Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
File: QA4H15n7NVyVICXz0nsA6bTuNO0.mft (raw, json)
Hash identifier: zZ1wViTgTqnozpaPELDAj4Ts8wR5UGFfwGb2DqVU3Qs=
Subject key identifier: 93:B6:12:DB:02:63:C2:7E:5B:C9:E1:CB:E1:B2:5E:B9:C6:95:74:5E
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 019A003590F6CB50B6AC22E149958660033F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
Manifest number: 094D
Signing time: Mon 20 Oct 2025 06:01:41 +0000
Manifest this update: Mon 20 Oct 2025 06:01:41 +0000
Manifest next update: Tue 21 Oct 2025 06:01:41 +0000
Files and hashes: 1: QA4H15n7NVyVICXz0nsA6bTuNO0.crl (hash: lVeYdlhhZnLLwAxB7dO1iL7fwRsdDEr6uMFxGbNrGq0=)
2: bysUciiIqYU9vJ8UfK9pbwZkqG0.roa (hash: JZVYwqtyAp0nMHO1FDIE6qYD96KGmAzDi7aqiaMlMrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:90:f6:cb:50:b6:ac:22:e1:49:95:86:60:03:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: Oct 20 06:01:41 2025 GMT
Not After : Oct 21 06:01:41 2025 GMT
Subject: CN=93b612db0263c27e5bc9e1cbe1b25eb9c695745e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:27:bb:10:6f:37:d4:57:39:9a:cf:b4:06:56:
12:e3:6a:b4:58:82:0f:0e:95:73:3d:1b:60:c4:30:
dd:70:9c:f9:a6:a3:af:55:a3:a9:8d:6e:d4:01:71:
17:2c:b1:02:05:83:05:53:16:8f:9e:8e:07:6e:e9:
6d:0d:50:f3:db:49:af:11:b5:9b:6b:6d:41:8e:49:
01:bd:de:63:ba:b8:76:71:23:eb:7a:22:4a:e0:1a:
99:1b:0f:c2:16:51:88:a7:ff:8c:47:d3:35:81:83:
0b:56:ab:ce:05:72:97:96:89:3e:fd:dc:8e:6f:0d:
6f:b9:7b:1a:b7:bb:4b:cd:09:ca:cf:73:18:2d:64:
8f:ff:de:21:9a:e1:a1:7e:94:4c:48:7f:b2:82:ca:
05:79:12:37:cf:fb:b2:a9:b5:3c:e9:86:05:af:71:
f3:58:ac:02:80:03:01:09:42:50:cf:78:78:f8:56:
e7:42:eb:70:8b:07:8e:5c:e9:41:9a:64:bd:fb:fd:
f9:ff:3a:ee:a2:99:9f:2a:c9:bd:64:0b:25:28:58:
65:91:df:e7:05:42:7c:57:c7:d9:13:7a:96:a4:c8:
ae:38:83:c8:1a:1c:fc:a9:91:c4:1a:6a:e8:37:ba:
2c:08:b3:2e:76:a0:5c:26:64:a1:26:e2:14:3b:c4:
8a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B6:12:DB:02:63:C2:7E:5B:C9:E1:CB:E1:B2:5E:B9:C6:95:74:5E
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:f6:5a:41:13:54:d5:ec:4b:51:5a:c1:d1:5e:54:4e:48:0d:
1b:f8:c0:de:07:2c:e9:81:9f:66:70:0f:dc:3c:c4:27:96:78:
5c:3d:8c:58:f9:60:ca:6c:7d:54:79:68:43:0c:24:36:2a:18:
db:5e:f2:f4:4c:30:74:0f:b9:2d:7a:86:3f:09:b5:6a:dd:05:
f6:4a:38:59:72:43:f8:32:fc:58:79:65:85:fb:5e:7a:91:3e:
41:de:13:24:c7:44:10:e1:ae:1c:b2:ac:21:d6:73:08:6e:ee:
61:92:3e:6f:f2:82:d1:a0:02:cb:a9:3a:22:54:e9:23:25:85:
26:4b:d9:3b:b0:83:ea:ea:8c:9b:eb:6c:12:10:02:c4:97:c3:
09:9a:cb:61:ea:d8:40:b3:f8:99:dd:76:c9:9c:a8:73:c6:a8:
78:96:36:b1:b4:69:f4:f0:6d:8a:aa:8d:98:6e:55:7e:54:4a:
18:97:3b:1b:67:6f:66:39:98:13:c1:a5:5a:d9:39:d0:48:6d:
a9:b6:fe:5d:5a:1f:13:45:88:8e:a1:3b:85:f7:68:18:be:b6:
61:c6:5b:2a:ff:93:be:24:73:40:30:7e:ff:9f:3e:06:85:92:
95:3d:7e:29:4b:0c:b6:4e:58:99:7d:fa:f0:d5:4d:9d:44:77:
d7:a5:79:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:36:23 2025 by rpki-client