IKBSj6kJbF7tB/nToIPGR8PP
FRbw6dtoVKpZ/c93Uy3H8w1ydgRj8ZIGlitLZGsRxXYEQ4ZHCvO0E4ETfm/41Hhu
ArGbfQbqy5/RCM91zzxhSMW0LN16GTHecaeaaH5kVVeR9/wCNojrSZWpMEAyhDzg
5L1GhO94doDXJA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:49:42 2025 by rpki-client