Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
File: qLq2HDYOoQjNGSx856ftVWW9--A.mft (raw, json)
Hash identifier: bvkJDLuNpickrV3Y3pK2GUHUuLegkYgk67w3pv98WlQ=
Subject key identifier: 6E:83:8B:0C:28:52:AD:C1:B5:10:0D:E2:1E:A3:4B:14:D4:7F:7E:55
Authority key identifier: A8:BA:B6:1C:36:0E:A1:08:CD:19:2C:7C:E7:A7:ED:55:65:BD:FB:E0
Certificate issuer: /CN=a8bab61c360ea108cd192c7ce7a7ed5565bdfbe0
Certificate serial: 019A00357F8833AD795BE40064E070EAFE96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
Manifest number: 0E5A
Signing time: Mon 20 Oct 2025 06:01:37 +0000
Manifest this update: Mon 20 Oct 2025 06:01:37 +0000
Manifest next update: Tue 21 Oct 2025 06:01:37 +0000
Files and hashes: 1: llKmEV0JVzIG0_MZWPlP8ygpeC0.roa (hash: jPaOJ8ND+JyHLtdhEIszWBX4EhT8804ihxPfOvX+M6g=)
2: qLq2HDYOoQjNGSx856ftVWW9--A.crl (hash: 1PwHlKstSEeom6AeLqEsBotIjZ+4jaASv4NYqiB10sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:7f:88:33:ad:79:5b:e4:00:64:e0:70:ea:fe:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8bab61c360ea108cd192c7ce7a7ed5565bdfbe0
Validity
Not Before: Oct 20 06:01:37 2025 GMT
Not After : Oct 21 06:01:37 2025 GMT
Subject: CN=6e838b0c2852adc1b5100de21ea34b14d47f7e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:71:80:e2:dd:0a:14:ec:ba:9f:e6:22:f0:de:
53:c6:b4:ce:e3:f3:91:f5:33:f9:44:88:79:0e:6d:
55:8d:53:f6:74:a4:cb:12:11:23:c0:59:c4:3f:55:
74:f3:4f:1b:ae:d3:ab:c4:63:32:25:a9:30:8d:d4:
8b:53:d2:8d:0d:00:31:2e:29:d3:da:3d:9c:0d:32:
e3:07:ce:50:ff:d3:2f:32:d9:e3:ba:25:23:ff:dd:
ff:85:6f:8b:9a:d5:e8:1a:ee:17:9b:04:a2:c4:dd:
09:8a:7f:ed:13:60:e0:06:7f:a9:43:3f:74:28:88:
b0:4d:c4:98:6c:f9:5d:c6:bf:1c:58:61:4a:25:5f:
be:95:8a:34:46:d2:fa:9b:3d:35:32:e3:ed:be:d1:
8c:40:37:57:10:93:b4:8a:4a:e1:ea:a8:28:ff:4d:
46:c5:8d:0f:9b:c6:5e:38:0c:65:f9:0b:19:45:91:
b9:e1:bc:02:78:b5:ea:14:83:90:59:ba:30:07:bb:
d8:a6:26:0b:ca:1a:c1:e7:85:14:1f:e3:a0:cb:8c:
46:2e:5e:b7:05:9a:f2:17:c3:fc:96:94:34:48:3f:
3d:2d:ba:81:98:26:e3:4e:d9:90:2c:b1:ff:69:56:
90:a5:52:5e:23:67:38:e6:e6:6e:2a:59:d5:2d:4a:
0f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:83:8B:0C:28:52:AD:C1:B5:10:0D:E2:1E:A3:4B:14:D4:7F:7E:55
X509v3 Authority Key Identifier:
keyid:A8:BA:B6:1C:36:0E:A1:08:CD:19:2C:7C:E7:A7:ED:55:65:BD:FB:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:e7:5a:28:d3:bc:8f:7a:0b:1c:84:af:38:67:43:24:08:cf:
59:5e:47:bb:46:2e:de:2a:d0:dd:56:a5:e8:17:b0:58:d2:b2:
24:d1:a9:0b:17:af:9a:b5:4d:8e:a2:82:9d:88:89:9f:e2:13:
22:5f:6b:1b:01:c8:be:40:ae:bd:ee:96:59:1e:cc:f9:58:dc:
9a:6d:7d:0f:42:51:64:56:f9:6c:ab:a8:1c:64:a1:bf:15:23:
43:8e:6c:2b:60:44:93:42:a7:53:d8:0c:84:87:e5:11:62:3c:
b1:f3:b3:88:c9:6f:53:ef:dd:ca:fe:6d:a2:ad:8b:d5:6b:e2:
34:07:78:2c:06:7a:0e:25:a1:12:c0:70:c4:49:83:94:74:6c:
3a:12:d1:95:e5:52:cb:7e:5d:5a:b1:25:02:8c:fb:06:06:e8:
7a:aa:8e:ec:bd:a6:47:d3:08:62:b9:7e:5f:a6:12:d6:14:20:
32:24:22:61:6f:95:64:20:46:d4:b6:a2:0f:ab:d2:99:af:00:
63:50:e4:cf:31:fe:05:56:08:01:a0:00:f2:c2:1a:74:57:07:
f6:bc:6e:08:0f:0f:26:8a:42:85:2a:03:70:93:af:09:45:aa:
64:07:15:4c:57:5a:70:7d:a9:d3:56:b7:66:93:8e:15:5b:45:
a6:a4:22:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoANX+IM615W+QAZOBw6v6WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4YmFiNjFjMzYwZWExMDhjZDE5MmM3Y2U3YTdlZDU1NjVi
ZGZiZTAwHhcNMjUxMDIwMDYwMTM3WhcNMjUxMDIxMDYwMTM3WjAzMTEwLwYDVQQD
Eyg2ZTgzOGIwYzI4NTJhZGMxYjUxMDBkZTIxZWEzNGIxNGQ0N2Y3ZTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23GA4t0KFOy6n+Yi8N5TxrTO4/OR
9TP5RIh5Dm1VjVP2dKTLEhEjwFnEP1V0808brtOrxGMyJakwjdSLU9KNDQAxLinT
2j2cDTLjB85Q/9MvMtnjuiUj/93/hW+LmtXoGu4XmwSixN0Jin/tE2DgBn+pQz90
KIiwTcSYbPldxr8cWGFKJV++lYo0RtL6mz01MuPtvtGMQDdXEJO0ikrh6qgo/01G
xY0Pm8ZeOAxl+QsZRZG54bwCeLXqFIOQWbowB7vYpiYLyhrB54UUH+Ogy4xGLl63
BZryF8P8lpQ0SD89LbqBmCbjTtmQLLH/aVaQpVJeI2c45uZuKlnVLUoPpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG6DiwwoUq3BtRAN4h6jSxTUf35VMB8GA1UdIwQY
MBaAFKi6thw2DqEIzRksfOen7VVlvfvgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC85YjM5YjktODJjOC00YzdkLWIyNjgt
NzY2ZTU0NjA1N2E3LzEvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC85YjM5YjktODJjOC00YzdkLWIyNjgtNzY2ZTU0NjA1N2E3
LzEvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuudaKNO8
j3oLHISvOGdDJAjPWV5Hu0Yu3irQ3Val6BewWNKyJNGpCxevmrVNjqKCnYiJn+IT
Il9rGwHIvkCuve6WWR7M+Vjcmm19D0JRZFb5bKuoHGShvxUjQ45sK2BEk0KnU9gM
hIflEWI8sfOziMlvU+/dyv5toq2L1WviNAd4LAZ6DiWhEsBwxEmDlHRsOhLRleVS
y35dWrElAoz7BgboeqqO7L2mR9MIYrl+X6YS1hQgMiQiYW+VZCBG1LaiD6vSma8A
Y1DkzzH+BVYIAaAA8sIadFcH9rxuCA8PJopChSoDcJOvCUWqZAcVTFdacH2p01a3
ZpOOFVtFpqQiGg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 10:06:33 2025 by rpki-client