Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
File: qlPNLFhKPcFiCLqTsNt0dzs_I74.mft (raw, json)
Hash identifier: N93t2yWj8TMg8EkV9cVfeSoW4JkyglD2GacEtWasaBI=
Subject key identifier: 14:9A:0C:18:18:63:0D:C8:D6:48:CE:55:B3:69:12:55:CA:85:BF:1B
Authority key identifier: AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
Certificate issuer: /CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Certificate serial: 0199FDD9AA6F315DB850AC120BB3B7929882
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 19:02:04 +0000
Manifest this update: Sun 19 Oct 2025 19:02:04 +0000
Manifest next update: Mon 20 Oct 2025 19:02:04 +0000
Files and hashes: 1: eIuvCKiUKqnjxChjtjEAvL7JvnI.roa (hash: wyV3lMaUUP7vVQqM6FlcaWTPKvU8kW+p1xMsgVv6OJA=)
2: qlPNLFhKPcFiCLqTsNt0dzs_I74.crl (hash: dNJ5Te3obAX7Fv621+4YLebVFDA56q1hxwYGkl6cAgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:aa:6f:31:5d:b8:50:ac:12:0b:b3:b7:92:98:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Validity
Not Before: Oct 19 19:02:04 2025 GMT
Not After : Oct 20 19:02:04 2025 GMT
Subject: CN=149a0c1818630dc8d648ce55b3691255ca85bf1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e3:d8:df:ab:76:15:6d:d7:f2:59:5b:7a:43:
49:4a:10:e7:9d:47:4d:eb:ce:09:12:e6:eb:50:1c:
0c:df:67:9c:c8:f1:71:7f:e3:47:ed:93:ba:96:18:
9d:eb:2e:98:46:47:80:6e:d4:9d:36:5d:4d:fd:20:
a2:97:b6:54:95:3b:76:15:52:14:a9:56:b7:42:c1:
f2:9f:7d:65:b9:87:68:58:8f:a7:f3:f1:20:62:8c:
38:b8:fb:c1:31:bd:da:b4:9c:24:2e:c0:bd:5b:18:
86:7d:36:a6:76:18:f2:86:6e:46:a0:30:fa:39:f1:
1c:09:f4:24:a6:1a:a3:a0:d5:b3:c1:32:7a:0a:4a:
ff:3b:54:d4:ee:df:67:76:12:19:7c:c6:36:5b:bf:
ca:f0:43:e3:d1:75:6f:96:fd:ba:4a:2c:a0:e1:a1:
4e:6b:06:46:4d:77:f5:30:72:a4:52:03:97:88:35:
b3:f7:56:f4:48:6c:29:73:b0:2a:11:d0:d7:1e:56:
97:42:d3:a2:9a:a0:76:74:88:ff:95:9e:f4:bb:cc:
a8:2b:67:7b:cc:85:33:e7:05:98:98:be:1b:01:ec:
0c:96:c9:b8:1c:34:55:97:f6:db:77:0c:fb:3c:02:
64:4c:c3:26:2b:48:74:00:41:49:81:07:c1:46:60:
65:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9A:0C:18:18:63:0D:C8:D6:48:CE:55:B3:69:12:55:CA:85:BF:1B
X509v3 Authority Key Identifier:
keyid:AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:07:b0:3a:bd:76:db:72:1b:b3:c2:07:5e:75:fe:8e:e2:3d:
90:d7:b6:b2:48:5d:9a:51:7c:09:6c:f4:81:5a:0e:09:09:55:
d3:8d:89:45:88:5b:d4:85:f3:20:a7:a2:f2:83:25:7d:04:10:
a4:8e:10:d4:be:03:d1:bc:b1:79:5a:c6:e9:93:9f:8d:c6:5b:
fa:b5:0e:2f:f2:78:8e:64:54:bf:21:7f:74:dc:95:ed:95:d9:
e3:11:ae:6c:3b:16:9e:b4:41:2f:1b:87:ec:f6:37:5a:fe:60:
cd:20:e4:7b:3a:71:8f:55:91:3a:34:f6:74:19:99:e4:04:97:
dc:f7:f9:52:33:6d:50:c8:6d:fb:66:0d:c6:96:fd:af:4e:f1:
ac:00:93:42:99:f3:33:f8:a5:81:20:95:41:34:b4:fb:86:d3:
fb:56:17:67:e9:c2:7e:da:1c:bd:8e:a7:9e:b8:70:a3:78:83:
04:71:dc:b3:f0:55:ae:91:3f:d2:f7:ff:1b:eb:c9:9f:4c:5b:
eb:2e:23:08:e8:7c:bd:83:5b:94:96:c2:01:4f:a7:ae:78:a3:
ed:4b:87:c4:af:2c:fd:f1:63:e8:09:30:b4:cd:c1:0f:03:d1:
f2:1e:35:3d:ff:22:52:c5:6a:0a:62:88:cf:24:f9:20:9a:b1:
67:58:6f:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:45 2025 by rpki-client