Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: QHyGX0jm+KtTdysYKfuuUbAfM67Kt2b/6isc5Te04yI=
Subject key identifier: 3B:90:C6:97:77:55:65:EB:55:02:F9:11:3D:9D:43:B0:03:86:06:C9
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 019A1D63821798E529F6C580037E47E315C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 11BF
Signing time: Sat 25 Oct 2025 22:00:51 +0000
Manifest this update: Sat 25 Oct 2025 22:00:51 +0000
Manifest next update: Sun 26 Oct 2025 22:00:51 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: NG7OGRKzsKBdfKcNgdw4/rvABNVXlmJHb9WxhxpcBHY=)
2: QgExJsLM6ckB_bwe9qRnk4o5HhA.roa (hash: P6xf+cz+/i4pkIjOYnliYy5pmyQWXuehaFAXXoyCR5k=)
3: fD4OezRM4UrasrKKJ10uGn5_Qug.roa (hash: +HiHjgUZa5Xei+THiDncnTXYzPCxqbbX0ahPYM7QsZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:63:82:17:98:e5:29:f6:c5:80:03:7e:47:e3:15:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Oct 25 22:00:51 2025 GMT
Not After : Oct 26 22:00:51 2025 GMT
Subject: CN=3b90c697775565eb5502f9113d9d43b0038606c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4e:80:d0:91:0c:21:6d:41:9c:8b:36:a2:07:
aa:bb:9f:65:5e:7f:56:82:7d:07:4a:ee:55:17:9d:
8a:39:b2:bf:f8:a7:ea:dc:f9:06:dc:dc:56:63:25:
ee:a0:b0:57:03:78:af:2f:92:0a:e6:6c:7f:07:c3:
ab:2b:d7:4a:2f:3d:59:81:7d:95:46:95:ec:48:f4:
00:9d:e2:09:c8:71:85:bb:ad:3a:ac:f7:17:34:19:
2b:24:7f:dc:9c:a2:00:86:f3:65:23:71:52:6a:3b:
51:41:b6:16:aa:47:42:84:97:63:c9:df:ef:4d:be:
b7:7d:81:ce:12:c9:d0:25:1e:40:8e:95:43:86:14:
e6:e1:10:c3:0e:a5:d5:0f:8b:1b:dd:82:03:23:15:
ea:f5:de:7a:ef:d7:fe:61:65:4f:71:55:f4:c9:7f:
5d:04:a5:26:cc:9a:66:47:31:1f:db:5e:7e:15:47:
7c:62:04:a4:a0:1c:80:68:f8:2d:c0:fb:36:49:b5:
78:3c:b3:f0:b0:a4:1e:67:be:2a:4c:79:a0:99:b3:
eb:2c:b8:61:5e:a0:34:d2:c0:59:a3:45:70:91:05:
e6:c1:b2:83:7d:fd:dc:e7:38:eb:1a:14:5b:9a:20:
ed:0e:e0:de:cb:bc:e6:8b:ab:43:64:16:a0:bc:c5:
b8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:90:C6:97:77:55:65:EB:55:02:F9:11:3D:9D:43:B0:03:86:06:C9
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:18:81:04:e8:d9:66:12:0b:49:76:41:c4:a5:20:6b:8c:8a:
87:32:b5:24:18:d0:af:5c:ce:be:c4:f4:51:1d:bf:dc:cd:9e:
40:38:bd:d7:ae:d7:1b:82:64:07:23:1e:11:9b:18:e2:e2:87:
a0:fd:c5:b8:ef:56:89:02:af:6e:3f:eb:11:04:a5:79:f1:8e:
27:02:3c:07:ba:87:ab:24:03:26:6b:76:97:8e:e1:17:df:55:
41:5c:31:61:ed:af:e2:b9:5b:08:40:fd:23:cd:e7:81:90:32:
db:c8:dd:46:3c:34:28:5d:59:73:53:12:37:c8:c8:5c:1e:0a:
8c:a3:55:7f:89:34:01:22:66:45:e7:49:f4:37:4f:a4:fb:0e:
ca:40:ab:50:ae:e4:e9:44:f6:77:0d:0f:dd:94:d2:79:9d:c3:
54:59:3f:cd:ae:8a:05:82:e9:52:8f:0b:40:70:2d:42:95:c8:
71:19:1d:2e:08:ed:91:4c:61:d1:43:4c:34:26:97:ea:48:6d:
aa:f7:0f:0f:0a:76:15:e3:34:e0:35:12:2e:c4:71:44:6c:91:
cc:95:d7:55:2d:16:f8:df:8c:d1:c2:d1:97:0d:e0:f1:8c:f5:
dc:73:c9:00:62:ba:c0:23:90:d9:5c:be:91:48:64:d5:a2:3f:
1b:0d:34:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZodY4IXmOUp9sWAA35H4xXDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MDk2MjAzNWM1ZTk1MTAxM2NhMDY3MGNhNTY5ZTc5Zjhk
NjNjMTUwHhcNMjUxMDI1MjIwMDUxWhcNMjUxMDI2MjIwMDUxWjAzMTEwLwYDVQQD
EygzYjkwYzY5Nzc3NTU2NWViNTUwMmY5MTEzZDlkNDNiMDAzODYwNmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuU6A0JEMIW1BnIs2ogequ59lXn9W
gn0HSu5VF52KObK/+Kfq3PkG3NxWYyXuoLBXA3ivL5IK5mx/B8OrK9dKLz1ZgX2V
RpXsSPQAneIJyHGFu606rPcXNBkrJH/cnKIAhvNlI3FSajtRQbYWqkdChJdjyd/v
Tb63fYHOEsnQJR5AjpVDhhTm4RDDDqXVD4sb3YIDIxXq9d5679f+YWVPcVX0yX9d
BKUmzJpmRzEf215+FUd8YgSkoByAaPgtwPs2SbV4PLPwsKQeZ74qTHmgmbPrLLhh
XqA00sBZo0VwkQXmwbKDff3c5zjrGhRbmiDtDuDey7zmi6tDZBagvMW4dQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDuQxpd3VWXrVQL5ET2dQ7ADhgbJMB8GA1UdIwQY
MBaAFNUJYgNcXpUQE8oGcMpWnnn41jwVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTIt
MDU0YTM2MzExNWY1LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTItMDU0YTM2MzExNWY1
LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkBiBBOjZ
ZhILSXZBxKUga4yKhzK1JBjQr1zOvsT0UR2/3M2eQDi9167XG4JkByMeEZsY4uKH
oP3FuO9WiQKvbj/rEQSlefGOJwI8B7qHqyQDJmt2l47hF99VQVwxYe2v4rlbCED9
I83ngZAy28jdRjw0KF1Zc1MSN8jIXB4KjKNVf4k0ASJmRedJ9DdPpPsOykCrUK7k
6UT2dw0P3ZTSeZ3DVFk/za6KBYLpUo8LQHAtQpXIcRkdLgjtkUxh0UNMNCaX6kht
qvcPDwp2FeM04DUSLsRxRGyRzJXXVS0W+N+M0cLRlw3g8Yz13HPJAGK6wCOQ2Vy+
kUhk1aI/Gw00Dg==
-----END CERTIFICATE-----
Generated at Sun Oct 26 00:04:39 2025 by rpki-client