Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: uKQ+TM9tjSz03yB7cPG5OOGCzK4tQevC1j0DhrOFcx8=
Subject key identifier: A8:83:52:86:72:8A:6E:47:14:96:A8:D8:1F:1A:ED:C5:7C:D0:5D:87
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 0199FB7CEB84ED9BD9F078C037941B46AA4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 08:01:31 +0000
Manifest this update: Sun 19 Oct 2025 08:01:31 +0000
Manifest next update: Mon 20 Oct 2025 08:01:31 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: toIz6w+OcBN5qinzol501nfKiX1FNW8vtBu7+Gm7iCw=)
2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:eb:84:ed:9b:d9:f0:78:c0:37:94:1b:46:aa:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Oct 19 08:01:31 2025 GMT
Not After : Oct 20 08:01:31 2025 GMT
Subject: CN=a8835286728a6e471496a8d81f1aedc57cd05d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:da:9d:29:1d:9c:82:28:e9:b6:28:13:f2:a7:
d0:eb:a4:83:7a:29:92:9e:0c:2d:f8:17:3d:b5:0e:
78:ab:18:74:41:6a:e4:2e:41:70:2d:73:0d:6a:2c:
db:4f:86:99:09:d5:d4:f1:86:a3:da:ed:ff:f8:67:
f4:d1:b9:97:13:b2:53:57:5c:08:cb:a9:2d:c8:b6:
93:24:03:d0:95:13:06:aa:2b:87:c5:83:c6:40:3f:
91:64:99:6d:f1:da:5e:3e:ca:8f:ea:b6:0b:08:ff:
7a:b5:01:86:b3:6c:ec:f6:7d:3b:6d:0b:bd:a4:2a:
8a:35:90:2c:6d:6b:57:f3:30:d8:aa:ef:8b:8e:e2:
f1:fd:25:72:15:ca:ab:c9:64:77:fd:58:08:c7:41:
0d:6c:2d:9d:0b:cf:06:33:18:21:67:56:1a:12:bc:
1e:84:5c:e4:a5:8b:a7:c0:b1:50:b1:88:82:85:7a:
e5:06:42:93:68:ab:ec:fb:75:c0:07:71:40:ae:b1:
ab:a3:9f:66:96:37:96:5f:6e:38:a1:79:cd:01:1c:
fd:be:2c:c0:47:e8:e5:b5:2e:1c:8c:68:70:48:6a:
56:23:74:53:b7:16:c2:47:8d:8c:94:77:f3:4c:5b:
72:d5:6c:8a:7a:01:ab:2a:23:ed:d7:1f:01:8c:bd:
1f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:83:52:86:72:8A:6E:47:14:96:A8:D8:1F:1A:ED:C5:7C:D0:5D:87
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:ff:1e:19:72:9a:59:48:35:2d:77:0e:f4:ae:87:4f:ec:ec:
a2:3a:55:4f:4a:d2:7f:e6:7e:4e:c5:e8:3a:6c:89:f3:bd:8e:
74:91:0f:93:48:2b:f0:5a:c9:b8:31:f2:61:42:6b:d0:11:2d:
6c:4d:61:7e:fe:2c:7b:75:e9:64:08:44:34:6e:7f:3a:01:4a:
87:5f:9b:26:ed:0e:14:ee:97:65:06:bc:59:5f:13:58:b6:9c:
c2:b6:15:df:a2:40:3c:bd:77:37:67:cb:ec:20:46:39:5b:b0:
10:78:90:a5:0d:dd:2d:b1:6a:e1:2d:cd:cb:0d:37:91:46:ee:
74:83:8b:19:d0:aa:9b:b1:3a:62:cf:df:a1:1c:d0:96:de:de:
7f:99:27:07:03:47:0e:c3:fb:d6:d3:d5:97:a7:19:9f:c1:99:
b2:3c:4a:38:37:07:4e:a2:1d:fb:0f:9a:3c:b8:0e:16:c5:54:
7c:ba:82:ea:6b:e2:f0:36:b6:55:19:a5:42:de:b4:5b:1f:a4:
7f:a5:1a:81:bf:bb:83:d8:b2:02:e9:4e:8a:42:f0:b6:92:dd:
50:92:3d:17:bb:49:8d:07:2f:97:01:57:de:c0:b8:a7:df:92:
82:8b:44:88:71:a1:8c:42:ed:00:78:92:11:5e:70:b0:14:3b:
a3:ec:61:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:31 2025 by rpki-client