Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
File: qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft (raw, json)
Hash identifier: FEPK8H9MkxAbJi+l7jUcsyUfKbqAQlyVBxFSwaPSZrs=
Subject key identifier: 61:9E:46:BC:B6:BF:62:8A:F3:C3:5D:37:6D:98:55:6F:53:53:4B:82
Authority key identifier: A8:AB:7D:68:D6:9A:52:AA:50:C7:99:99:0B:92:18:41:9C:14:79:35
Certificate issuer: /CN=a8ab7d68d69a52aa50c799990b9218419c147935
Certificate serial: 019A729365AF30B428BBA7538A58C5294654
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
Manifest number: 014A
Signing time: Tue 11 Nov 2025 11:00:53 +0000
Manifest this update: Tue 11 Nov 2025 11:00:53 +0000
Manifest next update: Wed 12 Nov 2025 11:00:53 +0000
Files and hashes: 1: QfAqEIrfh5GlI2pgvhMIdjzs2sM.roa (hash: dMt2CrdZCWtAfbu3OjW6t5fx1eVLHzaohbZwBE6VIR4=)
2: qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl (hash: fMD77IHyDk8r5T1FTxPmbsR4ySemGO4D8Me6n6N/H6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:65:af:30:b4:28:bb:a7:53:8a:58:c5:29:46:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8ab7d68d69a52aa50c799990b9218419c147935
Validity
Not Before: Nov 11 11:00:53 2025 GMT
Not After : Nov 12 11:00:53 2025 GMT
Subject: CN=619e46bcb6bf628af3c35d376d98556f53534b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:80:bf:ce:9b:02:62:91:4a:91:c4:a2:6a:ae:
07:a0:b3:ac:01:2f:4d:eb:82:21:9c:95:98:33:1b:
c0:ed:d8:d7:ad:7e:9c:e1:42:19:2c:cb:13:ea:d1:
6d:70:4e:17:01:f1:a3:8c:48:9a:b6:a4:a8:73:88:
ec:41:47:59:bd:28:41:a8:67:1a:bb:39:ba:52:46:
51:cf:1b:02:bf:5d:93:8b:29:3f:a4:1b:3c:53:df:
9f:61:7b:aa:b2:7b:4a:2f:1f:30:79:8f:99:b3:40:
8e:fb:5b:c9:a1:0b:0d:e4:3d:dc:53:e3:c9:70:20:
32:52:b6:a8:a2:53:f7:72:ab:9e:59:a3:a1:72:26:
b5:af:9a:5c:14:30:5b:63:e2:e7:6a:fb:e7:b7:ca:
df:73:a4:2c:cd:1b:8a:3d:f0:98:01:de:a6:39:6c:
49:7a:51:ef:1f:b2:a8:65:13:aa:dc:13:9a:78:2a:
b5:f2:1c:d5:42:b4:93:f7:17:ed:cd:e2:26:91:97:
87:b4:21:ff:5f:5e:54:a1:61:8b:05:6a:56:29:f0:
ed:ec:70:dc:83:2f:5d:ec:f3:59:00:67:14:64:b5:
c2:a2:6a:4c:58:9b:5c:ce:48:f1:d0:02:60:c0:b6:
cf:7a:76:30:db:2c:a3:e1:0e:89:9e:cc:9a:df:94:
9f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9E:46:BC:B6:BF:62:8A:F3:C3:5D:37:6D:98:55:6F:53:53:4B:82
X509v3 Authority Key Identifier:
keyid:A8:AB:7D:68:D6:9A:52:AA:50:C7:99:99:0B:92:18:41:9C:14:79:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d1:52:a6:24:c8:3e:44:d9:e1:f3:37:14:1c:72:c3:57:0c:
e2:11:d7:f1:8d:ec:74:42:48:72:7c:d4:77:33:e3:bb:5c:1b:
c8:be:e2:39:62:29:56:41:17:36:8c:08:99:5c:6c:63:5e:45:
74:6c:3f:86:ac:d7:9f:e0:e3:05:5c:ae:c3:b5:9f:97:1f:aa:
81:af:7e:92:dc:21:29:fc:d6:18:b6:d4:5e:89:59:62:a2:d2:
f3:a9:71:2a:ce:5e:ac:87:c2:fe:7d:29:fc:26:08:e9:29:01:
d8:2b:69:70:76:cf:94:21:96:9d:f9:e1:37:8e:86:3b:67:08:
31:08:ca:b2:11:64:71:00:0e:e8:0a:19:2d:0a:f1:bc:e4:4a:
73:0f:a2:73:24:47:eb:22:65:45:9c:c1:ac:4b:25:0a:cf:14:
2c:00:59:58:93:2f:28:73:5c:e1:d5:2b:8a:a9:34:80:01:37:
d5:b1:cb:b5:a5:42:58:82:82:cb:b9:a6:98:83:14:9d:54:b3:
e0:0c:f5:1e:bb:a3:49:0a:08:a6:70:30:54:47:0a:1d:ec:76:
f5:b1:d6:92:6e:7b:e7:5d:4b:f6:3b:e3:58:8b:2d:fa:37:8c:
5c:ba:9d:a2:6c:7a:b0:8c:1c:43:f3:20:ba:d1:9b:9f:52:03:
33:31:70:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk2WvMLQou6dTiljFKUZUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4YWI3ZDY4ZDY5YTUyYWE1MGM3OTk5OTBiOTIxODQxOWMx
NDc5MzUwHhcNMjUxMTExMTEwMDUzWhcNMjUxMTEyMTEwMDUzWjAzMTEwLwYDVQQD
Eyg2MTllNDZiY2I2YmY2MjhhZjNjMzVkMzc2ZDk4NTU2ZjUzNTM0YjgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4C/zpsCYpFKkcSiaq4HoLOsAS9N
64IhnJWYMxvA7djXrX6c4UIZLMsT6tFtcE4XAfGjjEiatqSoc4jsQUdZvShBqGca
uzm6UkZRzxsCv12Tiyk/pBs8U9+fYXuqsntKLx8weY+Zs0CO+1vJoQsN5D3cU+PJ
cCAyUraoolP3cqueWaOhcia1r5pcFDBbY+Lnavvnt8rfc6QszRuKPfCYAd6mOWxJ
elHvH7KoZROq3BOaeCq18hzVQrST9xftzeImkZeHtCH/X15UoWGLBWpWKfDt7HDc
gy9d7PNZAGcUZLXCompMWJtczkjx0AJgwLbPenYw2yyj4Q6Jnsya35Sf4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGGeRry2v2KK88NdN22YVW9TU0uCMB8GA1UdIwQY
MBaAFKirfWjWmlKqUMeZmQuSGEGcFHk1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUt0OWFOYWFVcXBReDVtWkM1SVlRWndVZVRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi80ZWM3MjUtNGQ4ZC00MzExLTkzNGYt
Mzg4MDU1MmE1NDM5LzEvcUt0OWFOYWFVcXBReDVtWkM1SVlRWndVZVRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi80ZWM3MjUtNGQ4ZC00MzExLTkzNGYtMzg4MDU1MmE1NDM5
LzEvcUt0OWFOYWFVcXBReDVtWkM1SVlRWndVZVRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABdFSpiTI
PkTZ4fM3FBxyw1cM4hHX8Y3sdEJIcnzUdzPju1wbyL7iOWIpVkEXNowImVxsY15F
dGw/hqzXn+DjBVyuw7Wflx+qga9+ktwhKfzWGLbUXolZYqLS86lxKs5erIfC/n0p
/CYI6SkB2CtpcHbPlCGWnfnhN46GO2cIMQjKshFkcQAO6AoZLQrxvORKcw+icyRH
6yJlRZzBrEslCs8ULABZWJMvKHNc4dUriqk0gAE31bHLtaVCWIKCy7mmmIMUnVSz
4Az1HrujSQoIpnAwVEcKHex29bHWkm57511L9jvjWIst+jeMXLqdomx6sIwcQ/Mg
utGbn1IDMzFwXg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:19:39 2025 by rpki-client