Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
File: qWpTYQ2O9mShJ1txquq7KFEEwk8.mft (raw, json)
Hash identifier: XKPaGJ7CLVpZcK6Dauk15JenN7ph4rocw1WEvWh4/2A=
Subject key identifier: E1:88:3D:6E:06:87:E6:1A:1A:4A:31:B6:05:BD:35:9E:0D:3B:3A:EA
Authority key identifier: A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
Certificate issuer: /CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Certificate serial: 019A71B813EEDA314139F8DA1C08184469AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 07:01:20 +0000
Manifest this update: Tue 11 Nov 2025 07:01:20 +0000
Manifest next update: Wed 12 Nov 2025 07:01:20 +0000
Files and hashes: 1: qWpTYQ2O9mShJ1txquq7KFEEwk8.crl (hash: 3iR5w/R77cfgw4Dz78Uvaos6WqlBG1Hi8KTtVX0sVU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:13:ee:da:31:41:39:f8:da:1c:08:18:44:69:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Validity
Not Before: Nov 11 07:01:20 2025 GMT
Not After : Nov 12 07:01:20 2025 GMT
Subject: CN=e1883d6e0687e61a1a4a31b605bd359e0d3b3aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:1c:58:98:37:4d:9e:09:1c:0e:d1:31:ad:
f7:65:86:3f:6f:96:b8:d6:c4:7e:46:71:ca:56:17:
28:54:aa:53:d1:3d:ed:a5:ac:eb:b4:87:f0:27:54:
6b:35:06:51:8a:10:4a:b2:ad:ea:29:a6:5e:fb:ef:
ae:35:59:16:53:b9:08:d9:7e:37:a6:9e:49:a1:70:
2e:07:3d:2b:78:a5:49:e1:60:5c:2a:10:92:75:5c:
7d:75:f5:30:e8:8f:9c:36:6a:18:92:3a:2e:8a:e6:
b2:2c:04:9c:ec:fc:e6:95:1e:9c:f8:14:0b:54:7e:
3d:a1:10:21:8c:a5:36:1f:3c:9c:4d:dd:7c:02:dd:
c3:fb:32:2d:50:a7:95:06:df:4b:3c:8e:7f:06:4d:
84:67:b0:06:7c:14:54:82:7f:a3:c3:5b:df:72:02:
70:10:11:c5:3f:0e:e5:4f:f3:a6:f3:ba:c9:ab:85:
68:ab:84:35:24:f1:3e:80:cf:3f:59:a3:00:8f:59:
30:8c:72:c0:4a:52:a6:9d:cf:df:ee:19:2f:8c:b0:
95:2c:10:a1:21:72:a9:56:0c:2a:26:ec:96:23:bc:
7d:31:22:5e:35:9d:08:b5:9a:09:b1:d0:9c:d9:d3:
44:fb:41:9a:dd:7c:eb:dc:a4:14:fc:6e:b7:d5:50:
6d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:88:3D:6E:06:87:E6:1A:1A:4A:31:B6:05:BD:35:9E:0D:3B:3A:EA
X509v3 Authority Key Identifier:
keyid:A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:ca:d5:48:12:88:ea:d7:bb:48:63:15:e8:77:68:57:20:ee:
38:36:19:77:78:f3:db:26:d5:91:62:10:53:ea:23:b6:64:40:
f7:a2:ec:20:c4:00:bf:d8:ea:23:c3:a5:f4:78:5b:2d:6c:d1:
95:ed:19:1a:29:bd:87:e8:40:10:5f:46:22:6a:77:67:e6:cf:
1c:1e:2d:ff:d8:3a:bc:93:58:3c:0e:e4:8a:17:79:38:45:ef:
4b:f5:9d:b1:3c:7e:33:45:5b:94:40:54:34:2c:d8:f9:40:20:
47:c9:a5:55:8e:62:4b:17:99:d0:e2:9f:d4:9c:75:90:92:d0:
f0:fe:1d:e6:43:43:74:80:10:8f:90:4f:33:57:db:ab:e3:a0:
a9:b8:ee:b7:c5:e4:53:ed:44:9b:83:93:57:82:a6:dd:8c:a5:
9a:19:42:43:21:f9:e0:5e:d0:57:df:53:13:0e:04:bc:38:b7:
57:05:03:3f:58:86:4f:c7:7d:87:24:44:2b:31:07:99:65:71:
cb:08:6f:db:63:41:52:0d:db:a9:b2:32:c7:be:b0:2e:ff:ec:
e5:55:f3:3d:66:a8:49:07:f9:3b:a0:24:bf:8d:e8:e8:6c:e4:
e8:52:3e:69:f8:2d:b2:e5:84:84:46:de:b1:51:28:7a:2c:d4:
f8:f8:50:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:01 2025 by rpki-client