Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
File: QVHWtEHT9XdiwDL4-tIXYIoi96E.mft (raw, json)
Hash identifier: g0lQ7a/Tx8+PwnqPYusTQo8ButmXBkmobOXlUao2bZE=
Subject key identifier: C1:F3:B7:33:58:92:64:00:F6:E5:64:06:38:79:9E:F0:91:70:6E:4C
Authority key identifier: 41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
Certificate issuer: /CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Certificate serial: 019A006C9EDBC52FFC98323B1514BCCFCF1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
Manifest number: 16E7
Signing time: Mon 20 Oct 2025 07:01:49 +0000
Manifest this update: Mon 20 Oct 2025 07:01:49 +0000
Manifest next update: Tue 21 Oct 2025 07:01:49 +0000
Files and hashes: 1: QVHWtEHT9XdiwDL4-tIXYIoi96E.crl (hash: KZN5ENhL3Bq+3Tt21IKSJNEsc9Vt2X4HtgA5Z7cdA1s=)
2: rnhdD5-8bSiFYqITT19uX_gBm3Q.roa (hash: yOuOYWqODTjCSSjzwtgNJuIQsfARCoasQhMpsxakuPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:9e:db:c5:2f:fc:98:32:3b:15:14:bc:cf:cf:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Validity
Not Before: Oct 20 07:01:49 2025 GMT
Not After : Oct 21 07:01:49 2025 GMT
Subject: CN=c1f3b73358926400f6e5640638799ef091706e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f5:64:ac:a7:d6:09:a7:f1:e7:bd:79:55:b3:
f7:75:b7:b9:18:26:e6:53:dc:a4:11:8d:78:4c:7a:
d7:1e:27:37:2f:92:05:2d:a2:94:f8:1a:b5:c8:d4:
ba:a9:f9:4b:a2:8c:e0:3f:77:97:c1:e0:d5:a4:2d:
ee:13:a3:c5:a8:81:d6:19:06:1a:17:0c:9e:c5:2b:
d6:f0:a8:b5:25:f2:72:73:96:00:d1:69:b3:77:99:
a5:cc:72:7c:33:db:da:8e:43:06:30:42:90:65:f7:
32:d1:2b:e6:e5:c1:71:2e:70:0a:7c:fc:d6:dc:bb:
2f:f0:a1:f4:37:fa:94:2a:fc:5b:e9:2a:53:26:fa:
c0:52:20:5d:b7:51:a8:c7:b3:45:f6:ed:1b:9a:79:
08:80:cb:23:66:ad:cb:73:2e:ce:74:88:07:53:81:
f5:71:29:74:0c:61:55:07:76:77:53:25:28:b1:0e:
a6:79:32:ca:9b:d1:ef:40:bb:9f:f2:28:ec:53:f4:
2f:e9:f1:51:10:58:d3:33:a4:34:31:7c:e0:28:0a:
13:a5:2b:24:21:de:63:d2:f7:db:4b:95:2b:04:19:
ba:0e:ef:47:24:2a:18:50:0e:f1:f2:e7:91:bf:92:
51:e2:d9:6c:f4:14:a7:1b:02:ac:09:9c:1d:bf:5a:
70:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F3:B7:33:58:92:64:00:F6:E5:64:06:38:79:9E:F0:91:70:6E:4C
X509v3 Authority Key Identifier:
keyid:41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:ea:dc:f6:c7:da:01:86:8d:95:a7:93:4d:49:9b:d1:2a:48:
e2:57:5c:55:5f:39:2d:5e:ef:8e:d7:f4:b9:1b:ae:10:6c:96:
e2:4e:44:b0:9c:e5:90:6b:66:64:53:93:68:1f:18:44:79:4e:
71:df:46:f4:bb:51:56:30:69:8c:e3:b0:a6:59:77:4d:6b:52:
c3:bc:4d:04:fe:b3:2d:31:15:fb:cd:5d:f6:59:46:32:c8:a9:
30:da:cc:69:b7:a2:16:d4:93:2a:95:6a:00:37:d3:1a:e0:c7:
95:21:8b:ef:32:4e:8a:f1:ea:74:e3:2d:fa:9f:0a:cf:7a:79:
f6:61:2b:f8:e3:db:e8:c0:7c:29:60:1d:86:77:7a:8b:c1:1a:
a4:c9:aa:a4:82:e6:8f:f3:62:0d:41:a4:9c:fe:79:f6:dc:b8:
2e:c1:f2:c9:72:92:94:c1:88:59:9d:10:e2:8c:34:bd:56:fc:
75:5f:5c:2a:47:7f:54:b0:ef:ba:46:ae:95:0f:74:ca:36:f0:
e1:ab:78:b4:ea:1c:7c:5f:db:3c:70:cc:69:13:fa:48:8f:ac:
4a:6e:9d:35:4f:ff:45:e5:ea:32:9b:7a:6a:4a:a3:d9:88:27:
50:8b:40:e3:24:18:c1:02:02:d9:f4:dd:48:98:a1:d1:84:4d:
40:5b:fe:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:32:13 2025 by rpki-client