Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
File: 1-qe1orkHCRPTSTKBX-tH42Mf318.mft (raw, json)
Hash identifier: 5e3SY0n6A8+HmRBvj/FKlzlCM1gzOy/mfKmLR96pbX4=
Subject key identifier: 78:58:37:71:9A:AD:0D:ED:A7:60:F0:6A:08:2A:71:E7:5E:F8:BF:07
Authority key identifier: FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
Certificate issuer: /CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Certificate serial: 0199FC587B4326F47E485F5FF1B1EF28799D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
Manifest number: 14BD
Signing time: Sun 19 Oct 2025 12:01:20 +0000
Manifest this update: Sun 19 Oct 2025 12:01:20 +0000
Manifest next update: Mon 20 Oct 2025 12:01:20 +0000
Files and hashes: 1: 1-qe1orkHCRPTSTKBX-tH42Mf318.crl (hash: gKn0tBiVINTREs//uqJuxaz1hZufIfpb5BG7Q3YeyCM=)
2: gHlRquCMx6iwfFhK1AbziJf-SOA.roa (hash: vGvXkm75uZ6w5eWBxSl4fiUVkztcBJ6xWRWL2h8kjfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:7b:43:26:f4:7e:48:5f:5f:f1:b1:ef:28:79:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Validity
Not Before: Oct 19 12:01:20 2025 GMT
Not After : Oct 20 12:01:20 2025 GMT
Subject: CN=785837719aad0deda760f06a082a71e75ef8bf07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:81:e1:ee:f7:74:b4:07:79:08:b3:da:4d:84:
58:24:b2:a1:d9:4e:76:a7:9c:19:cd:1c:e2:f2:26:
78:b0:e0:12:fd:db:87:be:ca:b1:77:94:0a:56:3f:
62:77:dd:c2:4f:0f:e0:ed:fe:90:92:5c:91:f5:08:
3e:41:f0:d7:17:ce:1b:44:70:16:39:ed:c9:c4:bb:
69:ef:4c:95:f8:62:07:cc:f4:b6:df:ab:76:0d:fd:
8d:56:4c:df:e1:7f:be:67:13:84:e3:55:f9:bd:31:
87:c2:2a:d5:54:16:12:be:fb:31:11:9c:66:a3:9a:
75:88:91:05:7c:ce:8d:97:84:8e:7d:ea:61:d8:38:
b2:b1:43:9e:19:be:42:7c:b3:b0:09:f4:3a:2c:c5:
1d:60:43:4f:3c:18:3c:b5:4e:b2:35:b6:cc:58:6a:
f3:7c:2d:44:a9:9d:64:8b:2a:a7:ba:d9:ec:5d:43:
b3:94:d0:f7:4b:0e:63:4e:3e:97:1f:51:5f:30:4f:
61:75:66:23:5c:c4:63:70:fb:25:09:58:24:01:85:
95:07:35:18:64:b1:fe:f5:13:b0:b2:ae:ba:94:9d:
0d:84:2f:64:d2:36:f1:7f:e6:e3:b4:80:75:c2:95:
1e:b2:9b:f3:95:8a:4a:19:9b:18:7d:a8:22:93:ad:
69:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:58:37:71:9A:AD:0D:ED:A7:60:F0:6A:08:2A:71:E7:5E:F8:BF:07
X509v3 Authority Key Identifier:
keyid:FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:3d:1f:43:fb:d1:e1:d0:d8:3f:8a:8f:d6:44:bd:dc:9c:9f:
2b:30:c0:3b:76:15:c4:70:76:c8:52:97:dc:40:cb:f7:b3:d4:
93:3b:0c:89:36:12:24:45:8f:15:f0:17:73:33:89:9e:35:95:
2b:f4:a3:1e:55:cf:8e:c4:cc:64:5a:73:58:52:f5:5a:d0:0f:
b9:86:55:80:4d:04:d1:ad:88:29:79:8e:a6:8d:f5:8e:ed:35:
a4:4e:dd:ce:53:26:fd:89:19:fb:08:da:65:78:22:4f:0c:d2:
3a:d8:4e:e0:f6:63:be:73:d0:8a:62:e9:00:7f:da:60:85:af:
c9:b7:37:92:7c:5e:a8:18:ac:09:8f:65:3a:2d:e2:a7:f3:d9:
7e:d4:31:cf:41:98:95:27:a2:0a:cc:e9:18:82:5b:9a:f2:6d:
3b:d1:36:d1:3a:84:2b:1e:09:6a:ec:d6:42:a5:e0:40:6b:0e:
e1:4a:25:53:fe:93:6f:c4:54:24:15:b2:3f:76:db:1b:3d:9a:
df:a7:1d:de:9d:ca:cd:78:d6:57:1a:2f:c3:29:db:0a:22:45:
77:53:9f:48:b8:0b:35:53:70:29:81:7c:68:63:00:73:0a:24:
94:c2:0f:7e:cb:7e:2c:6d:26:7b:97:a8:c3:25:26:03:03:03:
26:3f:9d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:12 2025 by rpki-client