Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json)
Hash identifier: qij5zhsf9w0Oufx7DY0qry8EpLXH+EzrtykTkkw1F2A=
Subject key identifier: 2E:D3:94:A1:16:04:86:B0:E1:AC:D8:6C:BA:2F:C8:26:03:3A:AB:DC
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 0199FBEBDAF72621A4BA0063A25C50F049F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 10:02:42 +0000
Manifest this update: Sun 19 Oct 2025 10:02:42 +0000
Manifest next update: Mon 20 Oct 2025 10:02:42 +0000
Files and hashes: 1: JDPCHXAUbfBXZ-JAE6cFE-tGXMI.roa (hash: bOxTgT+7J9XF4HocPumdm4M3ak6meIWnJq5cg5Hpmfs=)
2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: 86lLr3+AtfKSiMek/HQCtF4/21WfrB83jDUt6CPPFFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:da:f7:26:21:a4:ba:00:63:a2:5c:50:f0:49:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Oct 19 10:02:42 2025 GMT
Not After : Oct 20 10:02:42 2025 GMT
Subject: CN=2ed394a1160486b0e1acd86cba2fc826033aabdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dd:94:17:e9:2d:6f:c7:eb:b1:7d:68:7e:b9:
5b:c1:a1:7d:26:7a:00:0d:57:5e:0d:53:71:d2:03:
14:88:f8:70:46:f1:62:8f:eb:dc:f4:eb:d5:de:a7:
ff:c7:5f:12:a5:7c:a9:7f:ba:83:c5:e8:a8:01:10:
5c:09:2a:b1:8a:ca:bd:20:ac:55:26:c0:04:f6:3e:
53:b1:1a:6c:0c:84:0b:cf:02:d5:54:a3:f8:e3:54:
f8:db:57:b7:ef:ce:a0:e9:ce:0b:a4:6f:11:b3:5a:
33:c1:93:4f:f0:b5:05:70:92:4f:d5:67:be:59:d3:
84:ee:75:2c:dd:0f:8d:3c:15:7b:09:96:ba:dd:62:
79:62:7e:ca:17:93:82:2e:a0:85:36:58:7e:99:99:
7a:7c:33:1b:6d:fb:85:e5:00:8c:58:92:55:d2:4e:
a3:c6:a2:cb:94:1b:27:7a:31:bf:79:dd:dc:62:93:
98:7e:f7:7e:90:b0:4f:4e:31:f1:23:1a:3a:56:1b:
76:03:e8:25:a9:37:05:c8:5b:1a:70:33:9e:bf:c7:
54:f2:5e:c2:5c:a0:5b:39:43:b5:05:91:11:f9:27:
3b:f0:9e:61:72:94:11:d9:20:6b:69:15:7b:75:7a:
f6:72:39:a9:f8:3f:75:46:dc:2d:0f:ec:ea:08:a3:
85:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:D3:94:A1:16:04:86:B0:E1:AC:D8:6C:BA:2F:C8:26:03:3A:AB:DC
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:c7:03:d5:28:1e:b3:86:26:6c:24:18:e9:6b:e6:e3:49:be:
6c:89:ef:93:a1:4c:c6:c9:fc:03:c2:ff:38:cb:34:06:02:95:
dc:5a:6b:7f:51:6e:ae:a3:42:14:fc:8b:fa:30:85:d5:af:6f:
7f:21:2c:09:c9:93:b8:17:5c:2a:b7:e0:02:4b:a4:ea:f7:85:
86:5c:8b:0d:f6:5e:3c:03:b7:80:57:4d:12:8d:21:91:ab:a8:
05:05:08:53:59:56:67:2d:6d:93:fd:25:94:d3:30:a4:ba:fb:
12:e5:10:e6:9d:6b:39:74:e5:bb:d7:11:0d:8d:d2:50:97:65:
54:b0:14:03:4a:dd:a0:4c:69:f6:6d:54:56:0e:39:09:30:04:
89:2d:c7:ce:b4:50:8c:d1:de:99:6b:07:88:a3:80:3c:0f:20:
23:6b:35:2e:ee:c3:ce:bc:27:52:30:6f:13:9f:88:63:ad:3e:
a4:ac:23:49:3d:3e:b6:61:f9:bb:02:51:98:9e:ba:04:98:a8:
25:7f:92:10:76:74:8f:63:2e:3b:f9:97:51:bc:3f:de:e5:37:
83:32:86:95:29:31:a3:ac:62:9e:bf:9d:08:07:6c:95:71:f7:
80:39:b8:67:f2:6b:09:48:f5:97:62:1b:e3:36:2b:8b:b2:a6:
f7:37:0a:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:18 2025 by rpki-client