Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft
File: qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft (raw, json)
Hash identifier: KS+kIxve1hDATnuUFqHcu78SmZrIK0NwAV/47EUtsaE=
Subject key identifier: BB:F6:C1:86:E7:20:07:39:DA:60:09:34:14:2F:7D:30:8B:6C:BF:1A
Authority key identifier: A9:52:D0:D2:66:55:73:85:83:6A:AB:7A:E3:FD:CE:D4:CA:74:AD:89
Certificate issuer: /CN=a952d0d266557385836aab7ae3fdced4ca74ad89
Certificate serial: 019A22F7A6A28E540987915E2B3C818F220B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft
Manifest number: 0A9B
Signing time: Mon 27 Oct 2025 00:00:46 +0000
Manifest this update: Mon 27 Oct 2025 00:00:46 +0000
Manifest next update: Tue 28 Oct 2025 00:00:46 +0000
Files and hashes: 1: 0QN5Ofx6WwMbvcTiOoejeiVWFBY.roa (hash: k+6IIDKqJuYMt9/EhXM2bPBbRQ5u5Kv99iIIWzz5/2A=)
2: 1-SuDyMrxWXM7X2VtIVu9aGgRI9Y.roa (hash: 18EMBTikkSXkhqeBREgORyh2My5yAHMuFmHNML82Td4=)
3: jAsntzTtn92HQL9aHBlPKpQ9oi4.roa (hash: t92FrYwTTmbFWyaQiww/KtMDvrJ45VQgGGv2qRGnF4g=)
4: qVLQ0mZVc4WDaqt64_3O1Mp0rYk.crl (hash: lwE91Yh1YSMz55zKuiQB1dhKlVPLuFTigNXTA2OMdas=)
5: w6nRqqLinLORL7W_fsNehh2pePE.roa (hash: hnUVitPfz7Hljib/HgZzf6AtllwvuxtgqDf0jZ0Pk10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 00:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:a6:a2:8e:54:09:87:91:5e:2b:3c:81:8f:22:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a952d0d266557385836aab7ae3fdced4ca74ad89
Validity
Not Before: Oct 27 00:00:46 2025 GMT
Not After : Oct 28 00:00:46 2025 GMT
Subject: CN=bbf6c186e7200739da600934142f7d308b6cbf1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:91:c8:03:1e:4f:68:9b:bc:65:64:e4:1b:03:
37:46:31:97:17:fa:da:6d:8f:3c:68:51:91:71:14:
60:ec:26:e5:a4:c1:d4:7a:0d:31:56:8b:e6:f4:42:
56:77:5c:40:5d:b2:6f:98:48:ac:d5:06:54:bc:58:
b5:dd:e5:ef:f9:59:e2:6f:19:c0:5d:75:aa:dc:e8:
7c:ca:09:dc:5a:13:49:6a:fb:32:8e:99:54:f5:12:
2f:c8:9c:4d:bc:9a:54:35:71:18:2b:c9:cf:54:09:
c2:8d:1d:ba:41:37:09:ea:a9:c5:92:7b:84:76:21:
76:cd:39:5a:bb:0e:9c:71:02:e8:8f:9d:17:9b:cc:
33:cc:c0:81:9e:63:86:20:d5:34:55:9d:64:f4:3e:
1f:29:cd:92:9d:e0:37:c9:fb:89:27:d5:14:dc:6e:
d9:50:76:7e:ce:b6:43:c6:32:11:34:0d:96:71:94:
8d:ea:25:e3:1c:43:69:5d:99:98:91:04:9d:ab:14:
7f:6c:b3:25:98:4d:d9:f1:02:f1:69:a6:f9:16:ac:
7c:0e:48:b6:48:5a:a7:c6:d5:57:67:a4:7f:bf:bd:
68:20:48:0c:ce:77:80:61:f8:36:69:bd:c9:c5:8b:
7a:9c:73:69:55:6f:94:e7:12:85:81:a6:41:20:78:
e3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F6:C1:86:E7:20:07:39:DA:60:09:34:14:2F:7D:30:8B:6C:BF:1A
X509v3 Authority Key Identifier:
keyid:A9:52:D0:D2:66:55:73:85:83:6A:AB:7A:E3:FD:CE:D4:CA:74:AD:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:12:dc:d2:c7:40:62:25:83:ca:1b:2a:9b:01:8a:c9:58:94:
ae:8f:e9:70:1a:80:31:68:7b:f1:a0:97:8f:74:9c:14:c2:df:
45:0b:53:69:57:18:c7:34:f6:ea:90:74:af:77:6f:44:05:e1:
89:63:0f:3e:04:ab:3b:64:b8:b8:64:50:50:33:74:65:52:d2:
f2:63:17:01:0a:36:a3:f7:0c:7b:23:74:03:b0:25:89:68:5b:
41:27:dd:1f:a1:6b:e7:2a:f2:eb:fe:a9:51:25:92:af:71:ee:
d9:a8:18:21:07:e6:30:8e:f5:45:60:01:ca:dd:35:c2:13:b0:
64:ff:fc:c9:f6:e3:1d:fb:7c:27:6c:7a:7c:68:dc:bd:5f:e3:
84:11:20:6e:cc:ca:90:fe:f5:43:f1:9f:15:3f:0e:98:50:99:
d0:c1:82:84:70:2b:6d:ce:67:6c:6b:e2:2a:50:24:e6:39:26:
8f:ec:0f:d4:ef:57:0e:cd:94:99:aa:0a:be:e6:b4:d1:e1:e8:
bc:8e:0e:e9:75:2e:88:44:42:ca:46:9f:85:5b:2a:04:9d:de:
49:14:77:39:c4:bf:b7:b1:14:e2:ec:86:a2:cf:8e:a6:e9:f2:
85:68:6f:66:6a:ee:d8:8f:8e:71:c9:48:48:f9:37:70:af:4d:
a6:ff:03:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 10:06:13 2025 by rpki-client