Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
File: pQnoZXbAZeFL--6PZSq2wnnM3hI.mft (raw, json)
Hash identifier: 73bhmG8JSrtIGBb/vWNHzpHKSMqpZZ+luSPRuEz8LKE=
Subject key identifier: F2:A8:95:C3:10:D9:84:FC:7E:52:12:44:3D:AB:16:A5:8E:A2:1B:C5
Authority key identifier: A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
Certificate issuer: /CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Certificate serial: 019A7293A2E789EC82B3D1E406C7B914A652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
Manifest number: 105C
Signing time: Tue 11 Nov 2025 11:01:09 +0000
Manifest this update: Tue 11 Nov 2025 11:01:09 +0000
Manifest next update: Wed 12 Nov 2025 11:01:09 +0000
Files and hashes: 1: eoOnLGiO6CFkl49Rw92BKVWZ1YY.roa (hash: 5KK2WxAAZ4SHFL6JTNlCRgBRKCCitoVvyQFa3VeriMw=)
2: pQnoZXbAZeFL--6PZSq2wnnM3hI.crl (hash: 6z1EUeoPDiCfbPF1Ey0r6auDoe+ol5NqWpjGsbXaLlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:a2:e7:89:ec:82:b3:d1:e4:06:c7:b9:14:a6:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Validity
Not Before: Nov 11 11:01:09 2025 GMT
Not After : Nov 12 11:01:09 2025 GMT
Subject: CN=f2a895c310d984fc7e5212443dab16a58ea21bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:f2:c2:78:9f:74:8e:ca:09:64:bd:31:23:
ca:02:7e:3d:43:f9:3a:3d:ab:94:b2:ca:46:13:97:
9e:70:7d:4e:54:0e:05:96:c2:d2:44:83:ca:f1:94:
9a:fd:0c:80:65:34:b7:c7:21:36:f3:7c:79:a3:8d:
c8:76:b2:56:7f:83:4e:fb:82:3b:84:f2:f7:a7:da:
44:e6:ea:05:e0:a4:dc:f5:b3:f4:60:b1:18:88:dd:
cb:26:d8:2e:2c:9c:fb:48:2f:86:4d:63:12:b0:2b:
70:0f:16:42:39:41:b0:c9:ed:9d:02:7a:4e:8b:a8:
44:8a:41:c1:cf:83:06:4b:ac:22:4c:0d:92:64:fd:
ce:86:48:96:b1:83:d6:46:5e:e3:bf:18:a7:bc:2c:
d9:5e:40:d9:27:34:ad:63:78:b1:1d:6e:20:6b:69:
6c:e4:89:6b:8e:6f:7a:c8:e8:fd:b9:82:80:3f:f3:
26:11:8d:9e:a4:15:1d:70:d8:10:de:9f:5f:dd:b1:
e8:54:dd:d8:b9:ca:0d:24:a8:5e:7c:20:68:25:a9:
b2:e2:d0:78:37:5e:c5:8c:75:59:9a:ff:23:7f:31:
f8:31:98:b5:cc:d4:f3:89:32:75:67:07:5b:d7:89:
85:01:5d:5a:ee:1e:dd:2a:7b:6d:a9:06:59:84:33:
2a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A8:95:C3:10:D9:84:FC:7E:52:12:44:3D:AB:16:A5:8E:A2:1B:C5
X509v3 Authority Key Identifier:
keyid:A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:53:1a:93:08:1f:dd:0d:bd:c6:82:ad:20:21:ee:9d:7e:ae:
4f:39:82:52:50:7d:6a:ba:ae:b1:d8:f1:aa:b1:80:aa:5f:b6:
47:c9:54:5f:5f:70:bd:e4:59:ed:48:cb:c8:b1:6b:ee:67:4f:
af:58:cd:39:ff:c5:c8:fa:ba:52:8b:38:a8:36:24:82:a7:29:
b0:87:16:9f:b7:bb:04:21:ac:d2:27:3e:fa:c9:3b:51:f2:e8:
f7:72:85:2f:13:2b:ba:21:96:69:06:f2:58:95:1f:ef:95:d3:
44:ca:7f:ee:11:32:1f:e3:7b:52:13:82:8a:0e:a0:3b:09:c5:
2a:e1:3c:70:5d:6a:b8:5e:49:36:0b:92:6b:53:a3:dc:a2:43:
45:36:d8:7f:aa:a1:ff:e2:ac:73:01:f1:82:ca:ab:37:96:13:
2b:5a:54:6c:e9:d5:e0:ee:f6:b8:97:27:ad:93:38:6a:7d:8a:
46:05:7d:ef:ef:f3:9b:e5:4f:e8:36:40:33:0b:97:b3:0b:43:
fb:87:7e:50:6d:4d:4b:3e:9a:0c:b9:7a:48:29:5b:34:be:de:
03:04:86:ca:4e:8d:8f:26:b0:da:e7:f5:f6:9f:76:62:1f:31:
18:c5:45:ae:90:a0:05:92:6f:d4:a1:db:2c:04:bd:92:54:c1:
0f:2a:4f:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk6LnieyCs9HkBse5FKZSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MDllODY1NzZjMDY1ZTE0YmZiZWU4ZjY1MmFiNmMyNzlj
Y2RlMTIwHhcNMjUxMTExMTEwMTA5WhcNMjUxMTEyMTEwMTA5WjAzMTEwLwYDVQQD
EyhmMmE4OTVjMzEwZDk4NGZjN2U1MjEyNDQzZGFiMTZhNThlYTIxYmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtv7ywnifdI7KCWS9MSPKAn49Q/k6
PauUsspGE5eecH1OVA4FlsLSRIPK8ZSa/QyAZTS3xyE283x5o43IdrJWf4NO+4I7
hPL3p9pE5uoF4KTc9bP0YLEYiN3LJtguLJz7SC+GTWMSsCtwDxZCOUGwye2dAnpO
i6hEikHBz4MGS6wiTA2SZP3OhkiWsYPWRl7jvxinvCzZXkDZJzStY3ixHW4ga2ls
5Ilrjm96yOj9uYKAP/MmEY2epBUdcNgQ3p9f3bHoVN3YucoNJKhefCBoJamy4tB4
N17FjHVZmv8jfzH4MZi1zNTziTJ1Zwdb14mFAV1a7h7dKnttqQZZhDMqQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPKolcMQ2YT8flISRD2rFqWOohvFMB8GA1UdIwQY
MBaAFKUJ6GV2wGXhS/vuj2UqtsJ5zN4SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFFub1pYYkFaZUZMLS02UFpTcTJ3bm5NM2hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8wMTQyNDUtODY4NS00YWYzLTkzODct
YTBmNTc0MmIxYjA0LzEvcFFub1pYYkFaZUZMLS02UFpTcTJ3bm5NM2hJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8wMTQyNDUtODY4NS00YWYzLTkzODctYTBmNTc0MmIxYjA0
LzEvcFFub1pYYkFaZUZMLS02UFpTcTJ3bm5NM2hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApVMakwgf
3Q29xoKtICHunX6uTzmCUlB9arqusdjxqrGAql+2R8lUX19wveRZ7UjLyLFr7mdP
r1jNOf/FyPq6Uos4qDYkgqcpsIcWn7e7BCGs0ic++sk7UfLo93KFLxMruiGWaQby
WJUf75XTRMp/7hEyH+N7UhOCig6gOwnFKuE8cF1quF5JNguSa1Oj3KJDRTbYf6qh
/+KscwHxgsqrN5YTK1pUbOnV4O72uJcnrZM4an2KRgV97+/zm+VP6DZAMwuXswtD
+4d+UG1NSz6aDLl6SClbNL7eAwSGyk6Njyaw2uf19p92Yh8xGMVFrpCgBZJv1KHb
LAS9klTBDypPmg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:16:23 2025 by rpki-client