Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json)
Hash identifier: GDLV2HaqtpNpB4hexLbqWLfCPAVm5flbDug/Zhk5PYo=
Subject key identifier: 03:67:4B:1A:F3:FD:B1:9D:96:E6:33:D3:4E:F2:EC:32:E7:8E:68:7A
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 019A006C070741773B0413BD38C5A8EBCC96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
Manifest number: 16E6
Signing time: Mon 20 Oct 2025 07:01:10 +0000
Manifest this update: Mon 20 Oct 2025 07:01:10 +0000
Manifest next update: Tue 21 Oct 2025 07:01:10 +0000
Files and hashes: 1: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: eGaUKvQIaWHOq3EHTla5lJ157qF/A0hvnhn7ieReaAc=)
2: 5JInjtJs-s2-yK_dBCuc4HDNHSk.roa (hash: JUxQOg0RzN7jHCpHsSZf+phi3+AooD9Ty47K9VLPoKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:07:07:41:77:3b:04:13:bd:38:c5:a8:eb:cc:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: Oct 20 07:01:10 2025 GMT
Not After : Oct 21 07:01:10 2025 GMT
Subject: CN=03674b1af3fdb19d96e633d34ef2ec32e78e687a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e9:71:01:01:d2:ca:45:57:94:35:4b:4a:7f:
ee:64:26:56:ab:60:e1:8e:e4:78:37:2e:c0:aa:02:
87:9a:ab:2c:ea:1b:0d:47:b0:bd:26:13:19:5a:31:
ec:d4:a4:bd:68:79:60:db:1f:70:e7:8a:91:9a:ed:
77:95:fc:f2:da:74:43:8f:95:2a:42:65:fc:68:9b:
68:e7:01:39:e5:9a:d7:07:ba:5f:9a:d9:da:75:2d:
4d:a0:a9:d8:32:fc:75:19:0a:63:a5:62:16:cc:5e:
73:c9:ee:b4:96:18:9f:04:8c:0a:89:4e:1e:47:44:
ed:29:88:94:a0:ba:91:b9:05:27:4a:76:6a:c1:b5:
29:2c:01:ea:7d:28:5a:22:73:c0:f1:87:e0:ca:a3:
5d:ae:fb:8f:92:98:e4:33:5a:54:03:d8:94:02:21:
21:ad:3a:2d:9e:a2:54:2e:8f:fc:77:15:df:a8:f1:
43:bb:e3:36:af:a3:ea:a7:ac:3b:00:e5:dd:04:c3:
2a:36:a6:44:5f:03:92:e2:da:8f:c3:8b:8b:e2:e2:
04:a6:91:bb:3b:f8:ff:20:c5:09:56:82:6a:ce:91:
71:53:2f:3d:2d:5c:3e:6c:eb:e8:59:28:01:4c:1f:
23:ba:7c:dd:b2:48:ad:6f:fc:f3:2f:4f:d0:87:44:
08:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:67:4B:1A:F3:FD:B1:9D:96:E6:33:D3:4E:F2:EC:32:E7:8E:68:7A
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:22:b0:24:ed:43:20:c2:a2:d8:13:15:ff:f4:36:b7:9c:66:
01:93:49:5d:6c:b3:e7:80:98:a2:85:45:6f:03:55:f8:8d:32:
be:3c:dc:4b:1b:8e:aa:51:27:cc:33:83:9d:fc:96:57:b0:bd:
29:a9:c0:c1:18:c8:b7:5b:c7:18:56:da:87:52:df:96:59:5e:
2b:af:81:54:4d:f3:62:94:36:b4:ea:3d:53:6c:a9:95:c4:2f:
3d:66:d6:9f:4a:6e:e0:36:3e:ca:f1:2a:58:43:0f:c3:52:5f:
14:e4:06:f4:b3:9f:1e:fd:13:f8:35:eb:dd:f9:a5:85:6a:0f:
73:99:f5:50:e8:1d:21:59:26:e1:da:87:49:e0:f7:13:98:8e:
01:40:0f:0a:4c:ab:aa:12:b9:3d:1a:7d:a2:58:2e:a1:68:d8:
f6:80:4f:42:98:07:fb:17:66:c4:e6:c3:a5:0a:70:1e:4c:c8:
2a:20:1e:57:21:41:b3:22:40:3b:b1:50:df:bc:bb:65:83:68:
25:99:df:d0:ea:9d:76:29:7f:b7:a4:5b:cf:65:15:d2:33:27:
dd:c2:7f:36:8c:3d:2f:76:59:c0:ff:0e:f7:19:46:f5:dc:e2:
cf:e1:60:db:95:f3:ca:27:b4:5b:4a:d2:ea:35:e0:d9:03:cf:
91:43:f3:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoAbAcHQXc7BBO9OMWo68yWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYWU1ZTMzODc5NGU2MGQ1ZDhiNTIzYmRiMmI2OGVjNGFj
NzYyY2UwHhcNMjUxMDIwMDcwMTEwWhcNMjUxMDIxMDcwMTEwWjAzMTEwLwYDVQQD
EygwMzY3NGIxYWYzZmRiMTlkOTZlNjMzZDM0ZWYyZWMzMmU3OGU2ODdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyulxAQHSykVXlDVLSn/uZCZWq2Dh
juR4Ny7AqgKHmqss6hsNR7C9JhMZWjHs1KS9aHlg2x9w54qRmu13lfzy2nRDj5Uq
QmX8aJto5wE55ZrXB7pfmtnadS1NoKnYMvx1GQpjpWIWzF5zye60lhifBIwKiU4e
R0TtKYiUoLqRuQUnSnZqwbUpLAHqfShaInPA8YfgyqNdrvuPkpjkM1pUA9iUAiEh
rTotnqJULo/8dxXfqPFDu+M2r6Pqp6w7AOXdBMMqNqZEXwOS4tqPw4uL4uIEppG7
O/j/IMUJVoJqzpFxUy89LVw+bOvoWSgBTB8junzdskitb/zzL0/Qh0QI1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFANnSxrz/bGdluYz007y7DLnjmh6MB8GA1UdIwQY
MBaAFNKuXjOHlOYNXYtSO9sraOxKx2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYt
OGQ4ZTllYTE0MzI1LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYtOGQ4ZTllYTE0MzI1
LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJCKwJO1D
IMKi2BMV//Q2t5xmAZNJXWyz54CYooVFbwNV+I0yvjzcSxuOqlEnzDODnfyWV7C9
KanAwRjIt1vHGFbah1LfllleK6+BVE3zYpQ2tOo9U2yplcQvPWbWn0pu4DY+yvEq
WEMPw1JfFOQG9LOfHv0T+DXr3fmlhWoPc5n1UOgdIVkm4dqHSeD3E5iOAUAPCkyr
qhK5PRp9olguoWjY9oBPQpgH+xdmxObDpQpwHkzIKiAeVyFBsyJAO7FQ37y7ZYNo
JZnf0Oqddil/t6Rbz2UV0jMn3cJ/Now9L3ZZwP8O9xlG9dziz+Fg25Xzyie0W0rS
6jXg2QPPkUPzjg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 09:23:56 2025 by rpki-client