Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft
File: qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft (raw, json)
Hash identifier: EuPL/uMT7q2lZE1VBBYFgPUpfg81BMXJr09n1TuVB00=
Subject key identifier: A3:6C:D3:E1:FC:59:04:3E:D5:7B:45:7C:08:4B:5B:AE:39:A2:2A:ED
Authority key identifier: A8:22:07:FD:50:C4:5E:96:F2:82:5E:C7:72:CF:6B:8D:EA:3D:FC:B0
Certificate issuer: /CN=a82207fd50c45e96f2825ec772cf6b8dea3dfcb0
Certificate serial: 019A251CD65B0EA38BC7F0719E93B6E73271
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft
Manifest number: 0633
Signing time: Mon 27 Oct 2025 10:00:38 +0000
Manifest this update: Mon 27 Oct 2025 10:00:38 +0000
Manifest next update: Tue 28 Oct 2025 10:00:38 +0000
Files and hashes: 1: gHCDIdhOuUpwW3kY6kopG285_k0.roa (hash: 5xiT0kgNZs49N5lk+a3OABaCYPVOiGuQ90iKWrfQblE=)
2: qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl (hash: tJ3vSsKX956tDx17wdvLYjIFh6amG4A870rjVck8N8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:1c:d6:5b:0e:a3:8b:c7:f0:71:9e:93:b6:e7:32:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a82207fd50c45e96f2825ec772cf6b8dea3dfcb0
Validity
Not Before: Oct 27 10:00:38 2025 GMT
Not After : Oct 28 10:00:38 2025 GMT
Subject: CN=a36cd3e1fc59043ed57b457c084b5bae39a22aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:01:f3:2a:15:e5:7d:5d:6b:5c:d7:20:89:47:
86:1f:33:e5:42:96:1a:ad:69:13:71:7a:3e:82:3a:
3f:43:e2:e9:6d:92:87:e1:89:65:56:ba:4c:af:c3:
28:04:1f:3e:d7:bc:8b:68:aa:34:06:c1:7b:2d:ab:
e1:36:8a:e2:b4:f1:a7:15:03:bf:68:a7:6f:07:2f:
41:d3:bc:ed:36:24:c3:30:cd:1d:02:57:7b:61:22:
f5:41:77:35:35:84:84:8e:5c:bf:0f:1a:09:5a:b6:
6e:33:ac:bf:8e:15:6b:7d:f1:d8:b1:29:26:2a:61:
56:3f:e7:00:37:0d:47:9e:50:dd:41:8f:52:7c:33:
2a:b8:f7:d4:91:21:28:56:71:63:d2:59:fc:2e:7f:
83:75:b0:64:96:36:f6:d1:b2:7c:2b:35:dc:e0:86:
81:21:3b:ed:d4:44:45:f9:63:01:4d:29:a1:f6:30:
7e:ce:ee:26:8f:dd:77:33:35:60:d4:fd:7b:31:fd:
79:54:2e:24:de:1a:94:8b:64:5a:ac:38:20:50:be:
10:5b:0d:ae:46:ab:53:7a:da:90:2f:c3:84:61:b5:
67:25:0d:66:a8:27:aa:71:9a:ad:9e:a1:24:12:66:
06:25:7c:02:56:7b:79:2a:ff:b3:02:57:5d:f0:de:
9b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6C:D3:E1:FC:59:04:3E:D5:7B:45:7C:08:4B:5B:AE:39:A2:2A:ED
X509v3 Authority Key Identifier:
keyid:A8:22:07:FD:50:C4:5E:96:F2:82:5E:C7:72:CF:6B:8D:EA:3D:FC:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:d8:d5:6b:ec:7d:a7:4a:c8:c0:d8:80:a1:9c:c8:58:c1:13:
db:0d:c4:17:c7:c7:7d:0d:cb:41:29:9c:6f:81:51:fe:68:14:
dd:3c:66:de:82:98:44:1e:96:94:b3:2a:5b:68:d6:63:bb:7a:
01:f8:af:b3:28:34:dd:48:21:e6:78:c0:ff:cb:7e:50:f8:53:
bf:46:fb:68:16:7d:3a:1f:e5:20:f9:a4:d7:d4:4d:a8:a6:d6:
b0:ae:d4:88:66:8a:05:0a:36:26:b6:df:df:7a:f6:21:4c:55:
69:d5:7f:53:96:4b:9b:b2:4f:c3:d8:06:2d:7e:ed:d1:16:fb:
14:2f:9a:94:74:20:bd:8a:09:49:0f:90:d0:a6:96:14:d2:55:
c4:72:98:ae:3a:d4:92:b1:da:93:5a:b1:73:35:94:f1:ea:8b:
9b:1b:57:f7:4e:fa:18:70:87:7a:57:10:7e:40:24:af:04:23:
94:a3:1c:6a:07:0d:fb:da:f8:99:30:02:23:68:db:52:c0:92:
24:c2:98:68:fe:a2:63:82:37:d6:3a:cd:67:cf:8d:18:6d:dc:
5e:65:16:06:6b:f6:28:67:94:5a:3b:2d:0f:94:cc:9e:fc:e6:
40:1e:0d:c7:d5:17:b2:50:c6:72:d0:62:c5:fc:63:93:a9:67:
ed:5d:1a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:31:33 2025 by rpki-client