Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
File: _Q7wQPukW857BxY0lc316FB3kZ0.mft (raw, json)
Hash identifier: iqFIK2n1ofLXr2nSLI6n7Skn8qmQXrkjOjez2bnstQo=
Subject key identifier: 5C:2D:63:A6:E5:00:EB:A1:3F:42:BF:F4:B0:6A:FE:6E:2C:38:15:BB
Authority key identifier: FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
Certificate issuer: /CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Certificate serial: 019A0524146BA9F248F4F62D6B32D5A7E916
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
Manifest number: 0D7D
Signing time: Tue 21 Oct 2025 05:00:41 +0000
Manifest this update: Tue 21 Oct 2025 05:00:41 +0000
Manifest next update: Wed 22 Oct 2025 05:00:41 +0000
Files and hashes: 1: BrNhX11GN3gzWV-434wlzWriATQ.roa (hash: e/gkiYTr4M+ZdV4GBEAw4FBFr5Cgb0NfH0gUAD5dMJY=)
2: _Q7wQPukW857BxY0lc316FB3kZ0.crl (hash: psFJFr/dYqancdiEGCLYvhvRGfcmXmW9FeVcCmm4izA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:05:24:14:6b:a9:f2:48:f4:f6:2d:6b:32:d5:a7:e9:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Validity
Not Before: Oct 21 05:00:41 2025 GMT
Not After : Oct 22 05:00:41 2025 GMT
Subject: CN=5c2d63a6e500eba13f42bff4b06afe6e2c3815bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:99:17:60:7a:f2:95:62:eb:3f:1e:eb:b5:62:
e1:0f:e5:9d:64:ab:d2:44:d2:48:44:84:4a:46:d9:
13:bb:11:08:32:78:2b:55:91:64:fd:71:ea:b3:47:
30:55:e3:a3:31:67:8e:0c:ff:73:37:31:0b:42:06:
6a:5a:6a:58:49:35:f2:f6:af:35:c2:e3:2e:b9:f7:
8e:b1:24:88:e5:21:78:9b:db:c0:a5:16:37:3d:d5:
62:7b:6e:41:75:60:2b:ad:16:40:4f:b4:be:c8:d4:
db:18:65:5d:cc:aa:78:39:d9:c0:dd:7c:86:bc:61:
80:1e:7b:c0:e6:f3:5e:b6:ea:f4:6d:c6:bc:10:7f:
5c:10:79:f9:ee:cc:2c:aa:2a:45:3a:de:51:28:a5:
79:4c:10:b3:41:ee:54:b6:92:24:5e:80:16:0d:62:
46:57:ba:c0:81:63:73:cd:96:69:fe:f2:0a:1b:b0:
09:36:d6:59:8c:e1:d2:80:e5:72:57:5f:0f:8f:34:
34:fc:1d:f6:83:07:49:91:a7:44:48:03:59:62:0d:
05:8b:ce:c7:6f:a1:2f:f0:ec:53:ae:07:2f:0c:82:
62:ac:70:61:77:ae:1c:a4:89:ff:06:a2:2a:d9:55:
0e:64:76:26:43:6b:90:71:14:fd:6c:0c:4a:43:bd:
72:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2D:63:A6:E5:00:EB:A1:3F:42:BF:F4:B0:6A:FE:6E:2C:38:15:BB
X509v3 Authority Key Identifier:
keyid:FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:13:29:24:9b:11:4d:10:e1:bb:9a:4f:0e:01:7a:19:da:eb:
ca:7c:a1:3d:56:96:00:53:cf:33:2c:40:a5:4b:42:6a:8d:b3:
25:62:bd:9a:2f:b6:f5:6f:40:a5:63:e1:a5:08:a2:bc:b5:4a:
a6:39:01:7d:12:f0:a2:7b:3b:1f:77:69:eb:5a:b0:6e:de:01:
0d:b4:3c:2f:3e:61:7c:e6:26:f4:52:13:f9:90:ac:9c:ca:a9:
75:05:31:46:de:55:d1:fa:59:04:b8:87:94:23:77:54:52:4a:
2d:1a:96:7a:c0:ad:96:44:ff:6f:a1:62:cb:0c:d6:f9:b0:4d:
eb:b1:b8:3b:0c:10:db:d5:6c:7a:93:41:18:43:13:0c:ac:c2:
f1:71:63:b0:e1:f0:c0:77:c1:66:ec:01:69:ae:bf:f5:f8:20:
0f:30:ba:94:ae:4e:1a:8f:88:7c:a2:c3:bf:3f:47:fa:e0:dd:
5f:55:bd:c1:34:ca:08:69:ef:83:3f:f7:52:7d:85:7c:0c:46:
c8:0b:e9:2a:7c:d3:21:13:f4:f7:9c:c2:c2:30:0e:4f:dd:01:
63:1e:2e:a0:8b:e5:8d:5e:c1:29:b4:6c:60:24:ad:da:1d:4a:
cf:a6:49:55:f6:f0:62:2b:d6:2a:5b:85:ec:a0:e9:eb:35:77:
70:89:0f:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 10:30:51 2025 by rpki-client