Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
File: qsV1yvoAvEHVfElKwfXbz-54My4.mft (raw, json)
Hash identifier: noR91rjRI2l1GrsCcfa1rZsESl58m7Y1iCpn2kxYs/E=
Subject key identifier: 40:08:85:7B:BA:0C:16:58:C3:97:95:91:E4:26:05:D5:E8:82:30:9D
Authority key identifier: AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
Certificate issuer: /CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Certificate serial: 0199FE470D57E0DA8CC0A373A6DB358828CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 21:01:33 +0000
Manifest this update: Sun 19 Oct 2025 21:01:33 +0000
Manifest next update: Mon 20 Oct 2025 21:01:33 +0000
Files and hashes: 1: XtPvNkbtFvkSrn1XGkdkM55xfJ4.roa (hash: XvdvDvnaLffIXutFMAXtL47S87Pb9dwgFS/EYsDxu5Q=)
2: qsV1yvoAvEHVfElKwfXbz-54My4.crl (hash: f7Qo+4DKQL8WziM6x/XeE9JONCZcqZvW+5/QsG9jbZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:0d:57:e0:da:8c:c0:a3:73:a6:db:35:88:28:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Validity
Not Before: Oct 19 21:01:33 2025 GMT
Not After : Oct 20 21:01:33 2025 GMT
Subject: CN=4008857bba0c1658c3979591e42605d5e882309d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:37:8f:e2:a1:50:c8:8f:00:40:d8:58:cc:4d:
65:0c:fd:02:69:bc:ff:01:ba:86:a0:85:78:1d:ed:
98:37:32:3d:b4:50:a2:e0:bd:a3:89:52:89:d8:47:
48:ca:2a:41:3a:7b:b2:fd:84:ad:ef:19:86:93:aa:
5b:bd:6f:d2:14:cc:69:ac:20:29:5f:9b:7e:ba:fc:
7b:96:b6:dc:72:1b:97:4c:cc:a7:dd:f2:45:24:80:
1d:34:a6:88:80:8b:9a:63:4c:f7:06:4a:e2:87:d5:
49:c1:98:bd:2c:b4:8b:17:be:5f:7b:53:f7:de:05:
6e:ca:15:5e:a3:6f:ee:75:97:e4:28:47:e0:f4:56:
da:c1:36:3d:48:4f:13:02:95:2c:b6:d7:5a:d3:fc:
95:ce:94:78:94:2c:fd:f1:21:9e:0e:61:bb:1e:34:
70:3b:bf:72:d1:24:dd:24:b7:ce:71:ca:3c:22:c7:
5a:c5:17:e2:c0:f6:59:2e:76:3f:4b:87:92:6d:51:
4e:6a:ee:06:3a:c0:17:e3:43:81:18:f0:f5:1e:69:
8b:e1:12:b4:24:88:a6:e4:98:8b:64:b8:a1:da:0f:
7a:89:10:ab:7f:92:39:aa:93:a7:89:78:80:6e:19:
e7:73:18:cb:59:44:48:d7:2f:91:c5:a1:e3:0b:cf:
1b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:08:85:7B:BA:0C:16:58:C3:97:95:91:E4:26:05:D5:E8:82:30:9D
X509v3 Authority Key Identifier:
keyid:AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:81:f7:70:3e:d4:fc:3f:a0:f5:7d:b7:d3:a4:94:7c:ca:cb:
7f:8f:40:77:04:45:d6:05:09:93:01:7b:eb:66:1b:8f:b8:62:
37:74:49:83:11:04:a1:be:66:d8:76:8a:98:01:55:cd:15:f5:
a9:d4:bb:66:84:86:ad:ab:fb:14:05:2d:e7:32:9b:92:f0:78:
23:e5:73:64:92:ca:8b:03:99:7d:24:2f:88:1b:53:a4:37:94:
e6:53:53:cd:32:7e:dd:d6:b1:c9:e7:48:fa:32:c5:56:e8:49:
91:1e:cf:50:58:98:cf:c5:2b:cd:14:6b:83:89:5e:f6:82:db:
5a:ff:fd:ef:6d:b2:ea:de:59:cc:a9:36:af:4c:4e:b7:1c:2a:
75:fb:bf:11:f1:22:b2:a1:39:3e:45:1a:71:e7:8a:30:33:1f:
83:e9:bc:80:c6:e5:7d:60:69:10:30:ad:cc:76:2f:61:4c:11:
4f:e1:c0:05:3b:f3:7a:a7:01:14:c5:1e:0c:7b:8e:45:5f:6b:
00:de:b6:27:94:26:e8:cf:0f:b1:09:3a:13:26:c1:c2:30:78:
2f:18:8a:70:cf:a2:20:49:e0:c3:57:1d:a5:5a:1f:69:45:99:
6c:09:8a:87:09:38:5e:fd:7f:85:72:09:8a:27:72:78:af:f8:
96:8d:0f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:34 2025 by rpki-client