Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
File: Q1w_GpeQPnlikqKsenjUGxwh24U.mft (raw, json)
Hash identifier: aolu+ksWb24JqyRWLVrg+c3v/MKQ6mE5TklSS/6tnSI=
Subject key identifier: A0:CC:B8:5C:FD:6A:45:01:03:EC:49:D2:3D:7B:7F:DF:E8:12:10:D7
Authority key identifier: 43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
Certificate issuer: /CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Certificate serial: 019A711375A12FCA9B01DBE8C10FBCC12E9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
Manifest number: 1047
Signing time: Tue 11 Nov 2025 04:01:31 +0000
Manifest this update: Tue 11 Nov 2025 04:01:31 +0000
Manifest next update: Wed 12 Nov 2025 04:01:31 +0000
Files and hashes: 1: IB6At0eMkw1jy1fdpcIgarxWKQ4.roa (hash: rOQggKg6yCYoTFHyozZzxf3+Jia2rL6WXiIW/P0HCuo=)
2: Q1w_GpeQPnlikqKsenjUGxwh24U.crl (hash: QVNq8OVL4IMHQytJ6mbBIwOlSd7hFOTU/xzNMAg0pH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:75:a1:2f:ca:9b:01:db:e8:c1:0f:bc:c1:2e:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Validity
Not Before: Nov 11 04:01:31 2025 GMT
Not After : Nov 12 04:01:31 2025 GMT
Subject: CN=a0ccb85cfd6a450103ec49d23d7b7fdfe81210d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:18:e6:5a:1a:0a:31:92:f2:40:8d:af:12:77:
e8:93:44:ab:7d:f9:28:a3:bb:27:34:8a:03:02:8a:
6b:e1:3b:9e:a5:2e:ef:f0:9e:db:7a:8c:5f:c7:ef:
64:3d:58:27:02:ab:32:ce:20:ea:c8:96:8a:03:a5:
eb:46:f0:94:65:7c:2a:dc:4f:8b:86:00:e7:36:21:
e2:33:d7:6c:fd:5a:15:d5:0c:0c:a9:ad:eb:72:4c:
32:67:c3:44:ed:e1:11:37:71:7e:ce:79:39:d4:84:
38:4a:c5:4d:5f:bc:4e:6e:a6:6a:5c:f8:43:9f:bc:
54:01:63:58:0b:8c:69:8d:b9:75:41:82:a5:43:34:
42:7a:bb:94:d6:69:24:ad:43:8c:cb:e1:4c:ff:26:
2c:6f:59:78:fe:5a:06:ce:e3:20:27:2f:63:ea:df:
c4:a3:0d:6c:03:16:e5:95:e2:e5:92:7f:12:fa:92:
8c:75:e7:ac:55:56:cc:d4:62:7e:c1:bd:84:fe:46:
21:62:4d:f7:3f:28:50:e2:90:9a:34:77:4e:78:b2:
9b:2a:35:b9:98:cc:11:54:90:da:7f:d9:89:35:42:
bc:83:80:25:34:3f:27:8f:cf:04:22:24:38:e9:0f:
27:be:42:bf:0f:5b:3b:46:3b:81:dc:fa:51:b3:cf:
da:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CC:B8:5C:FD:6A:45:01:03:EC:49:D2:3D:7B:7F:DF:E8:12:10:D7
X509v3 Authority Key Identifier:
keyid:43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:e8:62:42:cc:dd:c5:5e:58:54:e6:ee:3a:9e:15:2a:b4:22:
22:c0:fd:12:c8:4c:c6:1b:6b:5d:26:76:f3:16:fe:81:a0:1e:
04:06:cc:b3:72:59:9d:3e:1d:61:1b:9b:22:cc:d6:b0:69:56:
98:6d:ab:32:7d:ee:d1:c5:af:ab:41:5f:fd:2d:da:fe:47:4b:
5d:7d:99:8a:a7:5a:76:74:dc:0f:e4:49:38:51:41:f1:58:63:
c7:08:1a:07:a2:c6:82:9f:24:4c:9f:76:91:82:e8:d8:69:d2:
e9:5a:74:0f:d8:18:5b:08:4c:fd:ee:98:e9:5f:df:9a:7f:f8:
7f:41:4c:36:8c:ef:69:ad:18:10:0c:6e:40:85:68:a0:9a:66:
11:45:af:ca:d3:e8:6a:b4:e1:28:10:a4:82:6f:fc:c8:ba:5f:
42:43:12:06:a5:1a:9c:ef:3d:c5:11:6a:c8:32:8c:d5:cd:4e:
93:96:6e:08:bd:f4:73:cc:05:27:46:1b:1e:38:5f:15:a6:12:
cf:3d:17:98:bb:4b:ad:2e:c3:91:1b:ab:62:0e:8f:ed:d1:a1:
32:f5:d9:3d:0e:66:ed:da:e2:df:fd:17:31:a1:16:5f:02:1f:
91:e2:7d:df:bb:3a:3a:0f:a0:86:00:ce:af:6c:a5:ca:28:cb:
6d:05:ca:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:16:26 2025 by rpki-client