Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft
File: QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft (raw, json)
Hash identifier: 77nAnIklPcn7jh3KxoHKp+0j0qjQC4Fbqt2CZcG3iOU=
Subject key identifier: 9F:CC:8F:0A:7A:64:89:C3:A6:7C:0F:79:D4:1A:5C:EE:87:69:88:8A
Authority key identifier: 40:36:A6:4F:1A:06:6B:AB:B8:BE:B8:64:E6:95:FA:99:76:92:DD:48
Certificate issuer: /CN=4036a64f1a066babb8beb864e695fa997692dd48
Certificate serial: 0199FBEABAF58460478EA49B0483D8E2822F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QDamTxoGa6u4vrhk5pX6mXaS3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft
Manifest number: 113C
Signing time: Sun 19 Oct 2025 10:01:28 +0000
Manifest this update: Sun 19 Oct 2025 10:01:28 +0000
Manifest next update: Mon 20 Oct 2025 10:01:28 +0000
Files and hashes: 1: QDamTxoGa6u4vrhk5pX6mXaS3Ug.crl (hash: JFESZquzmg8q3S4HXgNIIhkundLjeP4+9A6Wwg55iQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/QDamTxoGa6u4vrhk5pX6mXaS3Ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:ba:f5:84:60:47:8e:a4:9b:04:83:d8:e2:82:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4036a64f1a066babb8beb864e695fa997692dd48
Validity
Not Before: Oct 19 10:01:28 2025 GMT
Not After : Oct 20 10:01:28 2025 GMT
Subject: CN=9fcc8f0a7a6489c3a67c0f79d41a5cee8769888a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2e:e2:a5:af:65:40:a7:c5:c0:a9:22:61:26:
ec:dc:e0:c6:6e:d8:01:60:55:02:35:aa:da:47:c1:
70:23:60:37:5f:5b:d7:05:3a:fd:29:91:9a:f5:8f:
d1:1f:ed:0d:43:42:fb:15:8d:bd:d8:8c:46:6b:36:
dd:fe:d2:5e:65:91:cf:2e:96:09:7b:85:eb:e4:97:
21:0a:b6:83:56:04:9f:7a:0a:6f:c7:f3:02:5b:8f:
75:98:35:e5:32:b6:d1:9a:20:2c:15:f7:5c:b4:49:
ce:78:2d:27:65:a8:86:6a:0a:52:4e:9c:a9:8e:f0:
16:e7:ca:eb:96:dd:10:32:4a:8c:24:5a:00:1e:b0:
46:1b:c8:eb:b3:8e:fb:73:01:e0:61:84:f2:7b:ec:
53:ba:8e:e5:93:49:71:7c:84:d8:5d:f5:cd:09:b2:
3a:20:52:3a:ff:c2:fe:33:4e:7f:b5:c7:c8:13:c2:
33:f6:ee:4d:d2:2f:ae:0f:21:87:57:b0:d0:93:d7:
12:d3:c9:f0:7f:7e:2a:f8:65:b8:8e:ed:0c:66:a5:
d7:46:ff:13:00:48:57:a2:0e:8a:e0:dc:f7:96:19:
50:de:ba:7b:75:49:af:c7:e8:6c:fd:1f:23:64:b1:
9b:f9:d6:47:be:65:7a:05:33:b9:01:6d:35:f6:2a:
18:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CC:8F:0A:7A:64:89:C3:A6:7C:0F:79:D4:1A:5C:EE:87:69:88:8A
X509v3 Authority Key Identifier:
keyid:40:36:A6:4F:1A:06:6B:AB:B8:BE:B8:64:E6:95:FA:99:76:92:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QDamTxoGa6u4vrhk5pX6mXaS3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:91:8d:64:11:5e:ab:81:e2:c9:ce:1d:3b:2b:d1:e7:3a:57:
17:f8:33:3e:4e:f5:2a:c8:ba:d6:e6:37:6b:a7:d6:7b:cd:64:
2c:16:eb:88:35:63:77:81:fb:4c:b7:d7:8a:06:8f:3f:0c:6b:
c6:06:9a:3a:cb:6c:c7:0e:bc:2b:48:b5:a2:c3:f4:26:98:cb:
ef:14:0c:61:50:3b:ff:6d:4c:0a:b9:64:a4:52:28:e4:d4:57:
75:e3:1d:e4:59:68:5a:44:15:e7:0f:0a:4f:bd:91:9d:98:c9:
68:09:36:b1:02:f6:5c:f0:fe:58:40:59:6b:2f:4e:6a:68:59:
27:aa:93:00:9c:b9:67:95:11:8c:e9:ca:f1:a0:4a:b1:bc:57:
76:50:f8:6c:13:22:84:ee:a8:f2:28:58:3d:a4:dc:29:e7:68:
ac:c7:34:43:38:cc:ee:ae:d0:9d:85:19:f0:34:8d:71:15:7d:
a8:39:54:e6:f0:20:92:f5:5a:32:4b:b6:8b:11:8c:4f:64:a4:
d5:af:c8:b4:75:f0:f4:de:ce:c5:1b:66:d0:7a:aa:ef:03:59:
93:a3:dc:a1:d0:a2:fd:63:02:e9:30:bf:fe:da:ec:3a:d3:0e:
05:c0:92:ac:74:41:c9:fd:68:85:55:aa:46:d7:16:c8:1e:1d:
c5:65:46:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:00:16 2025 by rpki-client