Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: mRIzRJKKxpWjWogosXyWzfmsBTjxtJlIhWL5KZiwlvQ=
Subject key identifier: 8B:F6:25:23:35:59:B3:CB:22:55:AD:31:DA:8A:19:EF:B1:0F:44:BC
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 0199FEEBC259AB064FBC421B8F5DA7D977E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 16E1
Signing time: Mon 20 Oct 2025 00:01:27 +0000
Manifest this update: Mon 20 Oct 2025 00:01:27 +0000
Manifest next update: Tue 21 Oct 2025 00:01:27 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: lsDw+4/tBqtqsG67JMCw+ijMu9t/A6hx7RQW1HCohCU=)
2: zxt5ioQXS4YKJLP4ilCQM5v8g2Y.roa (hash: RY5SWWwhf3VR6uGt8AADVTrl85kwmlR4e1dP9tOTtrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:c2:59:ab:06:4f:bc:42:1b:8f:5d:a7:d9:77:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Oct 20 00:01:27 2025 GMT
Not After : Oct 21 00:01:27 2025 GMT
Subject: CN=8bf625233559b3cb2255ad31da8a19efb10f44bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3b:33:5f:c0:d1:fe:24:51:19:d1:70:79:3a:
51:6a:be:d0:5a:4b:1c:4d:85:8a:68:ee:d2:47:5a:
ce:52:4d:2a:4c:41:32:6e:6f:e4:98:a1:61:f5:73:
39:18:08:87:2f:51:b1:bc:b8:3c:a1:2a:c2:f0:c3:
a4:f2:e8:4d:c9:30:33:57:11:3d:a7:ed:4b:51:c8:
dc:7e:6b:b3:dc:2f:ba:c5:c9:c3:55:b0:f3:2c:4a:
8c:e0:16:13:cf:ae:92:cb:74:6b:67:00:17:42:f7:
f2:42:00:b1:85:ba:fd:3a:d0:dd:67:cc:f7:a2:ef:
ed:3f:8b:d2:1a:3d:71:0a:0a:b6:2b:14:fa:c0:59:
96:f4:96:01:86:50:3e:cd:b5:1b:53:fd:cb:4b:2e:
a0:28:01:f5:0b:e5:8e:8f:66:7d:03:fa:cc:84:f6:
2f:fe:13:d3:3f:b0:0b:ba:ef:52:f1:5f:44:a3:36:
2d:c5:1b:e3:0d:64:ef:07:50:53:cf:80:08:68:6c:
89:2b:88:34:6e:66:1d:c1:28:b1:bc:ab:e6:c8:3b:
e2:fd:8d:9c:45:e3:47:e1:1e:5d:c8:97:29:18:73:
33:a3:c7:9a:dd:ed:bc:bc:f4:80:15:91:3e:a2:ab:
20:8f:28:29:bc:37:39:3e:16:08:ae:48:e2:e3:97:
80:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:F6:25:23:35:59:B3:CB:22:55:AD:31:DA:8A:19:EF:B1:0F:44:BC
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:a6:ee:ba:2c:c8:19:4f:c5:a3:ac:75:30:f9:2e:50:d9:cb:
28:6b:d1:f2:bc:87:db:43:1f:af:90:a3:9b:71:c9:a3:7a:83:
51:93:08:38:45:ed:f5:f8:8f:75:2a:76:37:84:11:b3:9b:fb:
c9:ac:00:f0:0b:1a:24:59:eb:b1:0d:72:f2:b9:61:82:12:cd:
07:62:45:bd:c1:65:77:42:4c:44:45:20:2d:10:52:e7:cf:db:
8b:c4:49:7d:ed:16:58:1d:65:80:a2:a9:6c:89:13:13:ec:1c:
82:84:36:f6:da:fd:3f:55:5b:96:ee:a2:9f:5d:0c:ed:cb:59:
6e:bb:04:50:55:b2:ef:ae:c9:f8:67:47:5d:60:60:e6:f8:49:
1b:3f:6e:35:a6:16:a8:6a:83:8d:7c:5f:45:ec:47:9f:7a:4e:
4b:ae:4d:6a:5f:21:fb:2f:27:04:49:db:15:c2:1a:21:df:79:
d8:36:92:5f:a4:93:1f:78:06:d8:7b:41:8a:10:2e:e8:61:a5:
b6:f7:30:79:8c:63:e6:c6:5e:29:9a:4c:0d:06:70:d6:e1:d4:
20:3e:3f:5a:51:5d:d6:4b:4b:98:e2:31:af:44:21:0e:3d:74:
17:0c:f7:b5:5e:0c:c7:9d:28:f7:7d:d9:5c:ab:3b:90:ea:d9:
15:ee:68:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:04:55 2025 by rpki-client