Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: 7cRf/3tBC5NBnLwn40S9kWxLvAFEmaLtuSf9h67cs04=
Subject key identifier: D1:FA:6A:38:E2:CC:7F:BF:DA:EE:F8:1F:FC:C1:FB:6A:6C:38:B4:7C
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 0199FC585A3F9452FA8E61A6E331736A3E28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 12:01:12 +0000
Manifest this update: Sun 19 Oct 2025 12:01:12 +0000
Manifest next update: Mon 20 Oct 2025 12:01:12 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: zcIpcB1T74u9t18GLGIpq1F+8ScQzrdXRo2AJBcMt/M=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:5a:3f:94:52:fa:8e:61:a6:e3:31:73:6a:3e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Oct 19 12:01:12 2025 GMT
Not After : Oct 20 12:01:12 2025 GMT
Subject: CN=d1fa6a38e2cc7fbfdaeef81ffcc1fb6a6c38b47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f7:b0:78:88:d8:17:8a:5e:db:19:70:a4:cf:
6e:87:6c:ba:0e:0c:bd:a6:9b:83:cc:01:1b:7d:30:
55:17:42:e9:4d:51:7f:77:05:1f:18:89:ff:15:f8:
e6:b1:ea:4a:90:4c:16:f8:b0:37:61:3e:9e:f7:18:
7b:96:34:1c:33:90:4b:70:70:75:ee:ac:48:8d:8f:
34:42:de:c5:c6:9c:8b:26:24:c9:75:06:3f:7f:7e:
92:46:cd:5f:66:54:98:5c:df:ee:bf:9e:85:15:a8:
b6:00:86:d2:cb:13:da:ea:c3:4a:b7:d9:1b:e5:d5:
f1:11:0f:34:7e:89:02:6a:90:0c:56:77:0c:4d:62:
28:db:33:40:aa:ff:e6:e3:18:02:8b:2c:9d:a9:ed:
f1:0f:33:5c:a1:9e:6b:bc:db:d3:64:80:1e:d6:70:
34:ea:fe:76:da:5b:1e:6c:3a:a6:83:84:a2:af:26:
34:62:6e:b7:b4:88:19:76:3e:12:0d:d3:e8:c9:cc:
c7:32:69:fc:14:48:fc:72:9d:05:af:70:89:05:72:
8a:92:c5:e8:f5:43:75:b1:6b:cf:c0:d2:cd:42:d3:
b7:dc:88:e4:8d:ff:70:ab:fe:b6:0e:60:50:39:d9:
b4:ab:34:24:e5:de:fb:49:6d:33:24:23:30:36:9c:
24:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FA:6A:38:E2:CC:7F:BF:DA:EE:F8:1F:FC:C1:FB:6A:6C:38:B4:7C
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:4e:62:35:e0:c6:b0:41:0e:6d:b7:00:17:65:47:ba:83:16:
5c:71:74:d8:85:1f:54:0e:c2:09:62:6a:0a:b1:69:64:ba:d5:
f4:5a:c3:16:a4:84:6b:21:c9:c7:3e:17:7c:56:89:4f:ee:2c:
6a:2b:01:f3:cd:b5:1b:e6:13:96:9f:89:04:88:04:45:d8:ca:
eb:82:77:0b:e5:85:49:8e:f2:d5:cd:d0:23:b2:3b:b4:e7:70:
73:99:24:24:76:d9:0e:de:0b:0b:a6:0e:70:b3:d8:3c:f9:cb:
ae:6f:52:6f:26:c3:aa:8f:14:da:41:a6:73:b5:f6:4a:64:a7:
89:32:19:ca:06:05:de:b2:b4:e7:82:b4:0e:d4:83:98:5e:e1:
38:82:d5:7b:1f:80:aa:71:fb:5c:54:a6:c4:50:b1:02:71:46:
e1:41:5c:9b:0b:e5:77:1d:88:bc:e3:0f:f4:2c:11:ed:b2:ec:
f8:64:bc:db:3a:37:84:5f:cd:f0:77:a5:3a:15:be:40:a1:13:
b7:fb:53:a9:f5:fc:97:02:97:aa:51:76:f9:b4:26:cd:79:7c:
aa:01:82:76:e4:78:e4:c1:d8:85:66:b0:15:26:58:9e:5f:c2:
69:96:09:86:bb:86:a6:d1:ce:a9:73:6e:40:c8:2e:5a:21:c4:
2d:fa:96:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:24 2025 by rpki-client