
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
File: QukMnRAJsywZRbb45liUg8XqR0M.mft (raw, json)
Hash identifier: U94r063ydNenxkqAmAvkoBm5Raa1COEZyjx8ctVjU08=
Subject key identifier: CE:81:5E:9E:50:82:05:50:9F:3E:5E:F1:DF:70:64:E8:2F:D2:A2:C8
Authority key identifier: 42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
Certificate issuer: /CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Certificate serial: 019A022299BCF524A6773F40EF2864939707
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
Manifest number: 0ACD
Signing time: Mon 20 Oct 2025 15:00:13 +0000
Manifest this update: Mon 20 Oct 2025 15:00:13 +0000
Manifest next update: Tue 21 Oct 2025 15:00:13 +0000
Files and hashes: 1: QukMnRAJsywZRbb45liUg8XqR0M.crl (hash: K+OmaKpR0U/sItTkSxY9b2nH2UXAjDShhvoe9nf7hs8=)
2: vdgwFbYVt8R1VSJ8o61nh0Nw_GA.roa (hash: 76jfpsJ1QF75Cjby0A7bmnFhoDcXagSAAfe9ZF5jiZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 15:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:22:99:bc:f5:24:a6:77:3f:40:ef:28:64:93:97:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Validity
Not Before: Oct 20 15:00:13 2025 GMT
Not After : Oct 21 15:00:13 2025 GMT
Subject: CN=ce815e9e508205509f3e5ef1df7064e82fd2a2c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7a:fd:60:03:c9:23:06:da:c7:80:e1:bc:db:
94:bf:5e:7f:93:b5:66:b1:5e:41:7e:51:0e:ad:88:
42:b6:71:ab:7a:6b:f0:48:d2:fb:47:ed:73:7f:6a:
ab:d0:47:a0:e0:02:e1:d2:5e:ee:e1:2e:ee:3c:40:
bf:4b:23:26:96:3b:5e:c8:7c:d6:f8:17:1d:9d:1d:
57:2a:d8:0b:64:53:21:f6:eb:54:1d:3e:4d:96:e5:
e9:68:34:f1:7d:70:f9:de:62:57:b6:1d:64:7b:aa:
8a:a4:bf:f6:dd:1b:9e:e7:b1:ec:f8:26:c9:00:7a:
ba:fb:71:ba:10:40:f5:2a:40:fa:d3:da:7b:49:45:
5c:0a:22:40:84:86:d6:05:ef:23:4d:95:19:34:a9:
c9:99:5f:33:39:24:9d:20:94:c1:03:45:9f:65:e9:
35:4b:40:9a:55:2f:7f:8d:7a:9c:1d:2e:a6:ea:ed:
7c:dd:8c:4c:b6:39:b0:e7:13:69:30:de:26:d0:f1:
7f:15:a8:74:34:36:7c:3d:6a:ef:f8:5b:e9:f8:5d:
56:51:95:b0:ba:70:ce:0a:4d:d2:d5:c0:3b:55:f7:
f7:62:f2:57:4d:68:fb:43:b3:30:1a:a7:e7:c6:80:
84:2a:c1:a7:ff:b4:b7:1b:62:67:d9:13:9a:be:6e:
8c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:81:5E:9E:50:82:05:50:9F:3E:5E:F1:DF:70:64:E8:2F:D2:A2:C8
X509v3 Authority Key Identifier:
keyid:42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:f3:4a:89:e5:fa:af:0c:3b:9b:f2:ff:42:60:ae:99:14:3b:
52:e3:de:95:b9:6d:7c:d3:f9:e6:da:56:7d:23:b8:58:4c:01:
12:f9:01:b7:67:8b:db:59:20:16:ff:24:53:2d:e7:33:ee:c8:
68:dd:1a:b1:2c:e1:4a:12:da:d5:bf:15:37:e4:e6:38:8b:74:
66:da:0f:94:cb:d0:2e:d1:8a:7a:e7:2f:e1:55:53:f4:55:91:
92:a4:55:51:a2:3d:81:a9:71:b0:d3:5c:d4:3e:c6:86:d2:fc:
07:9d:bd:a7:f2:76:c0:6c:6a:f4:6d:71:f3:f9:de:fe:45:6d:
ed:f6:f6:ef:2b:01:11:50:4e:c1:d6:98:5c:6e:81:64:14:d4:
d3:32:2d:4f:6e:69:b0:9e:6c:cd:3a:c7:4a:e9:1d:1e:c1:ce:
64:d2:3b:fb:0e:92:db:bb:22:52:c4:b4:c2:1d:68:26:e2:08:
d6:9c:d2:b0:b7:7e:98:de:0e:40:ac:b1:41:6f:60:9f:d0:4d:
89:97:65:cf:b9:c5:35:d6:50:3c:1c:ef:5d:92:99:7d:94:5a:
05:07:4f:08:e8:3f:34:d2:37:b1:81:61:ee:2f:7f:cf:cf:ed:
e3:82:ee:78:f0:31:36:db:40:48:d7:70:c1:ad:43:d9:d4:e1:
1a:a7:df:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 00:50:50 2025 by rpki-client