Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: mjCjNPd4vkyH3QYWoS4URk3JspDLmjKFxPH8je/dfIw=
Subject key identifier: 52:A2:58:10:52:D2:7C:29:68:09:8C:58:FB:FA:EB:33:15:A5:07:63
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 0199FD3445B4BB211B087846BB50B6F08605
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 16EA
Signing time: Sun 19 Oct 2025 16:01:25 +0000
Manifest this update: Sun 19 Oct 2025 16:01:25 +0000
Manifest next update: Mon 20 Oct 2025 16:01:25 +0000
Files and hashes: 1: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: D7PgXS+qdtQCji6jbS2QIpM1VDZCHOTnYMDB8bpVuQQ=)
2: YqDxs-OvuVQHWefybCF_NO3X2LQ.roa (hash: T8m4+98qGxOiuFkFF1AHlHH+ajIR7QgNJlfbjXDXJ94=)
3: tc90ntWAEd82qK0_CS7-3-Q6s0Y.roa (hash: 0mZz7plH7Kh9tzG5C0loWt280MVfKoBtrgSHIPS0Ry4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:45:b4:bb:21:1b:08:78:46:bb:50:b6:f0:86:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Oct 19 16:01:25 2025 GMT
Not After : Oct 20 16:01:25 2025 GMT
Subject: CN=52a2581052d27c2968098c58fbfaeb3315a50763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7b:ec:fb:d9:b4:53:35:15:27:6f:4d:9c:b0:
db:f1:97:75:eb:be:06:61:7a:bc:4b:b2:7c:e5:41:
19:5b:68:4c:73:66:3b:30:c4:64:e1:be:8c:be:44:
46:99:09:1a:74:23:92:52:5b:de:16:1d:5f:c7:b0:
71:0d:2d:95:3a:cb:f7:b5:d6:b7:82:0b:31:a8:bf:
57:c6:a0:95:4f:5a:57:5c:7b:10:5b:6b:d4:61:b5:
2b:db:cc:26:e1:3e:d7:46:9b:b0:67:0a:79:c6:3e:
e3:cf:3d:0a:70:ff:3c:82:d5:6b:c9:50:e3:41:6d:
05:86:2c:5b:d0:90:d2:a4:86:fb:7f:ba:fa:7c:28:
d4:ec:ec:b9:64:34:fd:6d:ad:0d:10:07:72:81:d3:
1e:6f:2c:48:f5:63:c2:52:5f:f7:f8:5e:6c:dd:56:
47:6b:64:4c:cb:db:6d:46:91:73:b8:64:5a:01:5d:
f3:4f:bf:b8:9c:52:06:1a:84:d3:3b:74:3e:99:e2:
4c:c1:ce:c5:f7:ee:9c:b7:36:28:b7:db:25:5c:01:
bf:06:19:87:e6:1f:44:f8:73:1e:09:e8:6f:3c:cc:
d0:b5:a6:af:1c:a2:e4:da:24:b3:ac:5d:8e:54:06:
a5:19:f1:b6:0b:12:78:8e:7d:76:dd:ac:62:c6:f6:
da:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A2:58:10:52:D2:7C:29:68:09:8C:58:FB:FA:EB:33:15:A5:07:63
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:42:04:92:86:18:ae:10:17:cb:c8:60:73:16:12:1f:fb:a2:
65:bc:76:36:37:7b:4b:00:1a:94:a4:4a:ff:6e:55:25:a5:2f:
9b:e7:87:ae:0e:d3:5e:bd:e8:78:65:ee:54:ea:e6:bf:72:71:
16:d6:e8:0c:c7:11:db:71:4e:95:42:99:f5:09:6d:ff:94:14:
87:75:ee:9c:63:f9:ef:df:53:8c:48:0b:cb:41:c7:25:40:21:
93:d0:55:21:19:10:35:42:d8:a3:f0:da:79:69:07:db:03:6e:
fe:2a:b0:6a:25:09:7d:46:67:f8:f6:b7:81:96:f2:e3:9e:fb:
c6:07:64:3d:a0:f6:68:d7:b4:49:f2:92:40:2b:bc:84:15:fc:
c1:e1:fa:e4:5a:99:99:57:7d:cb:03:bd:d4:9b:40:68:f3:39:
57:0e:c3:3f:b9:a5:70:f6:dd:b4:2f:05:7a:9c:56:58:db:60:
3c:d8:2e:97:e7:83:2c:ac:3c:79:00:b9:c4:86:ef:81:79:fd:
cc:88:d1:d7:f6:31:63:89:08:fb:1c:41:b0:81:b9:7e:d1:2d:
d7:59:e0:d9:31:d7:8e:99:b2:31:7b:76:e0:34:7b:9f:f6:68:
7d:75:25:c3:6e:e8:ee:3f:5d:10:a5:06:30:68:5a:af:f8:eb:
68:6f:ac:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:31:12 2025 by rpki-client