Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json)
Hash identifier: PB40CdBtJEREmZnhelmS5wAjjbz43PxGROmBP0p45Mc=
Subject key identifier: 5B:9A:D5:78:2C:5E:1F:07:73:4D:A3:E7:9F:B1:5F:AA:04:EB:DD:9B
Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa
Certificate serial: 019A22F748AF5A6B17BE94160E4EB30FD6CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
Manifest number: 16F7
Signing time: Mon 27 Oct 2025 00:00:22 +0000
Manifest this update: Mon 27 Oct 2025 00:00:22 +0000
Manifest next update: Tue 28 Oct 2025 00:00:22 +0000
Files and hashes: 1: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: zpixVvEXINs1kmbIEpZKwMR3jhH4D52dDqPztTaMOPs=)
2: Y6QTaw-FjofB_OhkxIXlcm9P4-I.roa (hash: 4Yb+dRFpkkMPfeWzASwoM5NrRtcERhjg7Yl8jCZxXRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:48:af:5a:6b:17:be:94:16:0e:4e:b3:0f:d6:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa
Validity
Not Before: Oct 27 00:00:22 2025 GMT
Not After : Oct 28 00:00:22 2025 GMT
Subject: CN=5b9ad5782c5e1f07734da3e79fb15faa04ebdd9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:56:4f:7a:83:c2:07:88:4d:0c:a2:7e:d0:00:
85:89:90:66:5d:20:51:6b:dd:1f:44:97:99:9a:2d:
81:f0:bc:67:53:e0:e1:9f:cf:b3:80:64:64:c5:e7:
53:8a:26:21:5d:d0:cf:9a:68:21:3b:1d:bc:47:30:
8c:2f:f7:9a:5f:c4:78:0e:51:1b:63:21:7b:57:61:
77:13:c3:0c:39:02:b5:b4:91:9c:bc:94:c8:87:c0:
c0:77:af:bc:d4:5a:77:8c:0e:ce:45:9a:0e:55:df:
0a:5a:e5:3e:48:a3:ab:ff:85:d9:6e:ef:5a:84:c4:
d1:16:1e:1d:e2:c1:67:39:f2:49:08:2f:6e:fd:15:
ab:24:ca:83:27:98:ad:bf:48:30:06:39:50:a8:a1:
84:10:d0:6d:1f:76:12:c1:cd:f9:d2:3d:e6:02:fa:
04:11:94:6f:38:07:21:05:72:07:1b:69:96:09:45:
f6:1c:3a:18:3a:d1:f7:b5:f1:f8:48:10:87:15:8e:
1f:90:f9:f6:e8:05:62:39:fb:f6:66:15:9d:e3:d1:
19:ff:71:f5:3b:0e:24:cb:96:3a:48:ed:47:8d:82:
ff:dd:02:8b:62:a7:c6:db:5e:2e:d1:fc:d6:0c:5c:
72:94:1f:9f:34:3d:29:d9:fb:18:de:46:0f:2f:a4:
05:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9A:D5:78:2C:5E:1F:07:73:4D:A3:E7:9F:B1:5F:AA:04:EB:DD:9B
X509v3 Authority Key Identifier:
keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:f6:82:a7:e4:17:c2:59:9e:94:a9:5f:a0:05:96:39:28:bf:
1c:df:ab:9f:97:7b:94:f1:71:2a:d0:a8:b7:c5:9f:ac:dc:5d:
93:a2:1f:9f:7f:83:c7:7d:68:04:55:03:43:6b:75:06:bd:d1:
84:b8:b5:67:b8:84:52:d3:81:ef:f6:8b:51:99:6d:0d:5a:74:
5b:25:60:da:1b:4b:93:25:78:fe:c6:c3:ef:29:a5:74:ad:6a:
7e:04:70:c5:1a:3b:3f:95:66:49:73:f5:f7:f1:30:14:c5:07:
8a:d2:79:82:ac:02:79:7d:a8:5b:93:bb:28:85:6b:10:c9:60:
1e:0b:4b:2b:ac:51:c4:ff:b1:d3:af:17:78:34:03:5f:99:07:
da:c5:ae:b5:f0:16:f6:ce:24:59:04:29:4c:08:2e:31:16:90:
b7:df:35:d5:f9:34:92:56:32:96:4e:da:ea:02:1e:9b:78:56:
e8:12:6d:93:d9:b9:56:ba:3a:cc:4c:04:bd:9a:ff:bb:b0:81:
5f:41:fe:0c:27:f9:84:ef:ba:d4:68:4e:6b:08:25:3e:36:17:
7a:27:f0:5f:f1:75:aa:6b:66:fb:26:1e:13:05:96:15:14:79:
f4:82:5f:03:83:d2:66:d4:a5:b4:8f:9a:2c:ab:76:04:5b:4c:
4a:86:21:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:40:54 2025 by rpki-client