Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
File: QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft (raw, json)
Hash identifier: PTLp0l35hvK2//1b74qLX2SuxcQKjTydiFMmCAofq5k=
Subject key identifier: D2:7B:2F:2F:8A:00:84:3F:02:72:15:97:40:EB:75:4B:C8:FD:CC:48
Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Certificate serial: 0199FB45DF031055E3BA5603C1E975F49FC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
Manifest number: 0CFF
Signing time: Sun 19 Oct 2025 07:01:24 +0000
Manifest this update: Sun 19 Oct 2025 07:01:24 +0000
Manifest next update: Mon 20 Oct 2025 07:01:24 +0000
Files and hashes: 1: QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl (hash: Xkt5mn6NdhHcUWeincYBFxdEdbp0k5Fc7l149+tPUWs=)
2: vfjUIsx7CDVuZMrXZKkgTFoznUI.roa (hash: kc2fyWr6FJL7rTi0mPaMQj4eZbP6Y0dyJoouX+alOvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:df:03:10:55:e3:ba:56:03:c1:e9:75:f4:9f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Validity
Not Before: Oct 19 07:01:24 2025 GMT
Not After : Oct 20 07:01:24 2025 GMT
Subject: CN=d27b2f2f8a00843f0272159740eb754bc8fdcc48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:19:5e:6d:02:ea:06:6e:fb:70:9a:a0:e0:a3:
2d:ee:5d:ae:f9:70:c6:88:54:93:c7:e2:3a:0a:87:
ce:72:3b:42:a2:78:79:2a:b8:38:a9:f8:34:0b:4c:
44:6e:5a:36:18:f3:32:5a:1b:05:59:40:a6:21:25:
cf:57:a1:48:37:30:c4:0c:d9:a4:6c:3b:a9:61:ed:
bc:84:fe:9d:99:d3:02:fd:b1:ac:cd:80:3f:6c:48:
81:2c:26:a7:1b:db:7b:d8:95:a9:eb:42:22:17:d3:
f3:5b:b7:7e:8a:df:9a:67:f1:15:09:be:9d:7e:01:
ec:46:54:78:0c:84:a7:7d:43:0d:6c:06:72:26:bc:
8d:9e:46:0c:02:04:dc:19:b8:81:6d:0c:8a:f0:3e:
03:a4:c7:18:30:25:97:c9:93:76:7e:fa:48:be:45:
92:25:91:6a:47:f3:e6:54:50:d4:b2:18:a4:04:91:
d2:63:b1:09:91:bc:5d:67:d8:7d:51:9f:06:69:74:
bc:f8:6f:6b:ed:88:16:0a:58:03:68:cf:70:d1:84:
97:b4:e9:d1:39:bb:ae:4d:fe:73:60:b4:f1:52:55:
69:1a:92:09:5e:8d:2f:00:d6:51:67:4f:90:ec:ca:
00:bb:b6:45:e6:ca:0a:f8:6f:09:4c:cb:47:12:52:
d7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7B:2F:2F:8A:00:84:3F:02:72:15:97:40:EB:75:4B:C8:FD:CC:48
X509v3 Authority Key Identifier:
keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:b7:fd:8c:35:b5:bf:a8:e8:cf:b4:79:98:49:af:75:ad:d2:
f6:f6:d9:fa:0f:ff:56:e4:59:80:e0:54:f3:cf:e9:21:36:99:
92:5e:4a:22:05:db:4c:c7:60:84:97:a7:10:61:46:91:00:92:
1e:f0:2a:67:49:f3:13:09:c1:f9:1e:69:44:91:be:09:51:22:
9b:dc:9d:5f:0e:01:94:75:e9:ad:30:e3:30:fa:04:67:1f:2a:
39:fe:1f:5f:c0:d5:28:4a:33:51:da:08:20:12:15:e5:9d:5b:
4b:b6:47:65:26:47:01:79:39:e8:98:ec:7f:f2:f1:88:a6:9a:
b1:69:59:44:7a:7c:d1:51:fe:e7:1b:0f:b5:7d:7a:ef:ab:03:
94:52:39:43:99:4f:f5:67:03:da:9b:85:6a:09:dd:1b:d8:f9:
3b:d5:64:83:82:52:3d:3c:79:a7:86:d7:d5:02:30:0b:2a:18:
d4:14:f2:51:8e:f7:d5:11:3b:cb:2e:96:3a:11:01:c4:7e:fd:
55:95:47:df:60:7b:64:86:f2:c1:23:b6:1d:e0:cc:94:87:e5:
16:05:97:f0:a2:71:84:34:65:3c:a9:cb:e6:ba:f8:54:f8:3a:
c3:b8:45:9a:af:60:20:7d:d1:a9:99:5a:65:dc:60:74:e2:cc:
05:50:0b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:43 2025 by rpki-client