Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
File: QH75-Xcjo9WiGTasNNMZl_JWHrk.mft (raw, json)
Hash identifier: 0D8gf2Y/fWj95FXuchAoBDwhmUzOIeITjzkzuoq2Nf0=
Subject key identifier: D7:15:9D:BD:25:22:66:19:99:B0:98:AB:02:42:5F:F5:B0:E7:E1:75
Authority key identifier: 40:7E:F9:F9:77:23:A3:D5:A2:19:36:AC:34:D3:19:97:F2:56:1E:B9
Certificate issuer: /CN=407ef9f97723a3d5a21936ac34d31997f2561eb9
Certificate serial: 0199FD33DE8C6F798D690369C3C71C4A0C81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
Manifest number: 0DC2
Signing time: Sun 19 Oct 2025 16:00:58 +0000
Manifest this update: Sun 19 Oct 2025 16:00:58 +0000
Manifest next update: Mon 20 Oct 2025 16:00:58 +0000
Files and hashes: 1: QH75-Xcjo9WiGTasNNMZl_JWHrk.crl (hash: HLjy3K/Xn7jPHm/+Iyb+Q4iZJw61VMjJxua7VteWBW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:de:8c:6f:79:8d:69:03:69:c3:c7:1c:4a:0c:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407ef9f97723a3d5a21936ac34d31997f2561eb9
Validity
Not Before: Oct 19 16:00:58 2025 GMT
Not After : Oct 20 16:00:58 2025 GMT
Subject: CN=d7159dbd2522661999b098ab02425ff5b0e7e175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e5:2d:00:c6:22:f2:0e:e7:59:21:2b:c6:e1:
9e:62:cf:23:be:6f:92:0d:fc:80:4c:37:42:d7:b9:
ef:89:c2:e8:1d:20:d4:89:89:1c:c8:ae:b5:a3:ba:
60:e3:fe:ed:1f:bf:df:f9:5f:92:d6:0b:1a:2c:e6:
40:5f:99:6c:67:36:53:19:31:28:c9:b7:a5:2e:1f:
8a:c7:57:60:55:59:32:4b:e3:be:08:58:2d:56:f5:
88:c7:ed:7f:47:0a:4f:b6:d5:91:21:47:df:9c:6e:
71:aa:fd:62:c5:f9:98:b7:24:5a:1b:b8:ca:af:9e:
8b:2a:59:1c:39:81:03:46:2e:34:a2:01:d4:56:e4:
df:e4:10:87:87:9d:9a:63:08:23:4f:f3:20:55:33:
d7:21:50:ca:63:f2:72:f2:75:9b:a7:3b:81:0f:6d:
97:dc:fc:b5:71:b7:d9:5c:5c:2b:a1:04:41:1d:ed:
43:2c:9a:a0:52:d7:b9:eb:07:a7:41:2e:50:a1:19:
6d:ec:47:24:b0:59:88:11:9d:07:18:cb:d3:26:3e:
29:7c:fa:1c:b1:36:c5:0d:29:a4:4a:76:c9:06:95:
e8:b1:6c:28:a0:0a:49:05:b7:ad:cf:62:94:17:9b:
75:96:c6:ee:0d:b3:9a:05:80:a8:39:5f:48:79:2a:
76:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:15:9D:BD:25:22:66:19:99:B0:98:AB:02:42:5F:F5:B0:E7:E1:75
X509v3 Authority Key Identifier:
keyid:40:7E:F9:F9:77:23:A3:D5:A2:19:36:AC:34:D3:19:97:F2:56:1E:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH75-Xcjo9WiGTasNNMZl_JWHrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e1ce40-24e7-404c-8e24-8d66e720421d/1/QH75-Xcjo9WiGTasNNMZl_JWHrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:56:fe:f0:27:60:3f:aa:38:5f:c8:d6:08:2a:8c:70:5f:64:
80:c8:a8:b5:40:5f:b5:1f:ab:2f:9d:1a:53:c8:c0:e9:60:8c:
5a:c7:49:76:fa:f1:44:00:d4:90:ad:29:d8:77:bd:8f:ed:16:
e6:9d:cc:65:20:7e:f9:1b:49:65:9d:ac:4c:d8:04:fd:92:50:
df:24:ea:46:f2:55:53:f6:75:88:80:70:ca:69:25:d0:ca:64:
2a:7a:ff:43:46:4a:fc:c7:0f:50:19:9b:13:87:79:0f:0a:5b:
34:b8:d5:59:d2:e0:86:52:3e:43:3b:5d:5a:50:d1:ed:67:df:
45:9a:71:bc:ed:e5:1c:75:71:c6:95:75:5d:0c:a2:5f:71:5c:
6b:fa:f7:31:62:ad:df:32:43:95:32:42:a7:65:c3:95:ee:52:
39:dd:cf:ad:15:fc:57:8e:cd:17:eb:30:44:fd:61:87:91:d5:
45:28:3a:70:be:cd:e9:be:d4:eb:3e:a2:b8:c1:c6:74:af:16:
67:28:16:c1:b3:10:2d:7b:51:15:c9:4a:8a:ba:a3:b6:b0:7b:
8c:85:af:7d:b6:54:04:a4:a8:9a:eb:ef:1f:0d:dd:aa:5c:cd:
11:95:e0:24:fe:f1:6f:ed:ee:91:71:94:58:75:c3:b4:a1:8b:
2d:55:06:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:02:50 2025 by rpki-client