Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier: GW66QUJ4Uvm/tLtOmIH7sjigL46YhAhToUERz9l6kUY=
Subject key identifier: 5E:8C:B0:93:88:6D:CC:6A:BE:58:28:7F:DA:34:E4:9A:6E:2E:08:8C
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 0199FEEBA70A73223CAE15F5C1C68B0A9905
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number: 16E4
Signing time: Mon 20 Oct 2025 00:01:20 +0000
Manifest this update: Mon 20 Oct 2025 00:01:20 +0000
Manifest next update: Tue 21 Oct 2025 00:01:20 +0000
Files and hashes: 1: KE4XnKQhqPguqlRYcxIoqo981UE.roa (hash: az71zExo8C/1i/65qlceZGsCGShh0tDnt7kF10fzzW0=)
2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: 7e+/+pQUmj3xY76fItjE/8bIFbe/4xwSa6mfSGjmdB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:a7:0a:73:22:3c:ae:15:f5:c1:c6:8b:0a:99:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: Oct 20 00:01:20 2025 GMT
Not After : Oct 21 00:01:20 2025 GMT
Subject: CN=5e8cb093886dcc6abe58287fda34e49a6e2e088c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b2:2e:3b:86:90:dd:6c:f0:b8:fb:e1:c3:ae:
06:35:2f:9d:fd:76:d6:2c:e1:bb:48:8a:b6:ca:2d:
12:dd:47:0a:c5:54:44:73:f4:8f:87:63:9e:c6:06:
97:57:75:24:88:74:a6:8b:ff:a0:ea:c6:9b:86:8f:
87:8d:87:d4:97:31:41:f5:36:57:83:68:55:f4:3b:
15:e4:08:b7:3f:66:da:e1:20:49:c0:b5:f4:01:96:
de:05:10:50:35:31:72:0e:9e:f9:9b:fb:88:26:25:
05:42:49:fc:77:c3:33:81:b5:85:68:6a:ca:40:c4:
9b:d4:a5:ff:b3:b5:a8:f3:f0:b2:a0:8a:4e:49:19:
cb:b8:e2:c3:e9:c4:9e:73:e2:88:01:63:13:d9:b6:
64:ac:c8:03:ce:e2:0a:2f:89:34:36:54:c5:e8:4b:
d4:c5:41:b1:73:1d:0d:52:0c:18:d1:84:58:eb:0a:
ce:6c:d8:66:b5:eb:7d:47:34:f3:b3:ba:41:f1:67:
82:9c:fa:b0:16:26:ed:c1:a6:4e:8d:6f:36:f2:90:
10:2c:c3:85:80:1e:49:e7:59:d5:b8:f2:b3:8b:f9:
55:c1:75:3d:be:b9:31:a0:4c:4c:a2:09:fa:6e:48:
c5:0e:ff:e3:ce:52:11:ed:55:9a:9d:f4:31:02:ec:
65:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8C:B0:93:88:6D:CC:6A:BE:58:28:7F:DA:34:E4:9A:6E:2E:08:8C
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:0e:e2:ee:38:30:1b:1e:88:b9:f1:95:e9:c2:99:f8:ad:56:
46:40:f0:22:58:ba:10:ca:a5:66:2d:0f:2e:2a:3b:33:ed:79:
80:82:d7:3a:a0:08:8d:f2:be:2a:c6:ee:97:72:68:2a:61:dc:
c0:60:61:b4:b5:2d:9f:8a:61:ed:2c:00:ca:93:c4:d3:d4:de:
f5:9f:33:b5:35:bc:36:f0:38:31:3b:cf:44:de:94:a4:73:c3:
96:65:d1:5e:4e:fb:af:73:65:bf:3e:da:c3:f5:6b:f6:74:52:
14:68:93:29:29:a7:a0:08:1e:d9:ea:cb:ae:a9:81:22:3c:be:
3a:c3:6c:5f:16:36:d3:8e:1e:bb:bf:c5:b0:20:38:5c:b0:4b:
52:11:0a:a9:e3:1c:8c:e5:49:c6:47:5c:74:4b:ea:d8:3e:44:
6e:7a:c2:15:26:dd:47:26:f7:07:2e:75:ab:91:97:f8:89:bf:
d8:74:9b:19:15:92:bb:43:85:e6:79:b3:69:14:6a:1a:6e:79:
cb:ee:f3:20:83:b9:c0:14:23:c4:2d:cc:c4:2a:e2:c6:72:44:
47:17:f7:f8:34:70:8d:0a:37:48:46:03:f9:76:09:c4:d5:3d:
a8:f6:36:26:a1:de:bb:bf:62:e0:78:a1:3f:47:72:3b:b3:40:
2c:08:51:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:03:29 2025 by rpki-client