Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
File: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft (raw, json)
Hash identifier: sGQW3T8qUm0y82lHVDRqF6eHZeHdk/ObOd4mRO9mbZo=
Subject key identifier: BA:9D:BB:5A:8D:EC:0F:33:6F:31:EA:68:62:1C:49:A8:93:B5:87:F0
Authority key identifier: AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4
Certificate issuer: /CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4
Certificate serial: 019A3EDCEB466A2342595112068DAB1F92A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
Manifest number: 08B1
Signing time: Sat 01 Nov 2025 10:00:56 +0000
Manifest this update: Sat 01 Nov 2025 10:00:56 +0000
Manifest next update: Sun 02 Nov 2025 10:00:56 +0000
Files and hashes: 1: 4F9izwsHHxNkuKU97mIzesCX1fA.roa (hash: 9EEtKc3sBCyfxrwHugYM/2yhW3k3q6DEwjqGSNZdJ9g=)
2: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl (hash: pmQ0Q+snTupI2qhSz0pSYepiiiDEBIeAS6Cs7SdAtNw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Nov 2025 10:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:3e:dc:eb:46:6a:23:42:59:51:12:06:8d:ab:1f:92:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4
Validity
Not Before: Nov 1 10:00:56 2025 GMT
Not After : Nov 2 10:00:56 2025 GMT
Subject: CN=ba9dbb5a8dec0f336f31ea68621c49a893b587f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:10:61:a8:e3:27:44:f8:36:44:2c:45:0a:c2:
f8:31:39:35:8d:8f:5e:34:50:bf:90:9d:0b:b9:cf:
a3:2c:c0:2a:9e:4e:a7:1f:e7:40:66:03:f6:f5:0d:
37:6d:af:36:0c:49:ea:40:eb:76:c7:02:cc:44:63:
ef:96:cc:de:04:fc:82:19:7f:0e:b3:e3:36:6d:57:
83:7d:13:44:24:3b:4d:a7:72:96:f4:58:28:ad:ab:
72:2c:7b:c7:80:d5:24:a0:35:62:61:d9:03:e6:80:
2b:26:93:aa:89:61:93:c0:18:d6:cd:d3:56:22:42:
cb:11:6f:dc:06:79:92:cc:01:f4:34:db:0d:9b:1c:
32:c5:e2:09:b2:f7:09:8b:1c:00:b1:90:66:01:37:
6c:e6:c0:13:fc:48:3c:7b:08:ec:ec:e6:85:a4:74:
56:79:26:ea:0c:fd:7c:40:f9:32:f8:e2:d3:eb:4c:
e0:ef:07:37:68:aa:0d:67:a0:9f:92:15:70:e6:58:
c4:a1:00:ac:ec:69:b1:05:60:91:7b:ef:3c:7b:a0:
6e:30:02:79:9a:1b:c1:fa:86:a0:dc:00:30:ec:e6:
d1:9f:03:89:54:0c:3a:64:a6:07:e0:c6:35:5b:3f:
e8:ab:af:f5:db:fc:4a:23:c0:9e:12:3f:18:87:c5:
e8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9D:BB:5A:8D:EC:0F:33:6F:31:EA:68:62:1C:49:A8:93:B5:87:F0
X509v3 Authority Key Identifier:
keyid:AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:b8:ed:7b:94:18:d1:62:b5:25:41:50:c3:2e:27:dc:2a:0f:
d8:37:fe:8a:08:40:1a:b0:ab:e3:d9:f4:2a:f9:79:d4:36:bc:
bd:d5:68:6f:07:af:be:0f:7f:20:7b:ea:7c:c8:b6:14:49:3e:
e9:f3:1a:a2:1c:77:94:2c:8b:4e:81:07:3e:48:4f:97:ab:a1:
6b:2d:d4:c8:29:ef:7b:0a:75:fb:1f:a2:d7:1a:6e:4a:ab:f5:
c7:dc:70:1f:1d:ac:43:04:79:58:b9:a6:f5:1f:e5:26:76:56:
cf:87:04:29:4b:fa:12:ef:c7:e2:0a:9b:1a:76:8f:1f:22:51:
b7:bd:b0:73:b7:69:2e:34:46:fb:22:a2:8b:d8:c8:2d:bd:f2:
be:6e:75:ca:75:8d:13:a4:44:b2:e0:46:67:f8:a7:c2:94:fc:
42:13:c9:c4:79:c8:8b:6a:37:9a:80:23:c6:fb:13:8d:88:a7:
50:c6:ef:96:f1:a8:b0:73:52:19:9c:25:31:16:1c:8b:65:0f:
55:64:fc:e2:e4:fc:df:38:c9:2b:91:5f:cc:9d:b5:3b:18:ef:
25:3f:31:19:7c:9b:10:65:41:23:91:f0:8e:c7:ba:ba:28:43:
ed:bc:32:cc:fc:d5:73:c8:06:91:2c:6d:df:21:55:02:d9:53:
23:5a:d8:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 1 18:04:35 2025 by rpki-client