Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
File: 1qcbToaUQX67vPYmi5yPljFwsfE.mft (raw, json)
Hash identifier: sHkjW9fe3De/05pR5TARAVAr3a122ljKS2dmmFzOeBA=
Subject key identifier: D7:6D:35:DF:A0:EE:02:DB:D2:0A:92:D9:1C:F9:4F:19:D4:DD:71:0B
Authority key identifier: D6:A7:1B:4E:86:94:41:7E:BB:BC:F6:26:8B:9C:8F:96:31:70:B1:F1
Certificate issuer: /CN=d6a71b4e8694417ebbbcf6268b9c8f963170b1f1
Certificate serial: 019A28C23BE373A7EE6EF664CC0146EE16BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
Manifest number: 06CD
Signing time: Tue 28 Oct 2025 03:00:09 +0000
Manifest this update: Tue 28 Oct 2025 03:00:09 +0000
Manifest next update: Wed 29 Oct 2025 03:00:09 +0000
Files and hashes: 1: 1qcbToaUQX67vPYmi5yPljFwsfE.crl (hash: UiRefSzl6K56OdjDNrh20CzZCexAEvQACbXGGZNzrfk=)
2: cPWanhkOF5JFf7ndWQEsgDaOym4.roa (hash: hNMT1d2ZHlvJJQiGYjNYvL4LotmJH6VgqTxIxCqCmaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:c2:3b:e3:73:a7:ee:6e:f6:64:cc:01:46:ee:16:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6a71b4e8694417ebbbcf6268b9c8f963170b1f1
Validity
Not Before: Oct 28 03:00:09 2025 GMT
Not After : Oct 29 03:00:09 2025 GMT
Subject: CN=d76d35dfa0ee02dbd20a92d91cf94f19d4dd710b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ec:6c:13:6e:f3:11:d5:84:9a:2b:40:b5:f4:
2d:23:61:83:f7:b9:32:6b:85:04:65:02:95:40:eb:
1d:b1:28:2f:5f:e9:fa:bd:b1:36:3d:70:09:1c:1a:
68:fe:7d:1e:84:c9:e3:cf:25:f3:e5:2a:41:c8:d9:
30:cf:f7:be:f0:cf:43:0d:70:46:02:c1:d3:11:5b:
32:74:08:4c:f2:d5:34:4a:a5:c8:a3:18:3a:9b:9a:
ff:c6:d6:8c:2b:48:8f:39:cd:88:73:8f:d7:23:a0:
a2:b5:12:8e:6d:28:39:94:31:ad:2b:a4:56:cf:bf:
e7:2c:6d:54:c3:6d:da:6b:9f:4f:e8:62:75:61:1d:
2f:a1:49:15:de:ed:be:68:a2:87:09:62:27:8a:55:
c3:b7:a7:12:70:f0:cd:3c:ef:b3:01:a7:e2:f9:68:
5e:52:92:13:92:f5:ca:7b:1b:7d:23:9b:98:50:a9:
b0:b7:d3:5b:17:94:33:9d:c7:ca:84:4e:53:43:c3:
18:7d:9b:71:05:6a:27:3e:9e:18:ed:7d:43:c6:d6:
52:c5:51:cc:a7:dd:11:72:a4:dc:57:20:d4:15:3d:
76:19:d4:3f:b2:85:92:e5:be:52:7a:e9:b0:4b:37:
00:60:61:59:ed:48:a0:76:8d:8e:ff:d6:34:65:e9:
b3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:6D:35:DF:A0:EE:02:DB:D2:0A:92:D9:1C:F9:4F:19:D4:DD:71:0B
X509v3 Authority Key Identifier:
keyid:D6:A7:1B:4E:86:94:41:7E:BB:BC:F6:26:8B:9C:8F:96:31:70:B1:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:9c:04:ca:09:1b:1a:eb:30:51:de:e7:c7:85:b0:ed:4e:d1:
c5:83:69:f6:4e:04:81:69:7b:53:41:17:ad:76:f2:f5:ea:6d:
b5:f7:41:2b:98:20:1e:64:ec:af:f7:f3:32:ac:cb:41:2d:5b:
7b:68:87:41:87:1c:05:d6:33:cb:59:6d:86:f9:ed:8b:99:54:
e2:ab:92:da:3e:98:76:f0:1c:3b:e7:a0:a3:7d:f1:03:cd:f1:
15:79:c6:35:f2:5e:cf:94:65:6a:c9:c1:07:b5:23:c1:ad:f0:
a1:64:f4:d0:93:ce:25:3e:86:f1:92:ec:3a:b6:86:33:1c:e9:
1c:f5:be:68:ef:2d:e5:8b:11:cc:a4:29:75:ac:4f:13:d0:55:
c4:94:c3:72:ad:94:85:72:10:b5:db:7d:4a:6c:01:2f:bc:c2:
d2:0a:a5:b6:e7:7c:21:bd:8f:3b:dd:a9:d9:9b:72:2f:15:27:
c8:04:fc:dd:be:67:14:f8:77:fa:4a:45:1e:4e:21:ab:14:8c:
1a:75:c7:de:40:2e:3e:82:9a:f7:9d:9c:91:a6:9b:1a:c1:73:
ea:25:43:dd:db:e6:74:8f:94:5b:cd:94:96:9e:aa:97:ff:f0:
91:92:c2:c4:11:94:f2:fa:9d:85:a7:93:06:69:19:1e:27:be:
7e:0e:9e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 06:25:20 2025 by rpki-client