Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
File: qGBXhZ0WYOjYcpee5tamssQzowU.mft (raw, json)
Hash identifier: 0l4uuABTjHh/WVih5bxqYJyyK9C2qHLATDzwbL6ZJC8=
Subject key identifier: 56:0E:44:29:D1:D4:06:39:D1:9D:F1:EB:46:77:9F:61:B9:4B:AD:93
Authority key identifier: A8:60:57:85:9D:16:60:E8:D8:72:97:9E:E6:D6:A6:B2:C4:33:A3:05
Certificate issuer: /CN=a86057859d1660e8d872979ee6d6a6b2c433a305
Certificate serial: 0199FC21B9A55C16870DC52E9B8E7DCA0224
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 11:01:32 +0000
Manifest this update: Sun 19 Oct 2025 11:01:32 +0000
Manifest next update: Mon 20 Oct 2025 11:01:32 +0000
Files and hashes: 1: PW17_Y421OHbEdWMpqGOAItDAMQ.roa (hash: L2gpot5aAwJ9/O+fD4LlOhf1tqLhMij+IcuFZyDR7dA=)
2: qGBXhZ0WYOjYcpee5tamssQzowU.crl (hash: Hjt8/9r9lNZa62iqVdE8FI+fAghZhhSA3ouPGqEImfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:b9:a5:5c:16:87:0d:c5:2e:9b:8e:7d:ca:02:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86057859d1660e8d872979ee6d6a6b2c433a305
Validity
Not Before: Oct 19 11:01:32 2025 GMT
Not After : Oct 20 11:01:32 2025 GMT
Subject: CN=560e4429d1d40639d19df1eb46779f61b94bad93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:22:9d:88:f2:00:90:5c:a1:f8:dd:6f:b1:d7:
24:f0:1e:9a:53:42:a3:39:77:3a:4b:90:b0:ee:ab:
9b:bb:2d:7b:fa:f0:dd:33:e3:e8:4d:8a:4c:82:f7:
46:6e:91:67:4f:dd:ba:5e:6a:d0:51:f2:f0:c1:4c:
f3:d8:c0:82:59:b7:29:ff:77:95:02:e9:ca:03:d9:
e2:14:37:d9:c9:a9:a8:0c:a9:0c:a9:0e:da:6b:f7:
49:3c:ec:75:ca:c6:64:39:7e:21:46:37:c6:11:da:
9b:2d:d2:79:9c:1d:e2:67:66:fe:a2:9d:ee:5f:15:
d1:3e:a7:0e:04:48:cc:c7:e3:83:dd:64:e7:1e:93:
47:8c:3e:d4:3e:45:2e:06:c0:ed:0b:b7:f3:94:2e:
8a:34:1b:9d:64:42:41:a1:93:4d:a4:a8:22:0f:73:
55:ca:df:c9:ad:85:3f:eb:96:0b:b9:dd:42:a8:b6:
7e:e7:24:28:67:9e:98:37:2a:b7:cc:35:d2:a3:d5:
b4:1f:11:e2:ac:ef:27:09:82:38:61:cd:27:2e:8b:
76:90:59:76:f4:d8:e5:96:44:b2:3c:a9:a8:1d:64:
65:58:a4:bd:b3:cb:f8:94:2a:d8:e0:d7:00:68:d7:
48:c4:b3:69:c8:65:72:f7:90:b2:9f:46:71:ad:a3:
1e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0E:44:29:D1:D4:06:39:D1:9D:F1:EB:46:77:9F:61:B9:4B:AD:93
X509v3 Authority Key Identifier:
keyid:A8:60:57:85:9D:16:60:E8:D8:72:97:9E:E6:D6:A6:B2:C4:33:A3:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:9d:7e:ca:71:92:ea:90:62:21:39:05:58:2d:fa:00:89:26:
0d:f9:2d:4a:9d:cd:e1:40:db:8e:58:d3:f2:d4:cb:23:e3:22:
ce:2d:ee:43:39:0c:3a:22:c8:c1:89:90:7a:03:da:5e:1e:f5:
40:a6:5c:d1:01:1f:f7:88:50:38:9b:54:9f:9a:7f:d9:9a:f3:
fe:8e:8c:28:c9:74:22:b3:d0:72:a8:d8:aa:6a:8b:84:2b:4e:
14:ad:e4:ae:ac:55:30:e3:6b:f5:19:4d:68:69:c4:4d:9b:92:
89:14:96:63:9e:29:98:15:85:c0:2e:61:7c:82:1f:4d:3b:50:
8c:11:91:c2:ab:8b:83:f8:96:72:a8:ba:3d:42:95:68:21:61:
8a:27:64:4d:b0:0c:3a:ab:0d:4b:0a:59:9d:15:ed:1f:de:87:
a7:e8:4d:3c:50:56:0c:7a:7f:d8:31:ac:81:e6:09:b4:63:41:
5d:79:6b:5e:98:60:e9:a5:b5:09:a8:a2:c3:30:ad:93:05:09:
7f:4b:2f:b7:73:3d:56:a9:d9:f6:0f:68:cb:aa:d0:76:5a:a2:
cd:2b:b5:2a:e5:d6:52:96:c2:3b:af:ea:51:64:e0:f2:1d:65:
4a:97:59:d5:0c:b6:05:c1:55:66:48:74:93:c1:f9:5c:8b:c4:
f0:ae:2d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:09:54 2025 by rpki-client