Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft
File: QHznj0rDupAqDDjcAaDF8hJlGbA.mft (raw, json)
Hash identifier: P51hCyT90LQ3E22IDo3w7OwODN62NJKwZ4fGMoOa0Gk=
Subject key identifier: BF:76:78:41:26:B7:C5:B3:9B:E8:AD:86:96:11:48:B0:70:9E:87:B0
Authority key identifier: 40:7C:E7:8F:4A:C3:BA:90:2A:0C:38:DC:01:A0:C5:F2:12:65:19:B0
Certificate issuer: /CN=407ce78f4ac3ba902a0c38dc01a0c5f2126519b0
Certificate serial: 0199FFC852400D9D26646B99182B83CCBF16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft
Manifest number: 0B52
Signing time: Mon 20 Oct 2025 04:02:22 +0000
Manifest this update: Mon 20 Oct 2025 04:02:22 +0000
Manifest next update: Tue 21 Oct 2025 04:02:22 +0000
Files and hashes: 1: QHznj0rDupAqDDjcAaDF8hJlGbA.crl (hash: hx7ALJuD9RXMa1sg6k25jQAJ2K7HmwFQWLU/+cCGzjs=)
2: UJVJt5_Arh5oP7MnvKcbCGODOc4.roa (hash: cSJe9mPxkDM+ny/+GoKSWRH8dkU4qbTNsxlZ1deFGeo=)
3: epRoE1oSS28-kMoVUvbovqDaftI.roa (hash: vf7QEJn0ywPdqhUagZXAfAdq0fp3vefGorgZKG9IKIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:52:40:0d:9d:26:64:6b:99:18:2b:83:cc:bf:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407ce78f4ac3ba902a0c38dc01a0c5f2126519b0
Validity
Not Before: Oct 20 04:02:22 2025 GMT
Not After : Oct 21 04:02:22 2025 GMT
Subject: CN=bf76784126b7c5b39be8ad86961148b0709e87b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c4:69:bd:6c:53:78:79:ff:1c:c3:a5:5c:5c:
07:ed:2c:87:ad:8f:8f:bd:0c:1b:cc:92:a7:4b:03:
20:c1:d5:c0:1f:10:a2:e6:c6:ba:f2:61:60:13:51:
21:f7:ff:22:7e:d3:f2:ae:b6:18:26:16:e0:c3:c9:
34:dd:82:7c:f0:97:4b:bf:27:3d:61:92:54:52:ea:
5d:dc:15:b5:d3:12:b9:62:98:6d:82:c3:2c:31:12:
9d:2e:df:b3:02:b0:8d:12:a0:24:a0:aa:d9:12:20:
ae:f0:de:44:a0:53:1b:1d:a1:4f:62:cc:da:6b:03:
85:82:65:ac:0e:56:a6:bf:ca:77:7f:f9:51:9e:4e:
62:15:37:bf:60:95:93:1e:b9:40:24:9a:f0:d2:fb:
22:77:11:ce:f5:00:ec:88:55:a4:c1:a6:07:fa:e5:
17:02:19:13:fc:74:24:dc:53:73:5d:90:e0:a9:97:
bf:e9:9b:a0:80:95:b1:5c:0e:f7:76:75:5c:5e:04:
ed:2e:b6:ec:85:77:2f:bc:22:a2:0e:db:98:56:af:
33:8c:8d:8a:bd:ed:53:a6:23:8f:2d:d3:31:37:e3:
a1:82:0f:78:18:95:af:64:9e:c8:3a:03:3b:3d:db:
b3:e9:f1:41:86:69:11:78:32:ef:3c:86:ee:a2:e6:
65:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:76:78:41:26:B7:C5:B3:9B:E8:AD:86:96:11:48:B0:70:9E:87:B0
X509v3 Authority Key Identifier:
keyid:40:7C:E7:8F:4A:C3:BA:90:2A:0C:38:DC:01:A0:C5:F2:12:65:19:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:9f:a6:27:a6:cd:8a:15:47:0e:77:53:ca:06:b2:90:67:50:
86:fc:40:a6:77:e8:a2:bd:00:ae:22:93:13:27:4d:0d:b8:09:
13:c6:93:6a:81:fd:2f:62:8b:df:31:e5:43:a8:cf:a8:f5:86:
4b:8f:dd:3d:32:0c:f5:dd:4a:a4:41:e4:10:3c:39:10:67:8a:
61:7f:60:25:41:c0:94:c0:29:12:1a:08:0a:c3:3c:df:1b:05:
a2:90:bf:28:54:2c:35:1f:52:92:3a:77:cd:b6:c0:c7:f9:96:
04:e6:00:f9:d4:d0:f1:74:28:bd:57:39:3b:dd:f2:b9:de:7c:
3f:cb:1c:d5:1d:bf:72:9e:77:06:59:ec:f6:5c:4c:e8:e0:38:
a5:f3:91:29:c6:90:52:30:24:51:8f:bc:bb:0a:e7:b8:02:32:
74:ab:c6:83:e0:4f:ab:5c:8f:7a:72:9d:51:04:41:5b:3c:87:
a3:0a:6d:9c:a7:5b:9f:b8:93:18:b7:c5:5b:f1:2c:46:4b:64:
5c:5e:de:2b:92:cb:da:7a:21:bb:4e:80:ec:34:38:89:72:53:
ae:ff:a6:7c:4f:da:86:84:e9:dd:d1:c8:b9:f3:3d:a8:f8:1b:
4e:c5:e5:2c:bf:72:b1:21:e5:5d:8f:2b:66:30:b5:49:e1:7e:
67:a1:5c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:53:28 2025 by rpki-client