Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: Uvo1+6dO7mc9u/lOl3af814Vjt1bWDDyiKODLJj53os=
Subject key identifier: 8E:1D:FF:B4:9A:72:61:A2:0B:5D:E6:0D:5A:C5:10:26:37:97:BB:7D
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 0199FC58D5821E15820D610F8F59CFFCCB6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 12:01:44 +0000
Manifest this update: Sun 19 Oct 2025 12:01:44 +0000
Manifest next update: Mon 20 Oct 2025 12:01:44 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: Of2+xTtYUtjZtdzjWZ2jBY7Y27BluDOH7AJ1sa4v+Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:d5:82:1e:15:82:0d:61:0f:8f:59:cf:fc:cb:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: Oct 19 12:01:44 2025 GMT
Not After : Oct 20 12:01:44 2025 GMT
Subject: CN=8e1dffb49a7261a20b5de60d5ac510263797bb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c8:14:ef:ba:66:be:fa:5e:6c:12:46:6b:f6:
5a:dd:bf:5a:09:d9:79:81:67:36:8f:15:14:6a:fa:
e5:e9:af:c8:fb:e9:ac:3f:b2:e4:c3:79:cb:ae:c2:
05:db:69:29:9c:df:35:c6:e1:17:c5:a1:e8:dd:aa:
7d:15:03:5c:3d:92:06:01:85:41:de:52:ea:0e:7a:
7a:06:cd:81:d3:93:34:a1:e3:4b:6f:5a:d7:36:01:
4f:68:dd:14:18:8d:98:cd:a3:9a:47:0b:de:2d:8c:
8e:e5:20:98:51:f8:0b:2c:28:09:f8:b4:a7:8f:64:
3d:c2:ff:74:34:cf:62:2b:b1:d2:70:12:36:a1:12:
06:4f:27:2e:60:eb:f6:4a:25:fd:84:2c:cd:92:16:
ed:22:43:44:d6:b3:9d:82:01:cc:7b:b3:bf:c3:3b:
b8:a8:04:c0:5f:a0:d4:69:ca:23:ed:eb:1c:f9:01:
ee:b7:7d:a9:e9:b3:27:a5:f3:c7:d0:2b:2b:95:40:
3d:5a:2f:ab:83:ef:7e:75:4f:b7:94:b5:6d:3d:95:
62:9b:2f:66:4f:2f:09:26:98:0f:fe:14:9a:ea:13:
28:46:53:3d:55:38:55:ff:46:e7:60:26:ee:f5:51:
bf:fb:8b:68:b7:02:e4:a0:08:b8:10:a1:52:83:38:
73:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:1D:FF:B4:9A:72:61:A2:0B:5D:E6:0D:5A:C5:10:26:37:97:BB:7D
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:d1:41:c4:66:7a:d1:13:89:02:9d:08:87:2e:33:10:52:6c:
1f:b8:d7:f4:68:26:a6:1d:19:62:63:22:24:c8:69:51:d6:95:
71:1b:6b:b4:76:92:eb:c8:21:68:df:5f:4b:16:2b:37:ec:13:
60:cd:ee:a9:d2:ac:ec:9a:b3:a4:ed:85:c2:46:09:34:bc:9a:
20:d1:7a:f8:22:76:58:83:d5:30:a7:8e:8b:fd:5c:12:35:13:
88:99:c4:b5:f3:f3:ad:0a:82:70:03:27:7a:02:3d:39:f9:a9:
66:2b:a5:fe:95:07:85:20:4e:1d:25:a6:75:7d:20:0d:2b:cb:
03:53:74:0e:e1:3f:d6:9d:bf:c8:d5:a3:3c:e3:77:ad:23:e9:
1e:82:f9:49:d7:3a:45:10:0f:30:91:ea:e1:44:6d:35:65:6f:
6a:1a:40:b6:a6:04:92:f3:b3:d8:40:af:69:ec:52:53:11:44:
ed:27:c2:7c:24:b4:ee:0b:fa:62:17:3c:71:b8:58:7b:dc:64:
f1:4e:80:df:88:d2:80:9b:f0:d9:99:9c:f7:ea:08:7a:5b:2a:
b4:fc:8c:50:f5:bf:12:d9:0b:29:dc:40:87:d9:8f:6a:0d:b7:
5b:1b:3f:fc:67:32:6e:61:fb:82:9c:32:ee:07:7d:19:eb:24:
55:f7:ce:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:31:24 2025 by rpki-client