Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: wfPkkqVi+P8Ttsx90ygY/S5Pr6B3QSD5kENvmdCILN8=
Subject key identifier: 34:AB:F0:B9:94:92:9C:3D:A9:18:A1:10:E6:60:45:E0:05:59:5A:9B
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 0199FBEB0907B4B7A63A8CF50E2D63A3E0F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0E03
Signing time: Sun 19 Oct 2025 10:01:48 +0000
Manifest this update: Sun 19 Oct 2025 10:01:48 +0000
Manifest next update: Mon 20 Oct 2025 10:01:48 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: WgboqxvbsynGERFw/mMXLOiiLf9XEpuvvz7jpzNXYKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:09:07:b4:b7:a6:3a:8c:f5:0e:2d:63:a3:e0:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Oct 19 10:01:48 2025 GMT
Not After : Oct 20 10:01:48 2025 GMT
Subject: CN=34abf0b994929c3da918a110e66045e005595a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:94:d5:8f:03:43:24:50:2c:e0:85:88:b6:d3:
09:2f:31:35:34:34:5f:62:fe:29:88:37:ad:0f:e7:
e2:1d:79:cc:bf:de:73:2f:69:d6:f7:67:50:df:19:
6a:51:bc:b6:24:48:77:2a:c7:89:60:f0:65:2c:81:
b5:8d:e9:cd:62:6b:92:27:20:64:c1:94:61:a7:df:
b1:cb:1d:f1:b4:da:9a:60:26:13:c9:52:2d:8f:62:
bd:c3:bc:60:65:74:1d:6d:f1:46:99:7d:b5:74:40:
6c:2a:ca:35:c6:db:e7:21:dd:2a:74:62:c7:f5:2c:
cc:5e:e1:4a:28:99:f3:a0:c2:b6:87:b7:74:fd:2f:
0e:6d:5e:4e:b0:7e:f8:ea:38:1f:dd:f8:5c:56:37:
5c:f5:3c:55:9f:ab:15:0e:ce:fd:4d:0d:0b:2d:8d:
88:b8:c6:13:6e:4c:bb:8b:07:7c:bf:a7:c5:8f:29:
b9:30:5a:b1:0c:15:3e:49:52:e1:61:35:e6:0c:36:
ee:ec:d7:b5:d3:d6:5d:00:5c:da:f5:32:6f:a2:49:
42:c5:44:e5:20:76:bb:57:b4:a0:6b:be:ec:01:fc:
32:24:a3:d4:48:d2:1d:22:95:03:cb:9c:52:e9:6a:
2e:0c:5f:80:7c:ef:6d:07:3d:64:f4:3a:5c:22:1b:
05:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AB:F0:B9:94:92:9C:3D:A9:18:A1:10:E6:60:45:E0:05:59:5A:9B
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:36:89:e3:7d:6c:03:8a:4e:d5:d1:bc:37:75:73:80:a4:89:
12:39:7b:94:ab:0f:d9:b9:ef:bf:1b:ec:61:b3:f3:fe:61:7a:
39:1a:5b:f0:77:5c:bb:3d:da:4b:0e:aa:6a:65:09:af:6d:e3:
19:55:eb:ef:6e:4a:f3:30:89:4b:ab:79:82:a1:30:e7:e4:d3:
3c:bd:e0:9f:02:d3:f6:41:1e:56:4d:29:7e:f2:e2:9a:b5:b1:
63:8a:e8:8d:65:93:bf:42:b4:d4:82:ce:02:a1:57:b0:b1:85:
a6:fa:10:09:f3:07:82:6b:b4:19:d1:7c:46:8b:52:40:77:bd:
1c:93:78:40:29:61:bc:a6:06:68:6d:12:9f:d5:a5:fb:e0:40:
01:43:a9:d5:f1:f7:1e:db:4e:e8:03:17:16:48:87:c7:b0:a5:
7d:43:92:5a:d1:5c:93:d8:01:b1:c4:df:53:bb:77:a6:03:a8:
58:c3:12:71:d3:76:da:9f:fa:a1:34:dc:8b:a1:96:bf:86:bb:
5b:e1:8b:31:85:cf:72:8b:35:1b:0b:f6:a3:13:d8:b2:e2:ea:
3b:d9:08:ba:f0:75:19:b3:f7:e4:16:dc:0d:5c:e9:2e:ec:06:
48:af:84:ec:7d:e1:10:9b:32:78:cc:4e:72:f4:6d:91:bf:71:
bd:e0:5f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:31:57 2025 by rpki-client