Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: B83oYEJ73aT8JAqc9xnOkdAmenP4Ka+vYPoka9PjTGc=
Subject key identifier: D8:D8:D2:D2:4B:E4:C9:2D:57:71:4D:95:02:2D:D3:0F:2B:47:C3:D0
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 0199FD3455D724CA2D46F4E6C59EC489BE01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0CFF
Signing time: Sun 19 Oct 2025 16:01:29 +0000
Manifest this update: Sun 19 Oct 2025 16:01:29 +0000
Manifest next update: Mon 20 Oct 2025 16:01:29 +0000
Files and hashes: 1: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: 4qqblc5Yi/YvY6YL1+qsj1ADKyl07ej/YDAvEJoIOFI=)
2: u25_l7rqpA4jc9Mn9X_nn6jE1D8.roa (hash: XxkiW8kKfa52GpQHHiGBtUNZJLczRvJy5PTfiodYsrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:55:d7:24:ca:2d:46:f4:e6:c5:9e:c4:89:be:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Oct 19 16:01:29 2025 GMT
Not After : Oct 20 16:01:29 2025 GMT
Subject: CN=d8d8d2d24be4c92d57714d95022dd30f2b47c3d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b2:6c:f0:aa:5e:c9:e6:9d:5a:80:09:68:38:
d3:6c:92:60:52:b2:81:f0:7e:78:c8:fe:db:f0:00:
95:60:14:58:b5:ba:db:ca:3f:c5:50:ae:37:6e:29:
77:4e:55:f6:57:48:51:c3:0e:21:35:ed:be:14:d7:
c1:de:84:7a:ce:21:b3:df:fc:8c:12:ed:28:08:26:
fb:9b:4d:82:02:c5:bd:99:da:25:52:92:52:42:28:
57:48:37:06:b2:58:c6:21:18:e7:70:a4:2f:8b:38:
d8:02:5d:92:67:05:ef:cc:a3:31:cc:58:6f:ff:6c:
ba:b1:35:74:be:94:25:5d:01:5f:1c:4e:9e:1d:bd:
88:03:c3:01:19:04:44:b2:37:29:f4:15:8f:53:62:
d2:5c:2d:04:28:8b:8f:72:dd:30:34:c0:79:65:83:
af:d0:a8:4c:db:da:34:02:89:79:f1:08:96:16:bd:
e1:ea:50:69:43:be:78:41:3a:bd:b6:5d:1a:8a:d0:
11:70:21:6f:3b:4e:fa:e7:23:f3:31:14:78:0e:e4:
c7:08:ca:49:69:1b:e1:bb:46:73:bd:f7:36:78:93:
cd:7e:7d:5e:b1:6b:05:f2:1e:9b:eb:3a:28:df:4a:
dc:f1:61:d9:ca:79:04:3d:4b:ca:bf:b2:bc:a6:20:
28:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D8:D2:D2:4B:E4:C9:2D:57:71:4D:95:02:2D:D3:0F:2B:47:C3:D0
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:f1:1d:21:aa:d6:ec:4c:b4:12:39:7b:15:9c:f1:40:fa:fc:
43:b0:e5:d6:34:37:f3:b1:3a:04:cd:bb:bb:2f:89:b4:01:1f:
2c:12:8e:f6:9d:59:db:c1:ed:81:62:8c:8c:b4:06:2c:6b:39:
b1:fe:b1:10:eb:10:ff:b0:bc:f1:03:2c:b1:13:7c:cf:aa:1b:
55:5c:56:59:14:8d:d5:f3:f7:7b:68:89:86:cc:95:27:ef:1b:
5e:3e:3d:7d:ea:29:7a:1f:8d:fc:5e:01:1e:a6:75:81:c4:6c:
d0:e2:d7:47:2e:8d:c0:6c:a1:45:0d:e7:4f:01:b8:ef:e1:db:
b3:6e:78:ac:d9:a6:c6:37:df:4e:bd:5f:92:4e:f8:ac:70:46:
58:47:80:07:f0:ff:57:b8:ac:5d:98:0b:dc:2d:fd:d0:3d:b5:
44:6b:36:74:2a:b1:e3:b3:d0:fd:21:9d:c9:3b:42:75:0d:41:
5f:8a:f0:9c:60:a4:49:a0:88:7f:24:5f:fe:7a:22:a0:b1:11:
66:66:06:2c:d5:11:0d:a3:15:6c:68:73:f4:69:d4:b0:a0:74:
13:d4:3a:a3:e1:e0:34:01:71:a3:89:2e:0c:fd:07:68:6b:71:
d7:7a:ad:09:76:d9:9a:6a:77:d8:f7:f6:10:62:19:5d:4b:16:
3b:60:b6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:54:56 2025 by rpki-client