Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft
File: QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft (raw, json)
Hash identifier: Se5rykTS8cjGvh2ZPf53VOhd7FU0+pE/VCcAx1rrBhc=
Subject key identifier: 32:9E:65:96:2F:1E:C2:42:13:33:AE:FC:71:7D:05:03:B4:07:0B:84
Authority key identifier: 40:E6:34:BD:C3:0C:0C:4B:5F:79:45:F3:D0:41:E2:35:05:BC:D1:59
Certificate issuer: /CN=40e634bdc30c0c4b5f7945f3d041e23505bcd159
Certificate serial: 0199FA69CBC5FE1FFB52DA98F3E71ABEEDEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft
Manifest number: 44
Signing time: Sun 19 Oct 2025 03:01:01 +0000
Manifest this update: Sun 19 Oct 2025 03:01:01 +0000
Manifest next update: Mon 20 Oct 2025 03:01:01 +0000
Files and hashes: 1: AIdhkvHghh0oY4Bo_26XXaHpKGs.roa (hash: 1OYUp8CdXRHv9dQxmnoj+je7+ykfhffiZAjyffapZ9I=)
2: QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl (hash: Lb7J5k/6BKo6lWP3ibGAvVPff+7go59uvqAYqgPato8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 03:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:69:cb:c5:fe:1f:fb:52:da:98:f3:e7:1a:be:ed:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e634bdc30c0c4b5f7945f3d041e23505bcd159
Validity
Not Before: Oct 19 03:01:01 2025 GMT
Not After : Oct 20 03:01:01 2025 GMT
Subject: CN=329e65962f1ec2421333aefc717d0503b4070b84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:52:61:5a:61:54:97:70:3c:00:73:03:57:4f:
fd:8f:e1:5e:59:3d:f5:a6:5c:ac:d8:6d:d1:4c:81:
00:ba:b7:33:c6:c6:da:10:62:4a:98:e8:3b:75:01:
b5:ba:66:1a:d5:b4:56:95:c8:a8:e3:19:4a:ed:bf:
57:ce:ab:9b:11:8a:69:65:f0:f1:41:57:e9:e9:dd:
0b:86:54:7c:d5:17:db:54:bc:fa:d3:6d:f3:a4:33:
66:c1:73:98:98:d9:d7:6d:20:2e:91:e3:d2:5d:96:
7e:52:b2:ab:b0:0c:b1:24:76:21:51:e2:8a:38:64:
6c:96:02:71:d9:40:b7:c2:20:df:37:8d:d0:e0:17:
d3:45:e8:f0:c3:7e:60:15:8a:39:c3:8d:98:44:d7:
da:4c:54:e2:3f:59:c0:b9:04:8a:cb:4a:75:7d:7f:
6b:6e:d7:e4:96:f4:e7:55:c0:6f:72:7c:f6:b4:0a:
eb:6d:18:fd:13:d2:b6:55:22:bc:a8:9c:04:7c:d0:
3c:48:ee:c0:08:18:a2:22:6a:5b:d2:6a:5d:d2:da:
2b:de:6c:25:ba:6d:ae:60:58:bb:63:9f:cc:5e:6d:
f6:d4:ec:25:88:ee:d9:ee:8a:1c:e6:85:fb:8d:73:
a0:63:d9:f6:c0:26:8d:3a:cf:92:c0:44:62:71:fc:
65:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9E:65:96:2F:1E:C2:42:13:33:AE:FC:71:7D:05:03:B4:07:0B:84
X509v3 Authority Key Identifier:
keyid:40:E6:34:BD:C3:0C:0C:4B:5F:79:45:F3:D0:41:E2:35:05:BC:D1:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:0b:d6:e2:11:45:51:3b:7a:e1:d8:9b:a9:13:df:c0:ab:db:
a8:82:4b:3f:a8:f2:5f:7a:ff:2b:a5:cd:c5:00:b3:af:9e:f4:
95:38:93:de:af:1b:fb:5b:ea:dc:00:a2:7c:5d:54:44:cc:b8:
b7:71:1c:5f:8b:21:df:e0:0d:27:23:71:79:f0:cb:94:32:c8:
a3:52:87:27:02:52:ee:5f:cc:d4:80:7c:29:cc:3c:d8:4f:c0:
1b:fd:82:40:a3:3a:b4:5c:02:18:34:4f:dd:b6:e5:3c:fa:e7:
ce:bc:ce:f4:79:f8:fa:b8:c4:19:ff:0e:64:c9:1b:28:6b:31:
41:3e:96:9a:40:21:cb:37:85:d3:40:06:28:32:a8:1b:5f:7b:
02:95:b6:d6:72:01:eb:12:40:a1:d6:b1:dd:d8:2e:6f:87:23:
d0:b2:bc:1c:a2:a1:0a:b3:4a:99:23:b4:ce:fb:ee:ef:ab:c7:
e5:d0:6c:fd:82:87:a4:2d:d3:ff:8a:c8:7d:35:1c:36:20:10:
1d:3d:0d:3b:df:b6:55:f1:c7:fa:2f:b6:a4:83:b8:4b:f9:17:
cf:3c:e0:f6:36:f7:45:b0:74:31:68:5c:5a:83:c4:04:e3:fc:
3c:8b:53:67:fd:db:5e:cc:55:17:aa:ed:0b:95:d8:96:07:db:
1d:97:c6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:51 2025 by rpki-client