Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
File: QsMDcZht9dVk7mcHRxe2agL_VxI.mft (raw, json)
Hash identifier: +F4kFwb9HbxSE851sY+agP7sHioBaS+kToycIpbxX8M=
Subject key identifier: F0:48:62:D2:64:54:80:4A:26:D2:E2:03:3C:0A:81:8A:41:49:75:1D
Authority key identifier: 42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
Certificate issuer: /CN=42c30371986df5d564ee67074717b66a02ff5712
Certificate serial: 019A4DAB28DF7EF8DA2903591CBCDA52FBBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
Manifest number: 15FD
Signing time: Tue 04 Nov 2025 07:00:53 +0000
Manifest this update: Tue 04 Nov 2025 07:00:53 +0000
Manifest next update: Wed 05 Nov 2025 07:00:53 +0000
Files and hashes: 1: QsMDcZht9dVk7mcHRxe2agL_VxI.crl (hash: OcL6ClxyPZw4Z9n1u0DOlcdU9TSO+4K+cCiT43VXl4E=)
2: hyIZ79qkrdHzxjA2nqjpWKRJazw.roa (hash: uN3TIUn6uJGV9mne7uVtH2Vshh9cYXISPUulyaHzlUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:28:df:7e:f8:da:29:03:59:1c:bc:da:52:fb:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c30371986df5d564ee67074717b66a02ff5712
Validity
Not Before: Nov 4 07:00:53 2025 GMT
Not After : Nov 5 07:00:53 2025 GMT
Subject: CN=f04862d26454804a26d2e2033c0a818a4149751d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a4:5f:27:a7:b4:96:3c:57:da:b4:bd:2b:d3:
5b:e5:c0:3f:82:db:22:bb:a3:35:fc:6f:e0:1e:b4:
0a:98:b6:53:eb:20:fb:60:c8:e4:bd:bf:e3:13:63:
3a:c5:94:e1:10:b6:e4:44:06:49:ae:e7:3e:d7:2a:
68:2e:4e:fe:1d:ee:70:29:d1:d6:88:ad:d6:5c:31:
29:f2:58:b3:ab:b2:e2:37:ee:99:b0:16:2c:29:f7:
88:0a:d9:04:36:d7:68:8a:5e:a4:84:58:e5:1c:a9:
53:2e:ae:02:11:68:a9:0e:09:81:ec:03:66:7c:40:
b1:99:74:e0:b6:fa:a3:c9:d4:5f:be:d4:10:68:eb:
ac:f8:8e:7a:cb:79:ee:e5:9e:5f:ae:8c:fb:68:8c:
6b:e0:83:09:1a:83:82:2a:9d:ef:39:f4:48:05:c7:
15:93:80:ca:c8:86:53:95:04:84:03:80:3b:17:70:
85:bc:a1:47:71:a2:d8:a4:18:bc:7f:34:86:9f:3e:
ef:78:3e:ad:ab:fb:4e:5a:02:7f:23:e6:b0:5e:30:
a1:06:a2:96:27:40:4c:39:ad:52:eb:0a:de:66:f1:
e8:66:8b:82:6a:e7:22:a3:bc:da:7c:4b:38:8e:10:
c4:f0:c5:1f:a3:29:9c:e9:8f:b6:09:19:aa:6e:c4:
50:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:48:62:D2:64:54:80:4A:26:D2:E2:03:3C:0A:81:8A:41:49:75:1D
X509v3 Authority Key Identifier:
keyid:42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:7a:06:a7:4c:57:fe:18:62:ea:ce:d7:30:01:22:f8:98:f6:
55:bc:a5:25:2b:ea:2d:18:eb:6a:34:45:32:dc:bc:5d:bb:f7:
8a:87:97:ae:63:f7:5b:86:32:9f:6e:b9:1d:2b:7f:f1:76:d1:
07:5f:cf:9f:f1:b1:25:ca:23:27:fd:6d:33:5e:d9:27:5e:97:
3a:63:31:d0:3f:43:61:4e:40:60:b0:7e:1d:64:e7:60:18:f6:
aa:38:b2:69:1d:54:fe:f7:39:1d:4f:83:f0:63:85:7a:ba:44:
c4:b9:46:8e:d4:83:09:2d:da:26:05:f0:62:0c:6a:93:c7:be:
55:4d:46:27:7f:ca:74:53:db:9d:28:d7:21:21:4b:67:c6:a6:
be:2e:cd:8a:39:94:18:cd:0d:4b:9b:6b:06:21:a8:8a:70:00:
00:5b:70:be:7c:28:5e:d0:5d:03:ce:2a:9f:79:b4:73:e3:4e:
22:2e:18:42:a6:67:b7:84:ac:03:c8:eb:bd:38:a4:0c:24:31:
96:df:02:52:1d:75:d7:77:51:74:2e:b5:57:05:a0:94:a1:b0:
7b:9a:a0:92:cc:eb:c5:4b:c4:8f:39:45:69:ab:78:19:9b:b9:
6b:84:d3:33:96:4b:0b:ac:c0:e7:e0:ae:bc:ca:43:8a:fb:7a:
47:27:61:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:27:37 2025 by rpki-client