Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
File: QIyWuStsaY_TT6x9WB1MCQjczpk.mft (raw, json)
Hash identifier: y55rF785ITQT5If35cz6EyBfQaYTdpvEwQp7KJ/G6GQ=
Subject key identifier: AF:E1:E9:F5:3F:AC:6B:34:19:1B:DC:6A:61:D0:BF:AC:98:AE:46:A8
Authority key identifier: 40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
Certificate issuer: /CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Certificate serial: 0199FE46CBE134863C01E70DE14772615673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
Manifest number: 12B3
Signing time: Sun 19 Oct 2025 21:01:16 +0000
Manifest this update: Sun 19 Oct 2025 21:01:16 +0000
Manifest next update: Mon 20 Oct 2025 21:01:16 +0000
Files and hashes: 1: QIyWuStsaY_TT6x9WB1MCQjczpk.crl (hash: s1n7ofdGd/5ucTSXAsR1YABAcnJU4SN0DLvoF+LoNOc=)
2: o7v3w6s-TtM4FqHNx2KIzrdDfyg.roa (hash: E/bv9FlRfrfb8DUNG3s4m8ELhpH6SWFAZyVqbfxptQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:cb:e1:34:86:3c:01:e7:0d:e1:47:72:61:56:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Validity
Not Before: Oct 19 21:01:16 2025 GMT
Not After : Oct 20 21:01:16 2025 GMT
Subject: CN=afe1e9f53fac6b34191bdc6a61d0bfac98ae46a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:14:2f:e1:9a:07:9d:c3:de:8c:7e:89:57:e0:
30:57:0f:0d:35:e8:97:20:8a:6b:8d:81:37:2f:4f:
8a:3d:cc:6b:52:f3:98:df:a2:8a:85:b8:37:8c:a3:
40:a1:b7:b4:d3:51:6d:20:b2:93:af:b2:86:68:0a:
5d:ed:1b:f4:44:39:88:65:42:dd:73:42:a8:ac:a6:
bc:1e:e6:1e:1e:12:f4:03:8c:a8:41:4b:5d:d9:61:
f2:31:02:82:2d:ce:62:70:8b:03:b8:21:1a:38:65:
e6:f7:e1:9b:20:87:78:3e:bc:15:c4:05:1d:ef:8e:
da:6d:72:32:b7:cb:f9:81:74:97:b7:e5:28:23:a3:
8e:cd:11:99:13:0a:45:25:75:81:b5:08:c9:7e:4c:
7e:3d:54:1c:67:33:2a:06:d1:80:37:28:0e:95:5e:
b2:fc:fc:10:07:b2:60:45:39:10:f0:bc:89:51:9a:
c5:b1:ff:1f:f6:e7:04:71:68:2a:23:aa:e0:93:d1:
4d:1b:6a:00:85:cd:8f:a2:e2:c2:92:3d:0a:f1:50:
81:97:c8:41:50:0a:ea:df:55:9b:90:75:fe:29:59:
6a:a4:29:ef:b6:42:1b:5f:79:98:65:61:67:10:44:
93:23:44:7e:1d:df:7d:1b:af:ff:3e:31:ff:9d:3e:
6d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E1:E9:F5:3F:AC:6B:34:19:1B:DC:6A:61:D0:BF:AC:98:AE:46:A8
X509v3 Authority Key Identifier:
keyid:40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:ee:de:8d:de:bb:6f:0b:27:d9:08:99:a3:bd:bb:39:ab:88:
8d:b1:e6:bc:75:b8:ed:de:d2:80:21:0b:04:ca:2f:34:02:02:
d0:02:0b:ce:f2:bc:bd:0e:bd:93:3b:a7:fd:8b:25:3d:cf:ad:
98:27:ab:2d:b0:9e:d0:9e:02:e6:67:9e:57:99:8b:16:8e:48:
09:a2:9a:e8:29:e3:49:71:a6:16:f8:2c:48:14:68:95:f8:45:
c3:09:52:bd:51:4c:62:91:8d:ca:bf:f7:62:c3:79:11:52:e2:
e6:57:b8:82:ea:4e:88:8d:e8:7a:93:95:43:7e:88:15:cb:ca:
67:d5:8e:3c:91:0b:3d:9c:98:e3:ac:9e:7c:bf:52:a8:1a:ea:
65:6e:00:52:2e:6b:a4:bc:7a:fc:2f:be:29:13:c6:8b:cc:9d:
ed:86:e0:20:78:43:56:d8:3a:75:49:12:a5:2f:1d:6e:31:fd:
dc:eb:71:16:75:64:27:7b:93:5e:bd:40:11:b9:11:00:95:4e:
a7:c9:d0:73:2d:3a:af:fa:69:7f:f3:cc:3c:27:bd:98:ed:09:
ab:31:18:c9:fe:9d:1b:34:e9:77:c6:40:1b:15:b5:c6:5d:0d:
20:cc:00:21:6c:1e:0f:fc:3c:13:6c:c0:52:be:87:9e:38:37:
f1:f2:6d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:28:11 2025 by rpki-client