Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: Pnuz5YMbxNMQeZzcGtUGhiVVLqXHyCB3abEMk6eY5Z8=
Subject key identifier: 54:44:F5:44:7B:DE:11:D7:D2:32:D1:04:35:8F:64:E9:EF:AB:F6:F2
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 019A4EF4B7DF5998B03BAB165700ED8EF6A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0E2E
Signing time: Tue 04 Nov 2025 13:00:51 +0000
Manifest this update: Tue 04 Nov 2025 13:00:51 +0000
Manifest next update: Wed 05 Nov 2025 13:00:51 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: rAeJmD6NugXO+2AvGkvAuqQbPBi98TLbX3iXP6TYljU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:b7:df:59:98:b0:3b:ab:16:57:00:ed:8e:f6:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Nov 4 13:00:51 2025 GMT
Not After : Nov 5 13:00:51 2025 GMT
Subject: CN=5444f5447bde11d7d232d104358f64e9efabf6f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:42:2d:c0:18:68:32:fe:03:7b:1d:a0:6b:65:
49:87:44:dc:c7:25:ec:16:33:32:8e:e8:44:98:94:
dd:a4:de:90:54:b7:11:22:90:17:37:05:29:44:43:
78:ab:62:e9:a7:62:5a:04:d4:ec:4e:69:e4:26:60:
6b:2c:80:ed:50:19:f3:c2:db:06:f6:48:1f:cb:95:
dd:38:ed:1f:c8:17:4e:74:78:f0:9f:01:0b:e7:3a:
90:85:d6:85:34:c8:4d:95:f4:0c:3b:13:57:64:24:
78:82:53:8e:b2:1c:68:a3:b1:dc:bf:0e:d7:db:8c:
29:5e:a0:95:3a:b0:82:c4:ad:1f:45:fe:d5:74:06:
40:87:4f:29:82:fb:2b:30:36:c7:54:95:24:fc:73:
95:bd:c4:39:7d:7e:20:2e:04:bc:1f:3d:e5:e6:19:
1e:bd:97:3b:e5:78:9b:2d:1d:8a:a4:90:5e:66:85:
ca:36:50:96:31:0f:07:50:55:4c:f8:ba:e2:bc:bc:
28:e3:df:17:f6:27:8e:22:fd:b7:eb:53:4c:92:78:
6a:d3:15:38:6f:99:34:4d:c7:85:7b:5f:b8:05:07:
a0:9a:a0:a5:b5:7b:8e:0a:1a:86:d0:c0:4d:e6:57:
4f:09:56:f4:59:6d:41:c7:7d:7c:00:0d:29:7c:72:
e5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:44:F5:44:7B:DE:11:D7:D2:32:D1:04:35:8F:64:E9:EF:AB:F6:F2
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:38:53:c6:27:73:6c:91:03:cc:09:2e:af:91:59:f6:96:dd:
b3:0d:fa:41:da:33:5a:97:c8:32:5c:45:5e:70:82:47:e6:ca:
83:f2:3b:c7:c7:e4:44:76:c2:b9:ac:3b:d2:b5:b5:a7:d3:99:
0b:2e:0b:0b:d5:0e:8d:c3:45:fe:ff:47:d4:df:87:16:7d:aa:
93:84:9a:19:0c:49:af:b5:d9:79:11:8e:c3:2f:93:72:c4:e3:
c4:9b:b7:f7:1e:93:8e:a1:30:05:95:af:5a:b9:ff:00:94:38:
92:f3:6d:17:54:77:c8:6d:f1:a0:75:f1:bd:03:3e:be:a2:53:
41:ac:80:b1:11:c4:54:b8:8d:ec:fc:58:9a:63:3c:bb:e8:bc:
12:06:7d:09:b4:68:56:4f:74:9d:7a:c8:7a:bb:fa:32:d8:64:
4b:bc:2a:65:d4:00:be:5d:01:62:3c:2f:05:0d:4d:07:68:ec:
e8:30:ab:1b:04:3c:74:3e:3e:99:d6:79:16:14:9e:90:97:2c:
3f:57:7e:f6:56:b4:1d:69:df:c4:a3:2d:0c:5f:2d:ff:31:37:
00:fd:e5:c7:41:a8:80:9f:33:51:ce:30:ce:10:db:e9:64:01:
fd:68:0f:69:dd:f0:51:13:a7:51:15:89:d2:f9:a0:c7:95:4d:
39:e8:e1:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:01:27 2025 by rpki-client