Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
File: QM1aUDjV4S_hydn1yGZAdMPdCsc.mft (raw, json)
Hash identifier: SB6BS79SnrjsGSlaQV4Q8IEopzTn1KUQOeoz18kfc4A=
Subject key identifier: 6C:45:78:69:D7:02:39:4B:95:E5:51:D2:19:99:A7:1D:F7:0C:88:50
Authority key identifier: 40:CD:5A:50:38:D5:E1:2F:E1:C9:D9:F5:C8:66:40:74:C3:DD:0A:C7
Certificate issuer: /CN=40cd5a5038d5e12fe1c9d9f5c8664074c3dd0ac7
Certificate serial: 0199FD34641E1519296F5B8533C12E7474DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
Manifest number: 0890
Signing time: Sun 19 Oct 2025 16:01:33 +0000
Manifest this update: Sun 19 Oct 2025 16:01:33 +0000
Manifest next update: Mon 20 Oct 2025 16:01:33 +0000
Files and hashes: 1: KVvOGYEyHhWhRHwS9LQjG3XK8EI.roa (hash: AFMADJ+EdA++truR6oHaQkzeXGaM562uJumCeUqnVzo=)
2: MHGZA5Y3PVpWBImn85tARMZRftQ.roa (hash: bnJhZwRrO7KGALVUCy1om+i/htb3dvM6lJ1uAmGl2G8=)
3: O1UMqFY4UYla6Wia0-cx5UTbNYo.roa (hash: yk9XmbWdQVbHd1Fk+ePRsax442yqoQX1eANsND8ceoU=)
4: QM1aUDjV4S_hydn1yGZAdMPdCsc.crl (hash: 3DnDANANAstiB/b312XrRiVOhFqe/uJndqHszitdcVE=)
5: TNSMUQvHGS8vGJs7QmyW0_jz86Y.roa (hash: qI6N5+Q6nkQDs5kBZ+Upq2gzqwGu3xE2kqSgmDsGATI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:64:1e:15:19:29:6f:5b:85:33:c1:2e:74:74:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cd5a5038d5e12fe1c9d9f5c8664074c3dd0ac7
Validity
Not Before: Oct 19 16:01:33 2025 GMT
Not After : Oct 20 16:01:33 2025 GMT
Subject: CN=6c457869d702394b95e551d21999a71df70c8850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ef:fb:ef:8a:b8:c5:93:50:28:a4:6c:67:30:
ca:07:77:32:d1:4a:93:5c:46:db:c4:69:fd:72:ef:
40:a7:81:78:fc:42:ef:35:9b:4c:ca:6d:48:7c:5d:
07:6b:c2:17:f5:d6:7d:7c:d6:db:e4:3c:01:45:dd:
00:fd:de:e1:46:85:d6:03:88:1d:d7:5e:a9:57:5c:
ad:a5:54:2c:08:dc:3e:71:96:a7:36:39:99:b1:56:
76:f6:7c:90:91:00:c0:d6:90:04:f6:65:cb:dc:8c:
73:54:c4:81:01:01:6e:02:f2:38:9e:85:90:4e:1f:
82:f2:f0:dd:d3:70:b8:69:02:0c:12:e3:fa:76:8f:
71:9e:4a:ea:03:17:77:42:50:d8:9f:62:77:da:45:
f9:dc:8b:ee:bc:76:d8:b1:86:72:a9:92:b7:57:23:
45:31:3a:33:fd:f6:46:52:5b:92:37:da:88:91:e2:
4d:ba:20:9e:c9:55:64:03:3f:3b:e7:12:46:53:d4:
7a:68:08:c7:00:c6:a9:46:ae:e9:86:86:cd:90:39:
7e:d0:7e:62:27:93:4d:fe:d1:87:23:f5:5b:6a:72:
b2:1b:1d:47:f1:aa:52:34:04:a7:d6:f6:7c:77:a0:
60:5b:06:10:8f:82:f1:4e:37:19:2a:15:8e:00:aa:
64:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:45:78:69:D7:02:39:4B:95:E5:51:D2:19:99:A7:1D:F7:0C:88:50
X509v3 Authority Key Identifier:
keyid:40:CD:5A:50:38:D5:E1:2F:E1:C9:D9:F5:C8:66:40:74:C3:DD:0A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:00:0e:cb:e8:fd:ae:f7:18:5a:96:f4:64:3e:3e:b4:07:83:
51:fa:af:2e:5b:8f:a4:17:2e:7a:14:c2:1e:d1:a1:f0:91:45:
0d:f6:6f:b8:ae:7e:2f:e1:f2:ab:f4:ce:a6:b0:89:73:c3:b4:
b0:2c:74:9c:df:51:fb:9d:fa:6e:13:45:f7:e2:96:63:eb:1c:
aa:53:59:47:16:ce:3b:99:1c:b0:8b:5d:ab:46:03:a0:c7:98:
3e:e1:1d:68:19:ce:41:fc:0e:12:59:06:8f:8a:70:be:9f:d2:
5b:53:e3:24:2e:d8:2d:6d:a1:af:49:5d:ae:3b:f8:4f:3a:72:
8f:75:7e:81:ed:6f:7e:05:12:13:20:d3:59:eb:db:bd:0f:38:
f0:c9:c1:85:c4:38:af:73:02:3e:09:df:23:e2:9f:52:36:2f:
f8:4c:9e:e2:df:e3:87:4e:83:59:6c:1c:56:24:70:e1:d6:47:
54:58:21:2e:5e:e9:c8:6a:1f:5b:ca:00:40:22:2d:a9:1e:be:
c1:a2:c8:d7:d2:b4:72:03:55:79:a1:54:d9:4b:95:ef:99:fe:
89:30:ac:d7:20:c9:53:c8:84:e0:c1:c6:3a:be:7b:19:4c:a7:
c9:3d:2e:17:21:c6:bd:c4:e5:dc:26:57:05:f4:1c:fd:56:2f:
c4:b3:92:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:30:13 2025 by rpki-client