Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
File: 1-qWsXSKtkHinLhNplihyR-nx4TE.mft (raw, json)
Hash identifier: oNafTbDHsl4OX8kIbgZTbSaixz2uKfQJRBLj4VBHj/8=
Subject key identifier: E2:4D:43:23:15:45:D4:5B:8B:A7:CA:28:5D:D6:C3:7F:C4:5C:EC:5D
Authority key identifier: FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
Certificate issuer: /CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Certificate serial: 019A7149F3D9066E125B277A4192781CC594
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
Manifest number: 124C
Signing time: Tue 11 Nov 2025 05:01:03 +0000
Manifest this update: Tue 11 Nov 2025 05:01:03 +0000
Manifest next update: Wed 12 Nov 2025 05:01:03 +0000
Files and hashes: 1: 1-qWsXSKtkHinLhNplihyR-nx4TE.crl (hash: v61ZBEmn51gGHQF63nw3LSuyScO+jxuw57+7NcYHaUs=)
2: NhnMYjAslLVa-AUlcKz__rn95zo.roa (hash: tZEX0EAU3kMvQjAQCJnIAbh87GSUNy8524Ozv2q7nvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:f3:d9:06:6e:12:5b:27:7a:41:92:78:1c:c5:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Validity
Not Before: Nov 11 05:01:03 2025 GMT
Not After : Nov 12 05:01:03 2025 GMT
Subject: CN=e24d43231545d45b8ba7ca285dd6c37fc45cec5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:97:7a:ca:af:ec:c1:39:85:10:a7:22:85:8a:
1a:41:50:60:f9:38:f6:8a:01:73:1e:21:21:bc:7d:
98:5e:fa:0e:70:ba:e5:2c:a9:bc:49:b8:3c:a0:be:
e9:9c:e5:88:8d:14:28:5e:43:52:8d:a2:ab:96:03:
ab:d3:7e:ed:e9:4a:fd:8f:73:65:6b:80:d4:06:ea:
d9:b8:2e:73:76:e1:f0:3f:d3:cd:e2:c1:eb:81:a0:
75:ac:07:20:2e:ba:20:58:4f:72:7e:fd:64:43:c6:
2d:db:c7:a6:11:91:73:e5:e1:be:63:bd:75:d1:3a:
91:14:83:93:e0:f5:05:7d:6a:11:d5:7d:94:2c:e9:
b0:23:c2:ce:97:fa:08:49:f5:84:63:f7:9b:c1:a0:
5a:ac:75:28:eb:c7:77:fe:d3:5b:8b:51:f9:4b:81:
eb:bd:15:4e:60:a8:8e:dc:49:f3:d7:c1:af:fe:65:
33:bc:2c:39:22:9c:c9:ea:4d:db:cb:5e:bf:eb:3b:
c2:ac:06:be:90:1a:32:8e:46:02:85:71:9f:6b:b6:
54:6d:6b:42:f3:bd:be:5a:a0:65:c2:40:05:cc:b5:
49:e8:6d:1c:cf:c2:f4:8d:33:7c:6a:f5:50:1c:d5:
e8:91:93:c5:f9:ca:9b:eb:3b:d8:02:00:a2:4f:65:
61:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:4D:43:23:15:45:D4:5B:8B:A7:CA:28:5D:D6:C3:7F:C4:5C:EC:5D
X509v3 Authority Key Identifier:
keyid:FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:29:d9:52:d6:59:f9:12:76:5d:69:75:d7:ea:5e:96:aa:d0:
b1:b5:9b:29:66:c5:25:97:6c:1b:73:1c:b9:d2:1d:4b:31:fe:
7e:7e:5c:d2:dc:05:7a:d9:e8:2e:8a:9a:82:33:09:d2:81:60:
1f:5c:c6:11:46:24:29:00:62:b2:1b:2a:fd:3f:93:f0:3e:1a:
70:6b:6b:e8:ae:38:6b:ed:0a:0f:04:de:d1:77:0f:6d:1f:af:
74:b1:26:71:35:59:1d:17:5a:9e:cb:8e:52:71:44:ab:37:80:
8c:d2:d8:37:0c:c8:36:f3:98:98:d8:f9:36:a6:62:7d:e7:c8:
71:ae:c7:f3:80:e4:e8:0d:d4:14:3a:aa:de:6e:85:b8:4d:0b:
32:2a:ae:89:91:d8:c1:32:df:b1:f5:c5:74:3a:85:9e:b6:56:
9e:13:6c:84:60:1a:cb:c9:53:83:43:31:0b:e8:47:79:b9:10:
e2:34:18:43:9d:05:d8:58:a1:0d:db:64:39:85:1a:1d:23:4a:
50:60:ef:50:e2:c3:f7:76:88:af:9d:25:2e:6f:76:2f:c5:b1:
ef:17:10:85:ff:11:0c:35:43:fe:4b:02:0d:3d:72:b5:3a:35:
8f:19:88:63:ae:d2:fd:82:3d:c7:cb:ae:08:f6:7a:90:46:81:
72:23:4e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:10 2025 by rpki-client