Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json)
Hash identifier: xYH6kADkeVaWg9AReGvNgqBqAefbgTG2jR5XPTpHHJo=
Subject key identifier: C7:4D:87:14:80:F7:00:09:BF:0A:12:55:D5:22:E9:D0:98:6A:2F:6D
Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Certificate serial: 019A3BA52EA004702915DDB66118729E3CEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
Manifest number: 0D55
Signing time: Fri 31 Oct 2025 19:01:12 +0000
Manifest this update: Fri 31 Oct 2025 19:01:12 +0000
Manifest next update: Sat 01 Nov 2025 19:01:12 +0000
Files and hashes: 1: 2K6387yyM5gxakFjGUcn1KUMQ58.roa (hash: KwEJI06hkpRX+nj9eXMKKI3vC9xa4ElKQ9FhYTbVyds=)
2: VNd90Fl0tWahsmhhQvhoAAT8f5U.roa (hash: U+zi8hpH0S9lksZLxaBLhZX/Hg0tdOzYwVmTSHbyaHY=)
3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: JXCnpt0COHrB+cX7VjMj0QKrDik5FVskmTfp/cHTvIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:3b:a5:2e:a0:04:70:29:15:dd:b6:61:18:72:9e:3c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Validity
Not Before: Oct 31 19:01:12 2025 GMT
Not After : Nov 1 19:01:12 2025 GMT
Subject: CN=c74d871480f70009bf0a1255d522e9d0986a2f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c5:2f:20:78:7b:c6:a6:60:76:1a:89:da:4b:
6a:c9:2a:fa:9b:6f:e8:9d:b9:46:5d:3c:4f:63:76:
f1:2c:60:27:cf:b3:0e:44:c5:da:50:8f:68:d6:56:
28:93:b4:92:2b:8d:ea:90:6e:c2:ba:83:a8:ca:5a:
d5:08:83:6d:37:8e:7f:a9:8a:e9:71:06:1f:6d:52:
7e:7d:a8:ae:f7:1e:c9:65:fd:ab:30:80:33:c1:08:
6e:98:64:56:17:9a:94:be:c6:98:d6:dd:dc:ab:35:
da:68:9f:bf:70:bb:59:b8:59:83:f2:c5:35:bf:32:
92:ca:a6:df:ec:55:d1:3b:a7:9b:ff:53:6f:1d:24:
a2:c5:83:b2:ab:a0:d3:00:0f:bc:eb:4f:08:f1:f4:
c4:38:d9:3e:e0:34:2a:a2:6c:b5:e2:fa:7e:8d:81:
b4:49:00:31:77:64:90:7c:46:ec:d7:4f:71:47:73:
87:f9:9f:b4:e4:e7:f7:26:79:d6:c5:71:b3:89:6f:
eb:43:2a:23:0e:98:f9:1b:ae:1c:f3:c1:a1:bb:16:
d9:f2:6f:df:ac:72:7e:f3:bb:2f:45:80:15:58:f3:
23:eb:72:33:fd:7f:e7:6e:aa:bd:33:14:4a:94:64:
94:99:36:89:15:31:7a:25:60:93:a0:25:19:24:42:
46:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4D:87:14:80:F7:00:09:BF:0A:12:55:D5:22:E9:D0:98:6A:2F:6D
X509v3 Authority Key Identifier:
keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:d9:59:1f:b4:f0:32:c0:c9:2b:d7:a1:73:4a:ee:d2:11:1c:
0f:e1:93:2f:11:a5:48:bf:41:ea:cf:07:05:47:07:ac:c8:a3:
e4:19:ba:41:60:3d:38:fc:19:64:16:3f:fa:25:be:ba:01:ff:
8c:61:c9:bf:9c:69:57:49:27:e6:0b:3c:00:27:b3:b5:c4:05:
7e:d0:80:83:d9:03:d4:2d:5c:24:82:b7:77:ef:eb:ac:bb:8b:
00:93:8d:2c:7f:e8:8e:38:cc:c1:b7:af:c3:da:3b:63:e2:97:
2e:e6:9a:f7:c6:50:cf:cd:62:f3:4a:c4:98:5d:e3:5c:c4:65:
ae:c0:ef:24:d8:ab:29:e9:e8:a8:e2:66:af:7f:bd:d3:6f:36:
67:04:a4:f8:0e:44:58:0c:1a:44:fb:36:2b:7a:0c:13:fc:4c:
97:ab:5b:d2:9e:f3:e7:ff:df:9b:f0:36:72:74:3e:5d:92:ba:
03:3e:bf:0c:3a:7c:5f:ba:2f:43:52:95:11:48:bc:c6:63:49:
ea:b1:1f:1a:a9:5a:06:f7:69:3d:ea:bd:cf:f6:6c:52:55:e1:
d1:53:25:ab:eb:e6:0b:01:9c:8d:c8:dd:6b:e8:af:42:46:1e:
e8:d0:80:4d:1f:79:da:9c:a2:ef:1e:48:8d:11:42:4b:59:c6:
dd:98:70:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 1 02:27:07 2025 by rpki-client