Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
File: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft (raw, json)
Hash identifier: Y3eU1aJCywkSG9MF6pLB/u3iXISuroA2qIXORtIw/70=
Subject key identifier: F3:D3:89:C0:3E:2A:2A:02:D7:5A:EB:55:E3:FA:E6:63:C4:B0:68:54
Authority key identifier: 41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
Certificate issuer: /CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Certificate serial: 0199FE46D8B72EB4F85EFF9111732B94D8A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
Manifest number: 16E7
Signing time: Sun 19 Oct 2025 21:01:19 +0000
Manifest this update: Sun 19 Oct 2025 21:01:19 +0000
Manifest next update: Mon 20 Oct 2025 21:01:19 +0000
Files and hashes: 1: NrBghBDxVUP3b8K-s4QfPajtoEw.roa (hash: PXmrD91Lu77kd9R7RmMEPIR9q62nZX3KSQVZITYjO7o=)
2: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl (hash: E62klWpFP9NRBsogSFLld6k+ZiwKz/W1o6QRRvb1Hso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:d8:b7:2e:b4:f8:5e:ff:91:11:73:2b:94:d8:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Validity
Not Before: Oct 19 21:01:19 2025 GMT
Not After : Oct 20 21:01:19 2025 GMT
Subject: CN=f3d389c03e2a2a02d75aeb55e3fae663c4b06854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:39:d7:01:b4:69:ca:6a:2f:2e:4a:45:b0:f2:
1d:d6:cb:f6:15:f8:1f:af:11:9b:02:2d:fc:42:ec:
16:bb:32:fb:fa:5e:8a:2d:ef:00:ff:e9:ed:fe:65:
de:8a:d4:15:45:c2:17:1f:60:c8:8a:2c:f7:81:8e:
9f:74:d0:99:00:e0:fb:cf:97:d5:9f:76:35:4d:b3:
97:df:22:40:48:89:c0:98:3f:f1:5d:68:5b:ae:9a:
ae:19:b6:55:98:30:95:a7:ba:83:92:8c:30:70:9d:
82:a9:b7:98:a0:d4:c8:5f:b7:bc:2e:9c:56:b0:26:
f8:2a:f1:d2:e8:f5:fe:be:c1:d6:68:de:c2:c9:b7:
1a:5f:85:b3:5b:24:16:37:8e:e5:24:c7:dd:0b:66:
15:54:b2:16:f0:dc:81:a4:22:ce:5b:f0:b9:63:2d:
bf:51:62:62:1a:95:a8:c9:2e:30:03:b0:fd:58:18:
97:af:2b:d4:ec:a3:4b:f9:a9:09:9b:1f:0a:91:bf:
30:65:bf:e2:6c:3f:de:1e:89:43:28:96:50:bb:32:
ee:a3:e6:ca:67:07:e2:04:70:b6:5f:0f:da:6d:79:
45:a5:b3:f0:5d:80:77:ed:ab:1b:2d:07:04:35:dc:
97:90:fe:5c:d6:6b:64:4b:34:70:9c:d4:e5:b9:f5:
54:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D3:89:C0:3E:2A:2A:02:D7:5A:EB:55:E3:FA:E6:63:C4:B0:68:54
X509v3 Authority Key Identifier:
keyid:41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:0f:2e:dc:ef:f8:47:71:3d:bc:c7:1d:78:c5:1e:58:32:db:
db:ed:c8:c4:15:a0:42:a4:4d:d9:1f:97:5e:b3:3d:75:c6:3b:
12:4d:19:7d:17:31:61:cb:89:e9:ec:01:ba:d5:8c:5d:7d:ad:
30:91:01:47:af:33:64:e1:c2:e3:df:89:20:95:c7:43:48:fd:
44:17:d4:38:94:83:17:31:cf:ad:5d:3c:5e:3e:eb:f5:41:e5:
9b:f1:cb:71:c1:f4:0e:fb:ad:ca:93:99:c8:98:cc:b2:ae:b0:
7d:76:d1:fc:1d:2f:75:6d:0a:55:7a:f3:71:52:da:15:48:7c:
7b:bd:d7:be:05:f3:ed:65:c9:6a:3b:ed:1c:79:e9:c0:51:6f:
4e:75:7b:7f:0b:46:74:a8:46:d4:5a:1c:34:a0:d5:b9:e7:5b:
f9:7b:a5:30:aa:59:98:fd:50:cd:3a:41:40:56:c3:4d:18:81:
4b:84:0a:0c:24:b2:1a:a3:79:c9:8c:5e:47:48:ce:19:13:e0:
83:4a:90:31:91:75:a7:ab:ff:8b:b4:04:54:5c:57:8d:db:8e:
4d:d4:64:80:3a:dc:17:f6:12:eb:6c:19:2d:d5:0a:66:34:ae:
96:ad:84:de:e0:7d:1e:15:a2:cf:36:39:42:cf:c1:73:e3:6b:
09:6d:04:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:18:52 2025 by rpki-client