Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
File: QRoqlAW9oWccEHdvRCYnPJBOStA.mft (raw, json)
Hash identifier: 6GRPvmc0eiThUvvYrDTlN2gqB2s59Y6AYbaZWJ3Yxpw=
Subject key identifier: 74:41:42:22:DA:A1:D1:A0:5C:13:FA:DA:2E:6B:C1:23:D2:63:32:A5
Authority key identifier: 41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
Certificate issuer: /CN=411a2a9405bda1671c10776f4426273c904e4ad0
Certificate serial: 0199FEB522CEAA3A59A1629964BC2F04233D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 23:01:47 +0000
Manifest this update: Sun 19 Oct 2025 23:01:47 +0000
Manifest next update: Mon 20 Oct 2025 23:01:47 +0000
Files and hashes: 1: 7kOLb5agTvJNiZmHbg7oPOSBoq0.roa (hash: 0jza8HkowMAhNdk3rHbioNC6hwm48YtOGKmOL8x2OVw=)
2: OltzXJJiE9XyxoEWZKwac5KxNNc.roa (hash: MXwRj0eiEFB7lamZjGpRz17XKhXqe6VMpTtPXa7Dwss=)
3: QRoqlAW9oWccEHdvRCYnPJBOStA.crl (hash: p9ZWxXedL5AIQRhI3Oz+YeLs1oK804zeVwHCU1mlWPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 23:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b5:22:ce:aa:3a:59:a1:62:99:64:bc:2f:04:23:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411a2a9405bda1671c10776f4426273c904e4ad0
Validity
Not Before: Oct 19 23:01:47 2025 GMT
Not After : Oct 20 23:01:47 2025 GMT
Subject: CN=74414222daa1d1a05c13fada2e6bc123d26332a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:03:85:d9:2c:c7:2e:6c:c7:b1:27:0f:0a:5f:
04:6a:d6:c7:90:a1:4a:60:c6:cf:2e:e9:ad:23:4d:
fd:a6:b2:c5:9d:aa:20:c5:7c:a9:81:19:7d:60:e8:
6c:de:82:9b:46:a0:96:95:34:02:c0:ea:af:96:cb:
2c:e5:b8:45:a6:02:1a:ff:a0:64:db:39:57:c8:f8:
aa:cf:52:90:4a:d3:33:f7:b4:14:dc:ff:96:20:36:
c1:11:5d:2d:41:91:2c:ea:78:1f:b2:1b:6a:b4:6d:
71:5f:66:b3:55:5f:7d:f6:08:4e:d6:3f:bc:64:a8:
8a:8b:62:c6:e8:e0:12:8e:12:63:ed:e5:4f:e1:f6:
a4:f6:25:36:41:8f:98:55:26:a1:14:74:fb:63:17:
de:c9:a0:6d:89:04:56:57:ad:cb:c9:38:8f:ca:86:
26:d2:84:7f:9f:b5:95:39:82:9e:0a:97:76:b1:58:
3f:5e:e3:7d:be:64:2b:30:42:0b:31:c3:e2:f0:91:
6a:60:7e:85:39:b0:eb:b2:a2:23:11:fb:0f:c2:2d:
eb:f6:69:96:10:28:7f:1c:4e:40:c7:ce:70:e2:dd:
70:4a:36:39:32:9f:73:04:3a:75:b4:35:bd:39:4b:
6c:73:b4:3b:4d:d1:43:2a:1d:0e:5d:59:9f:46:69:
c1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:41:42:22:DA:A1:D1:A0:5C:13:FA:DA:2E:6B:C1:23:D2:63:32:A5
X509v3 Authority Key Identifier:
keyid:41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:56:c3:56:e2:25:95:f2:70:da:90:ef:8d:27:7e:bc:10:73:
77:45:3c:9e:24:be:9a:dc:cb:ee:ec:94:12:41:5a:43:da:6b:
c9:8d:8f:96:8d:0c:7c:5d:da:89:b7:b1:59:31:bf:ee:82:8e:
3f:56:a3:91:98:80:39:ac:9e:fe:16:8b:51:05:45:f9:c2:70:
a2:30:49:a1:8a:7a:09:52:ef:b8:c6:5c:f2:19:5b:48:68:6d:
6c:23:be:71:86:5d:f6:90:4f:d8:40:c8:cd:70:07:a6:d4:71:
54:fc:7e:c7:95:f0:a8:c6:b9:5e:2a:37:da:14:b7:00:63:84:
02:6d:81:5e:f9:7e:6c:96:e4:f5:64:57:d6:71:60:95:49:b9:
1f:f9:31:f8:03:c1:d1:2f:44:0e:82:e5:7e:33:11:29:fe:c1:
bf:6c:59:cb:11:41:33:4b:fb:45:eb:d8:1c:73:6a:a9:21:04:
8b:63:47:32:5b:2c:17:ef:6d:a6:81:a4:3e:07:27:6b:68:23:
f4:a0:33:95:f3:67:dc:5d:a5:a6:25:98:0f:c7:9f:10:c3:d9:
29:db:28:e1:61:cb:77:54:2a:e7:87:ab:83:ab:3d:34:a2:f3:
f1:68:dc:23:25:74:bb:be:99:cd:49:aa:25:4e:0b:b0:7f:50:
83:4a:81:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:44:17 2025 by rpki-client