Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft
File: qDOwgB1A0FhJBy4vyBITsCXSorw.mft (raw, json)
Hash identifier: rHZ6DBnlKWhtEVWlN57RoVufwlXM43c/RSY4QA0GIFY=
Subject key identifier: FB:4D:38:70:9F:17:7A:67:18:37:7B:5F:3F:57:E8:18:A4:F9:2E:05
Authority key identifier: A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC
Certificate issuer: /CN=a833b0801d40d05849072e2fc81213b025d2a2bc
Certificate serial: 0199FAD81878210C36BAD2E605145C8E8327
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft
Manifest number: 95
Signing time: Sun 19 Oct 2025 05:01:29 +0000
Manifest this update: Sun 19 Oct 2025 05:01:29 +0000
Manifest next update: Mon 20 Oct 2025 05:01:29 +0000
Files and hashes: 1: IuBa70BDMg0yPa-auzZdBIfQXlM.roa (hash: P7DlWRmLUo7YIyLqEcKhGguGrK8gKl8k7uHLBwT0v4U=)
2: NHd08g9X-MuopAlLpgKXbxukW8k.roa (hash: qCjWNPKActqOGuKEjDGHdWjpl9WS29egZUeHGegFoKg=)
3: qDOwgB1A0FhJBy4vyBITsCXSorw.crl (hash: 2uv3Qmuq4E2ACLJzAJMiYThXHIxE2pK86sGi0N28Vu0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft
rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:18:78:21:0c:36:ba:d2:e6:05:14:5c:8e:83:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a833b0801d40d05849072e2fc81213b025d2a2bc
Validity
Not Before: Oct 19 05:01:29 2025 GMT
Not After : Oct 20 05:01:29 2025 GMT
Subject: CN=fb4d38709f177a6718377b5f3f57e818a4f92e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:aa:e8:83:61:67:4e:ab:6f:7d:6a:17:34:48:
f5:3e:0d:e1:de:ec:f7:ba:c4:c2:9c:62:3e:52:13:
58:a3:44:c3:6a:36:60:b0:58:d5:cf:97:5e:a9:64:
5d:0c:a7:39:55:b3:4b:c7:61:cf:78:ce:21:0e:f2:
ff:3a:3d:ea:07:2c:b0:85:d7:63:bf:19:fd:89:d9:
a1:ec:54:8e:d5:19:67:91:ca:8d:56:53:e3:d6:fc:
31:0e:64:e2:8b:a6:3a:6d:2a:04:16:c8:38:1e:cb:
f4:a5:45:94:77:90:df:fc:99:43:e3:13:48:ce:a7:
75:ba:1d:88:4f:39:a3:02:37:9e:60:74:d1:9c:86:
41:8d:81:76:dd:3f:e6:ae:fc:59:ed:0e:f3:78:b5:
f5:e9:92:81:ee:79:5d:5d:0e:28:5c:5c:86:0d:65:
9f:0c:b5:a7:1d:89:7b:67:58:71:e1:52:64:57:21:
07:02:9b:a7:78:64:b0:09:08:9f:42:17:99:af:af:
a7:58:ed:e3:1b:43:b2:71:c0:7b:9b:12:92:f1:53:
0f:39:15:d8:d6:b9:9d:a5:4d:4e:44:09:67:6b:3f:
62:56:99:af:20:16:c6:30:2c:cf:54:11:66:cf:89:
04:33:5c:f7:62:53:51:6b:9a:75:2a:20:5a:cf:46:
93:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4D:38:70:9F:17:7A:67:18:37:7B:5F:3F:57:E8:18:A4:F9:2E:05
X509v3 Authority Key Identifier:
keyid:A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:7e:27:6f:56:94:60:22:d3:c2:15:cc:4a:85:2e:b0:ad:bf:
2c:e0:70:7f:fe:31:35:c6:00:d1:f6:cf:f0:a7:1d:fb:26:2a:
59:00:c0:56:af:43:a3:2f:30:a1:b4:4e:90:7f:bc:d4:33:52:
3f:ed:18:70:d0:8d:92:b9:b4:0f:b9:8e:ef:c4:d0:bc:a7:03:
9d:3c:0a:95:d8:95:9f:71:8b:c1:fd:98:96:3a:99:09:c0:82:
38:48:6b:6b:22:ac:42:2a:3e:b2:b0:d6:34:9a:46:87:57:f9:
bd:21:cd:ac:93:5c:30:ec:fa:1f:99:32:57:14:fc:60:71:9c:
82:7c:b6:6f:3b:b2:e0:dd:53:c8:23:04:b9:89:0e:13:e6:fe:
f3:7e:9a:13:32:49:4a:7a:3b:3d:80:f1:a1:2d:40:3b:05:b8:
1a:cc:6c:3b:e5:62:2a:e4:b1:b1:61:8c:9b:41:fb:5d:5c:48:
a0:8e:f2:3d:5d:6f:f6:0b:8b:ae:60:85:51:d8:e8:8c:75:11:
80:9d:32:41:78:d8:17:ef:b9:fc:29:e4:7b:d2:8b:a8:fe:45:
37:ad:f3:7a:25:01:e1:82:12:a5:7c:f8:df:4e:29:38:17:0d:
59:ba:60:3e:8e:b4:1a:b9:22:14:b9:f6:7e:04:be:b8:78:aa:
8c:e1:3c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:11 2025 by rpki-client