Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
File: QA8uoVe7tTqwJgEazlzRNg7y930.mft (raw, json)
Hash identifier: x9ygCctszW/v6hrX/tAqlqnmlGDlAvnciUHAR77owFw=
Subject key identifier: 90:51:9D:93:70:50:2B:76:B8:B8:D5:62:E9:B3:1F:C0:22:29:4A:D8
Authority key identifier: 40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D
Certificate issuer: /CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d
Certificate serial: 0199FFC86D0FDB724AC2AD3B30AF2B114478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
Manifest number: 1638
Signing time: Mon 20 Oct 2025 04:02:29 +0000
Manifest this update: Mon 20 Oct 2025 04:02:29 +0000
Manifest next update: Tue 21 Oct 2025 04:02:29 +0000
Files and hashes: 1: QA8uoVe7tTqwJgEazlzRNg7y930.crl (hash: I/WGaB9NWhl1D210QztOlkefN/pKeNYbHJQ/5G77Bf4=)
2: XYTPsqrRjFt2AcvYCap2e2yz93s.roa (hash: Kn1lsHWRvXKbCBaB+H+cKPNwO5N2Gs/SXNbPpw2oiTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:6d:0f:db:72:4a:c2:ad:3b:30:af:2b:11:44:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d
Validity
Not Before: Oct 20 04:02:29 2025 GMT
Not After : Oct 21 04:02:29 2025 GMT
Subject: CN=90519d9370502b76b8b8d562e9b31fc022294ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0c:9f:03:33:e6:ab:ac:52:74:e9:2e:80:ae:
de:18:b0:58:6d:6c:8f:0b:f1:56:d6:0b:f6:18:96:
aa:9c:c1:91:9f:5b:e3:09:d2:6d:0c:f2:a5:a4:16:
bc:93:18:54:56:49:66:d9:1d:67:fe:6f:b3:51:2f:
8e:b3:02:7d:9c:8b:9c:d1:ec:cd:aa:22:a8:d4:34:
b0:7b:87:2c:40:03:14:0a:70:2d:df:1d:ce:e8:75:
fd:f2:f9:58:17:c5:49:97:1e:52:a7:9c:1e:83:08:
8e:3b:59:ae:fe:e2:0a:f5:d5:02:9e:22:0b:58:77:
82:76:72:fa:a0:0c:07:c8:0c:ff:6f:02:0d:81:d8:
0b:d1:55:a5:f9:fc:f3:a3:5b:1f:c8:cb:9e:e0:a9:
11:25:bf:d9:24:20:4f:a9:66:ae:b9:21:be:4c:ea:
c3:50:26:3e:e2:b8:41:11:b6:4a:ae:61:29:4a:27:
b1:22:60:4b:00:8a:f8:cc:23:bc:07:28:b4:0f:9e:
73:68:3c:53:8e:0e:13:39:60:a9:5e:30:ba:94:44:
1e:ec:bc:05:50:85:12:45:df:3c:45:e6:71:b3:f7:
f7:ae:da:22:6b:17:7f:a3:84:33:c3:6e:22:45:39:
36:f9:ab:e7:d4:dc:a5:b2:3e:2b:36:fe:d9:1c:9f:
14:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:51:9D:93:70:50:2B:76:B8:B8:D5:62:E9:B3:1F:C0:22:29:4A:D8
X509v3 Authority Key Identifier:
keyid:40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:ce:32:c6:a1:b9:dd:0e:dc:ec:e7:69:f6:1d:b1:f7:cb:70:
53:1b:3d:30:e0:77:66:3d:b9:31:2c:f6:8d:28:d7:c4:b6:21:
a6:a0:c2:db:3f:98:85:a1:da:d7:63:39:c5:65:97:30:c1:be:
7e:b0:3c:79:79:fa:2b:0e:9e:35:1f:cf:98:bd:8d:2b:61:16:
40:1a:6c:31:31:d6:ae:f1:7d:b6:55:b3:12:4b:b6:91:ce:73:
1b:d6:20:46:bb:70:15:64:3c:61:b4:7c:bd:d3:58:f4:45:42:
83:a3:c2:a3:c6:f1:70:ad:56:cf:cf:cd:63:ad:78:7a:a1:1e:
d9:b1:32:e7:df:42:43:d3:0a:bb:4a:9a:6d:47:2f:c4:ab:24:
67:6c:8b:91:55:90:96:16:7e:5f:3c:02:86:c0:1c:52:84:8e:
b3:8a:56:ac:59:eb:98:40:48:a6:6c:2d:b8:6d:fa:01:ea:80:
c9:5c:87:7b:2f:a5:20:76:ca:cb:db:9b:89:e4:5c:d3:eb:64:
98:3b:ce:02:bd:42:a0:1b:ec:bf:4a:c1:fe:47:b1:d5:39:6a:
d0:7f:66:8c:eb:a3:a0:e5:10:eb:90:4a:46:c4:0e:98:92:ba:
53:7e:b4:c4:43:3f:bd:b5:da:d9:a1:fd:39:51:0f:38:d3:ad:
e6:06:a9:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:45:57 2025 by rpki-client