Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft
File: cqpTdXQ1Dyam82tD3DA7njOefuw.mft (raw, json)
Hash identifier: yQnElDVkFZPcwx88NJoP4ZA5aQr+QbeDRTbW5tzxpcw=
Subject key identifier: B1:F6:9A:76:41:92:F5:B9:41:EA:75:BA:9F:F6:5E:91:FC:C8:22:D3
Authority key identifier: 72:AA:53:75:74:35:0F:26:A6:F3:6B:43:DC:30:3B:9E:33:9E:7E:EC
Certificate issuer: /CN=72aa537574350f26a6f36b43dc303b9e339e7eec
Certificate serial: 019A7293CF25AA3B5D205170C8082F5E04AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft
Manifest number: 94
Signing time: Tue 11 Nov 2025 11:01:20 +0000
Manifest this update: Tue 11 Nov 2025 11:01:20 +0000
Manifest next update: Wed 12 Nov 2025 11:01:20 +0000
Files and hashes: 1: OdQoZmUeQxbjQw9Xd3JcS6O4ZB0.roa (hash: h6gBIhto95GvAYtKF7Qysg2Pvm4JnUu8RgX7IrQ7D+s=)
2: cqpTdXQ1Dyam82tD3DA7njOefuw.crl (hash: DrIACATEsJXSrpgQtLq+u1b32YirmmL29P6AEX1mlhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:cf:25:aa:3b:5d:20:51:70:c8:08:2f:5e:04:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72aa537574350f26a6f36b43dc303b9e339e7eec
Validity
Not Before: Nov 11 11:01:20 2025 GMT
Not After : Nov 12 11:01:20 2025 GMT
Subject: CN=b1f69a764192f5b941ea75ba9ff65e91fcc822d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0f:d6:42:88:86:71:f5:8b:da:f6:61:f8:fa:
ca:c2:e9:8c:13:68:e7:c3:d3:14:17:1c:b0:38:45:
d5:11:99:ac:5f:b1:17:0b:76:78:52:09:d6:d5:d3:
ac:cb:eb:8b:08:e5:6b:f1:81:40:c7:5d:51:97:da:
1e:56:fc:91:11:39:bd:85:c3:71:34:de:c0:1a:68:
db:cb:6f:47:9b:a6:78:27:b5:24:c6:54:2d:49:4d:
89:64:45:1e:83:b8:ec:5a:2b:71:c6:c0:63:88:e6:
d7:23:83:52:f7:77:93:87:60:48:1c:4d:01:01:4e:
f4:6f:ca:37:00:e3:2b:2c:ef:6b:44:82:7c:39:92:
74:14:f2:7a:20:83:5e:6f:b8:49:74:23:46:b4:ef:
e1:bd:04:64:3c:b4:de:27:00:58:d1:fe:a0:6f:b1:
fa:0b:41:19:87:36:45:ba:04:6e:b9:87:ef:87:87:
83:bb:08:7f:44:2a:ec:db:19:b0:e4:2f:5b:2b:43:
ed:28:38:5e:98:e9:68:4a:fe:d9:e4:8d:64:a8:42:
f1:7b:48:1b:a6:e4:58:13:4a:76:ec:9f:58:3e:19:
ca:be:9f:73:42:01:b4:b5:9c:62:1f:9c:b5:74:71:
51:6c:d4:c1:bd:bc:b2:6d:e1:5c:d5:05:3e:43:36:
8a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F6:9A:76:41:92:F5:B9:41:EA:75:BA:9F:F6:5E:91:FC:C8:22:D3
X509v3 Authority Key Identifier:
keyid:72:AA:53:75:74:35:0F:26:A6:F3:6B:43:DC:30:3B:9E:33:9E:7E:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:9e:a4:3d:e1:68:72:0e:b4:22:7a:9a:70:62:57:62:cb:d7:
51:17:2a:d3:2e:73:f9:8d:04:7f:cc:45:2f:25:c3:4d:21:f5:
f3:9d:cf:87:42:4c:4d:6b:e3:25:cf:5b:eb:ed:71:40:d7:2b:
46:9e:8a:78:dd:a1:f5:04:ec:f1:57:3e:b1:4b:5c:1c:d5:8b:
93:a8:49:f5:80:48:79:b4:27:06:23:8f:c2:90:eb:00:81:ff:
40:36:18:3e:24:48:c1:5d:e2:a1:bc:e4:06:8e:6b:dc:f1:da:
61:f7:af:e4:58:27:51:d5:77:85:a2:ee:31:26:2a:b8:06:cf:
92:5b:67:1d:d6:b0:73:99:18:3b:8c:95:7e:08:6c:e4:f4:05:
64:89:93:77:98:a2:08:b9:f0:25:88:78:7f:52:fc:13:c5:53:
1a:2b:2c:33:f4:c6:08:57:59:d6:5d:3c:d4:72:7a:0e:19:14:
59:08:b3:36:22:dc:8f:6b:1c:fd:d7:c5:f5:f7:8a:04:74:bf:
a3:63:4e:19:b2:c2:58:11:6a:31:87:97:e3:f8:05:64:a7:55:
f1:a2:2b:d6:71:7f:e4:2b:0a:7c:33:39:07:f8:76:3b:8e:aa:
26:6a:e5:6c:dd:ec:1a:2b:5f:2d:89:62:16:6e:c1:97:05:33:
2c:2b:3c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:23:33 2025 by rpki-client