Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
File: tRQMX448e8JKGtTIQGQVJj62ur8.mft (raw, json)
Hash identifier: Q5sZt7H5cjcq2HCZVL4IX/0pl4JpSTO3wBeE0UvUaHg=
Subject key identifier: 15:88:BF:06:E8:29:05:2B:71:1C:D7:27:FF:8D:FF:78:0C:8F:5E:A6
Authority key identifier: B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF
Certificate issuer: /CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf
Certificate serial: 0199FB0EFC7739AC17D726B9604D45427FF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
Manifest number: 149D
Signing time: Sun 19 Oct 2025 06:01:27 +0000
Manifest this update: Sun 19 Oct 2025 06:01:27 +0000
Manifest next update: Mon 20 Oct 2025 06:01:27 +0000
Files and hashes: 1: tRQMX448e8JKGtTIQGQVJj62ur8.crl (hash: PVn2TW0gU/5WvpNvmAEjnD7EEmiQ4WhjDHYEG2cx2tg=)
2: vBSjooCv1VbYtFGvr_WsQil5zco.roa (hash: 9TpEuhk1/IC2lzmVZHygO3k9GcTIx0s6uCEc0lzgzlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:fc:77:39:ac:17:d7:26:b9:60:4d:45:42:7f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf
Validity
Not Before: Oct 19 06:01:27 2025 GMT
Not After : Oct 20 06:01:27 2025 GMT
Subject: CN=1588bf06e829052b711cd727ff8dff780c8f5ea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b0:c7:fc:63:72:2a:3e:fa:a7:fc:05:6e:5a:
70:7c:f6:7e:31:bf:c0:39:21:5e:05:fa:53:ca:62:
15:82:26:c2:c2:d7:c1:09:96:36:09:f9:02:9d:aa:
a7:64:02:8a:e8:28:61:5e:28:ad:cb:1a:6f:e4:7f:
86:51:3c:5f:9e:e2:49:ca:c8:71:c5:ec:14:be:26:
c0:6d:4c:38:28:04:d9:c3:8a:55:0a:49:22:98:e2:
87:09:91:fe:8f:8e:6e:51:03:7c:76:22:6d:6f:f4:
c8:3c:fd:45:49:2a:f3:5c:4b:6d:26:bf:58:06:db:
bf:25:75:3b:e9:f1:c9:dd:00:15:3d:6f:c3:79:d6:
e7:08:d0:59:55:c5:9c:d8:2e:a8:ff:d3:e2:b9:d6:
cf:ae:b7:26:7c:a3:c2:e9:c0:7a:5f:dd:49:6c:74:
7f:fc:66:1e:17:5b:55:33:3b:1d:9e:02:fb:9c:0d:
b9:8e:00:4f:d8:3e:19:bb:84:c9:56:1b:25:36:d5:
59:6a:0e:01:c4:b6:70:18:3f:5d:32:03:26:68:1f:
a2:2c:75:42:96:1d:ae:7c:49:07:70:28:25:8e:0e:
55:71:99:44:c4:d1:47:69:7e:04:17:7b:a7:2c:4a:
7b:93:50:df:61:7c:4e:57:9b:93:27:f2:31:5d:9b:
ea:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:88:BF:06:E8:29:05:2B:71:1C:D7:27:FF:8D:FF:78:0C:8F:5E:A6
X509v3 Authority Key Identifier:
keyid:B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:16:78:70:c4:58:9e:d5:70:46:21:08:60:fb:ff:66:7c:3c:
b5:4f:11:d3:73:4d:fb:4b:b4:51:49:3e:e2:d6:cf:c9:92:ca:
84:93:4c:22:5d:8f:65:b3:37:9e:de:e0:99:ca:84:58:73:eb:
4a:81:18:07:77:ad:cf:57:60:83:09:2d:8e:48:90:41:39:4f:
17:4a:22:df:0c:00:ec:0b:6c:e1:46:cb:e7:97:ea:de:35:2d:
94:44:66:c2:2f:81:1e:f8:18:0d:65:8c:48:b0:3f:42:61:b2:
a9:69:80:25:84:7c:be:2a:6c:93:d4:8f:87:48:e1:2c:4f:fa:
c3:f2:b6:b1:26:90:44:e5:33:02:1c:a8:6d:20:33:0d:45:d3:
a3:24:a7:fb:a0:bf:0d:b3:44:73:1d:1d:fc:1c:86:71:85:94:
3d:58:82:2a:75:3b:0c:ab:98:3f:cd:9a:fd:5d:61:c2:61:f0:
37:07:2b:97:91:50:ca:07:8f:67:67:7a:ba:d4:a7:d5:8b:e6:
60:b2:56:2f:5f:86:8d:b7:57:fc:5a:45:13:09:70:9d:0f:8d:
55:ad:18:b3:a8:46:e4:ee:22:2c:61:ac:68:f0:4b:e9:c3:39:
c9:a6:d2:fe:b9:a6:99:aa:49:40:41:b1:ea:df:d3:a8:f9:43:
87:7a:bd:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:09:57 2025 by rpki-client