Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: WJwzTwWn1n3HAfmH0RJbVdPOj6v0Xv+9ua/XcUs44WE=
Subject key identifier: 17:16:25:FC:F6:8B:B9:57:4B:D7:F5:CD:DF:9D:E9:61:EC:BD:88:C7
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 0199FBEBFF3ECC36992B3F0982A895D4C538
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 10:02:51 +0000
Manifest this update: Sun 19 Oct 2025 10:02:51 +0000
Manifest next update: Mon 20 Oct 2025 10:02:51 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: 17shU/9RhIBf3VsZ94Q8s1HmYKHLiGM9wWpRg3BAfWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:ff:3e:cc:36:99:2b:3f:09:82:a8:95:d4:c5:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Oct 19 10:02:51 2025 GMT
Not After : Oct 20 10:02:51 2025 GMT
Subject: CN=171625fcf68bb9574bd7f5cddf9de961ecbd88c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:14:54:22:13:46:43:71:13:93:ec:b9:25:51:
67:7c:f6:86:ad:94:5f:af:92:8a:c8:b0:dc:02:d5:
60:0d:cd:62:f8:45:72:f0:47:32:2c:e9:2d:d3:dd:
7e:e0:61:6e:0a:16:a7:ce:e9:4b:37:ab:9b:79:a3:
10:b4:66:c3:02:73:de:e0:67:26:84:01:f0:52:c4:
c9:31:a2:08:6c:82:5a:39:98:42:4c:57:84:25:0a:
cc:96:c8:75:76:50:c2:6a:f1:22:aa:c5:d6:de:cb:
10:c4:a7:10:8c:92:71:50:d6:2b:ae:90:96:dc:4e:
89:2c:18:aa:32:22:a5:6d:5b:58:59:bb:bb:f8:e1:
c6:b4:3b:da:82:cd:19:d2:91:4c:9c:a0:e8:8f:1f:
23:24:7c:40:0d:6b:dd:a2:d4:1c:c4:7d:c7:69:af:
6b:26:ee:69:4c:f6:99:0c:c1:f0:c6:76:ca:19:c6:
ff:ce:eb:1e:c3:9f:50:07:7c:2a:21:58:78:01:12:
99:27:82:e9:bc:a3:41:f2:7e:f5:f2:2b:ec:36:19:
4a:6f:6d:61:ea:64:0e:05:1d:7b:ab:4d:70:26:9c:
dd:cb:d6:6b:d9:3f:db:fc:52:ed:71:1f:10:0e:ed:
b8:7e:01:ad:f9:71:3b:bd:e9:3f:a3:fc:78:af:2e:
86:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:16:25:FC:F6:8B:B9:57:4B:D7:F5:CD:DF:9D:E9:61:EC:BD:88:C7
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:5a:00:26:65:39:c7:af:39:9e:e3:66:21:4a:2d:23:42:b5:
fc:14:9b:b4:c0:64:09:b8:74:5c:4e:f5:01:d4:83:70:15:26:
14:85:3b:88:6b:ef:f3:da:80:f0:7f:06:d7:8f:c6:23:a5:15:
39:df:fb:23:79:8a:2d:6c:fd:60:8e:8f:97:b9:20:fc:e7:14:
9b:a0:6c:23:63:bd:ea:dc:46:a9:53:a7:35:ec:79:5f:a9:3c:
f9:d4:c0:e6:33:c5:eb:9a:52:ed:c2:ab:a2:5c:24:d9:a2:66:
b9:4c:ef:26:ef:ea:08:68:a9:7c:a8:3f:74:be:ff:e8:2f:74:
d3:1d:70:ab:9e:c8:a6:21:f0:e5:36:30:d3:e0:ed:46:22:c3:
38:e4:85:33:28:4f:cb:8b:e2:85:19:07:5f:b0:42:05:5c:a6:
57:52:d6:c3:92:4e:3e:8c:82:40:89:d4:f0:16:03:6f:9b:89:
bc:70:57:8d:5f:75:36:80:21:7d:aa:e5:ab:df:6d:4f:4c:2d:
44:85:9e:95:01:93:7b:9c:4c:77:ec:8f:42:2a:1b:27:64:c2:
b0:50:df:f9:9a:aa:7b:8c:0d:b0:f4:44:9e:1c:89:4d:49:11:
f9:ff:25:fb:7a:9d:39:a1:27:68:08:08:fc:2b:16:30:42:7a:
1e:9e:cd:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:08:28 2025 by rpki-client