Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.mft
File: QUZdOIpCMlXUiDLQc2m2vHcD6io.mft (raw, json)
Hash identifier: R0LB1+ZbUVfWhGU/8ijMeaJwHZOdy6X0QQ8JjawmD7s=
Subject key identifier: E1:5D:AD:AE:BC:9C:A2:8E:27:62:DB:76:C6:CE:7D:BB:85:00:FE:0B
Authority key identifier: 41:46:5D:38:8A:42:32:55:D4:88:32:D0:73:69:B6:BC:77:03:EA:2A
Certificate issuer: /CN=41465d388a423255d48832d07369b6bc7703ea2a
Certificate serial: 0199FC217BACDB90601E4890C015AA5E5614
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUZdOIpCMlXUiDLQc2m2vHcD6io.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.mft
Manifest number: 09
Signing time: Sun 19 Oct 2025 11:01:16 +0000
Manifest this update: Sun 19 Oct 2025 11:01:16 +0000
Manifest next update: Mon 20 Oct 2025 11:01:16 +0000
Files and hashes: 1: QUZdOIpCMlXUiDLQc2m2vHcD6io.crl (hash: 3WnAfvX18BirGn449dKTVP1F3yQFq1cB/TZZqD5EdDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.mft
rsync://rpki.ripe.net/repository/DEFAULT/QUZdOIpCMlXUiDLQc2m2vHcD6io.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:7b:ac:db:90:60:1e:48:90:c0:15:aa:5e:56:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41465d388a423255d48832d07369b6bc7703ea2a
Validity
Not Before: Oct 19 11:01:16 2025 GMT
Not After : Oct 20 11:01:16 2025 GMT
Subject: CN=e15dadaebc9ca28e2762db76c6ce7dbb8500fe0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:63:c2:6f:8a:3a:05:6b:b3:74:eb:af:2a:f7:
0f:8c:4e:b0:1b:54:9d:e3:7a:50:aa:f3:c8:9a:cb:
b0:49:74:41:57:0a:d1:de:50:15:83:f6:09:cf:60:
f2:f4:04:d9:d6:b9:c2:73:10:43:72:9b:49:23:59:
ca:b8:db:b5:be:cd:ec:1b:0e:69:c6:c3:04:f5:51:
9f:ac:c4:59:31:4a:ad:54:f8:af:0c:45:1d:80:cd:
ff:e7:ce:35:40:80:d8:2d:d1:e6:4c:cf:e0:f0:d3:
a2:b3:7a:8d:59:d3:4d:9a:e5:a0:7f:5e:74:91:44:
a0:76:4f:fc:36:85:1e:3c:04:1a:47:d0:bd:54:7f:
eb:69:7b:79:da:38:bd:0e:15:d0:29:7d:24:6b:42:
6b:11:ad:18:43:14:80:f5:69:94:d4:28:f8:6f:07:
ff:4d:37:12:6e:c5:7a:5c:2a:48:a6:90:56:55:cd:
75:37:59:17:ce:84:b9:e0:e4:9c:d5:46:cd:5b:26:
38:cc:09:68:74:32:0c:05:a5:44:79:17:5b:23:9a:
af:f6:60:4a:b4:0c:f1:8e:3c:fd:44:96:59:d4:f7:
06:0d:4b:a7:ef:35:70:a8:db:33:cc:1f:e2:10:1e:
1c:f1:ab:81:fc:00:1e:6b:82:de:61:9f:33:39:bf:
2f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5D:AD:AE:BC:9C:A2:8E:27:62:DB:76:C6:CE:7D:BB:85:00:FE:0B
X509v3 Authority Key Identifier:
keyid:41:46:5D:38:8A:42:32:55:D4:88:32:D0:73:69:B6:BC:77:03:EA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUZdOIpCMlXUiDLQc2m2vHcD6io.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:86:cf:ef:e5:7f:0e:0c:c1:78:a3:0a:fc:2f:25:1f:37:29:
23:9c:57:32:f3:54:94:61:d4:3a:41:bb:1b:40:af:48:24:11:
1a:77:2c:e3:06:e0:4e:19:3a:09:bb:29:9e:d2:5f:b1:42:22:
65:eb:d7:54:02:c5:c0:d5:81:e9:4b:c0:28:5f:d3:8a:23:34:
15:eb:9c:84:a1:fc:68:b1:5f:ff:03:fd:0f:b8:05:b5:74:43:
8e:7d:30:ea:d8:b2:58:11:9b:33:8a:a9:00:c7:36:26:12:ba:
c9:fe:a3:db:6e:cb:77:56:0c:ea:57:a2:47:27:ea:2f:06:4e:
11:7a:5a:38:a6:d6:3d:60:9b:f0:50:1d:de:3d:d7:6a:72:de:
78:30:4d:42:45:e1:1b:32:d8:17:08:3f:bb:b0:1f:aa:d7:77:
e5:04:d5:0b:6f:9e:f5:d0:be:42:1b:9f:16:10:8e:c7:36:a2:
f1:aa:4e:42:46:65:7b:c0:b4:e6:21:1f:8f:05:78:5f:5c:50:
b8:f1:7d:0e:a5:46:9d:c3:43:21:29:ab:27:28:2c:48:ad:cc:
d9:fd:ca:b9:67:2a:28:d6:f4:6f:07:25:03:50:33:9d:de:bf:
de:c8:28:bd:40:02:cd:66:84:f2:b4:08:a1:f3:4a:59:4b:96:
26:e9:0e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:28 2025 by rpki-client