Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: 9T/eL1VBvxQJYxNbJin01Yd4tpMswjuqiBef1/75smM=
Subject key identifier: 84:5B:B2:D2:F8:43:89:56:C6:22:E3:41:3A:3F:AB:11:82:3F:98:7D
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 019A288B75D2A586F782B2C54AC80E96AACE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 0EE8
Signing time: Tue 28 Oct 2025 02:00:19 +0000
Manifest this update: Tue 28 Oct 2025 02:00:19 +0000
Manifest next update: Wed 29 Oct 2025 02:00:19 +0000
Files and hashes: 1: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: g8K0KNjfS9by+3b36l/P530NYT2IS+HAekI6zpflTJg=)
2: Tt9cDnLqp2SOeeoElhH21A1JSmo.roa (hash: g7FEq0smlg0TkkjLfygzTEzTD8KkWT+7GvQHUxPqdJo=)
3: pSYXiKXGXABhmANIG0Y2vhGLRUA.roa (hash: kjXcWabBcy+Nz9B+eKiIbdHIvrnXu/XwD/9ZftdegXw=)
4: uJ1wgWjtfF_PUvxzUj8noSaLQx0.roa (hash: 5K3mYspcTrH8J1dlAJJG2SBHWuIALi8AQG16SYzuq8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:8b:75:d2:a5:86:f7:82:b2:c5:4a:c8:0e:96:aa:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Oct 28 02:00:19 2025 GMT
Not After : Oct 29 02:00:19 2025 GMT
Subject: CN=845bb2d2f8438956c622e3413a3fab11823f987d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:57:45:a0:69:26:d1:e1:7f:38:a0:95:6b:e1:
63:27:ae:34:f5:2f:d8:4b:ee:37:05:a0:90:6c:68:
3b:33:66:95:87:6e:c9:6a:0f:16:bf:d4:06:85:f1:
77:97:f8:8f:79:f4:68:91:5f:49:e1:0e:58:ee:9e:
8f:ca:04:62:70:69:41:fc:1f:b8:fb:e6:44:18:9a:
16:5b:ef:3c:a0:90:81:52:27:c7:7d:71:66:5d:23:
47:74:6c:c5:9f:57:bc:75:7a:0f:dc:29:ec:55:1e:
ce:b6:0d:97:77:93:57:ed:a4:75:d0:82:b1:28:81:
83:22:b3:e8:86:89:20:48:ac:ae:c8:24:07:60:eb:
ac:95:3f:78:18:ad:2c:28:7b:68:03:d7:bf:c9:66:
13:14:85:d4:1a:ec:83:05:b2:c0:ae:c5:f9:5a:07:
92:57:db:ca:b1:23:ce:58:ae:78:b4:d9:fe:cc:f2:
18:a7:a0:34:45:29:26:00:2f:2b:b5:45:0e:2b:9e:
1d:f6:88:b0:3d:9d:b7:5f:56:ae:9d:b2:04:47:31:
ec:e2:1a:3c:76:59:46:bd:e9:34:c9:94:e5:51:d1:
b5:4d:56:c0:eb:30:b4:db:23:e8:cb:e9:ba:76:06:
a7:88:8b:33:51:8a:9c:9c:ff:8f:70:e3:ca:5d:b2:
96:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5B:B2:D2:F8:43:89:56:C6:22:E3:41:3A:3F:AB:11:82:3F:98:7D
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:ed:d3:f1:a6:10:06:83:7c:1b:e2:c9:70:bf:ec:bf:5c:c2:
59:31:68:bc:fc:75:fb:a8:b2:42:3f:8a:b0:fd:1e:84:7d:22:
8f:89:5e:0a:ba:32:b5:78:e5:54:a9:63:df:72:93:37:d2:95:
47:48:20:6a:ec:69:53:21:35:cc:47:07:0f:e5:a8:70:b0:b3:
b5:ef:7e:18:a5:56:aa:10:45:8b:5f:99:b0:25:fc:cc:bf:b0:
70:03:2c:6c:85:36:0e:e4:10:92:c9:35:8e:9c:b5:25:6f:72:
0e:52:68:4d:c0:59:ee:df:39:ac:15:95:cd:f2:ee:83:6c:e7:
11:a4:8d:6c:8e:65:01:e4:87:d0:c2:60:3a:df:01:14:36:1f:
73:21:33:95:d2:c0:ef:4b:f4:e4:e6:ee:a9:ea:9e:bd:ae:27:
6e:a0:03:35:72:02:fa:8f:e4:73:c3:54:83:05:de:19:68:57:
d9:bd:7f:23:dc:bd:84:4c:93:9a:e0:2f:9b:cb:45:dd:02:ea:
0b:2a:17:89:1b:45:d8:67:09:83:72:97:39:dc:c1:98:9f:91:
04:f5:e5:7f:6b:cd:64:48:49:76:e1:f5:d2:e5:e1:b9:02:e9:
5c:e4:b8:04:6a:cc:8f:2d:ae:55:1a:4f:a4:e0:8c:d4:0b:4c:
25:c8:db:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 08:34:32 2025 by rpki-client