Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
File: byDBquA8J08ClCjuoKRCQgjU8-0.mft (raw, json)
Hash identifier: QWIeUbLfXtMgocpy57GnScRuI1x/ymNUQ3G3QFDZRHU=
Subject key identifier: CA:88:70:1F:6A:14:5E:36:09:67:D0:5C:48:FD:57:59:FD:DD:75:8E
Authority key identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED
Certificate issuer: /CN=6f20c1aae03c274f029428eea0a4424208d4f3ed
Certificate serial: 0199FD6B0953B626B109A2C7E9B4F51C6E89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 17:01:14 +0000
Manifest this update: Sun 19 Oct 2025 17:01:14 +0000
Manifest next update: Mon 20 Oct 2025 17:01:14 +0000
Files and hashes: 1: QR-XfIkw00mD51XnwCvsG-9T89w.roa (hash: a0XDBbD/tQURYMLpVooHaNMf9NXfcD/rGt0gapo+gwA=)
2: byDBquA8J08ClCjuoKRCQgjU8-0.crl (hash: UUaiKRLPcRANjlNvL7O0GwGHNMbNcDkY/gzPdWM5fIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:09:53:b6:26:b1:09:a2:c7:e9:b4:f5:1c:6e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f20c1aae03c274f029428eea0a4424208d4f3ed
Validity
Not Before: Oct 19 17:01:14 2025 GMT
Not After : Oct 20 17:01:14 2025 GMT
Subject: CN=ca88701f6a145e360967d05c48fd5759fddd758e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:02:9e:a1:85:68:de:28:5e:03:a4:70:36:64:
28:94:73:a4:c7:bd:27:d3:4d:0d:4f:1b:2d:50:61:
99:9f:2a:e1:75:0a:97:5e:63:24:97:6a:c4:52:3d:
91:6c:7a:d8:35:2e:f9:74:5f:8a:89:9a:52:33:3d:
3d:57:ff:83:85:8a:ae:85:76:71:71:f9:91:79:56:
0f:a8:5a:8e:d5:19:c9:91:d4:3a:69:d6:eb:f1:e3:
c9:21:43:28:20:9c:b3:63:de:b2:c3:81:f9:fc:19:
f3:cf:fc:84:0e:46:71:5a:3c:e0:53:c6:99:99:cd:
75:f6:ca:c3:af:b3:52:0c:65:68:08:fe:15:14:11:
62:40:9e:35:28:0a:d2:14:51:34:0c:81:35:02:eb:
10:14:c5:17:00:6d:c6:20:55:f5:a0:16:09:3e:37:
44:e8:83:f6:58:92:37:9c:a2:cb:b2:3c:df:99:5d:
11:20:09:fc:26:d8:6a:98:9c:af:41:09:df:c2:60:
cb:a7:f8:b6:d2:29:43:75:91:fa:7a:ba:78:c5:30:
6d:58:18:62:d7:94:3c:3c:f2:d8:c4:67:e4:cd:7f:
38:b8:97:bd:ad:ff:93:02:63:b1:c4:15:0a:c3:c2:
ae:50:41:7f:b3:77:b0:9f:92:bd:3b:e7:16:92:45:
c7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:88:70:1F:6A:14:5E:36:09:67:D0:5C:48:FD:57:59:FD:DD:75:8E
X509v3 Authority Key Identifier:
keyid:6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:cc:46:5e:83:bb:07:a6:c6:c1:22:6c:21:49:09:74:b8:22:
85:09:5f:22:13:fd:a2:c9:37:ad:6f:f3:94:71:68:ab:1b:f3:
49:5a:91:36:d0:3a:63:e4:ff:16:83:56:0d:0c:38:4c:ce:84:
9c:e0:73:3a:d1:95:8a:60:ba:81:6c:7f:1d:6a:52:76:d2:6e:
99:b6:b2:84:ce:2d:7e:a8:6d:c8:4d:2b:df:9b:7a:4f:4d:7e:
ba:da:63:e8:dd:a7:25:d8:b8:c6:31:b7:4f:66:13:a9:ec:1b:
53:38:42:29:55:a4:e6:5e:23:4e:a6:49:c4:3a:2b:fe:eb:56:
79:75:7d:20:e6:51:b5:4b:20:d6:ab:b4:a9:97:91:56:2e:bf:
9a:22:a2:4c:e7:71:df:66:49:94:dd:c0:c1:0a:71:24:e2:e5:
6e:61:47:6b:46:6c:22:a3:94:6e:8f:b0:c6:e8:68:70:2b:71:
5d:bd:4e:95:6a:63:55:ab:96:35:e8:54:cb:47:5b:5b:df:2f:
f6:e2:74:32:9a:df:e2:2c:91:53:e7:b5:35:9c:54:68:50:0a:
29:8c:44:f3:23:f1:ad:88:8a:a9:62:98:6d:71:bc:c2:5e:8b:
67:ab:29:70:c0:9d:9c:e6:c9:63:31:36:86:7e:ff:5f:3a:df:
b0:2e:0b:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9awlTtiaxCaLH6bT1HG6JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMjBjMWFhZTAzYzI3NGYwMjk0MjhlZWEwYTQ0MjQyMDhk
NGYzZWQwHhcNMjUxMDE5MTcwMTE0WhcNMjUxMDIwMTcwMTE0WjAzMTEwLwYDVQQD
EyhjYTg4NzAxZjZhMTQ1ZTM2MDk2N2QwNWM0OGZkNTc1OWZkZGQ3NThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQKeoYVo3iheA6RwNmQolHOkx70n
000NTxstUGGZnyrhdQqXXmMkl2rEUj2RbHrYNS75dF+KiZpSMz09V/+DhYquhXZx
cfmReVYPqFqO1RnJkdQ6adbr8ePJIUMoIJyzY96yw4H5/Bnzz/yEDkZxWjzgU8aZ
mc119srDr7NSDGVoCP4VFBFiQJ41KArSFFE0DIE1AusQFMUXAG3GIFX1oBYJPjdE
6IP2WJI3nKLLsjzfmV0RIAn8JthqmJyvQQnfwmDLp/i20ilDdZH6erp4xTBtWBhi
15Q8PPLYxGfkzX84uJe9rf+TAmOxxBUKw8KuUEF/s3ewn5K9O+cWkkXHfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMqIcB9qFF42CWfQXEj9V1n93XWOMB8GA1UdIwQY
MBaAFG8gwargPCdPApQo7qCkQkII1PPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUt
MDk1ZDBiZDI1NTVmLzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUtMDk1ZDBiZDI1NTVm
LzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkMxGXoO7
B6bGwSJsIUkJdLgihQlfIhP9osk3rW/zlHFoqxvzSVqRNtA6Y+T/FoNWDQw4TM6E
nOBzOtGVimC6gWx/HWpSdtJumbayhM4tfqhtyE0r35t6T01+utpj6N2nJdi4xjG3
T2YTqewbUzhCKVWk5l4jTqZJxDor/utWeXV9IOZRtUsg1qu0qZeRVi6/miKiTOdx
32ZJlN3AwQpxJOLlbmFHa0ZsIqOUbo+wxuhocCtxXb1OlWpjVauWNehUy0dbW98v
9uJ0Mprf4iyRU+e1NZxUaFAKKYxE8yPxrYiKqWKYbXG8wl6LZ6spcMCdnObJYzE2
hn7/XzrfsC4LDA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:23 2025 by rpki-client