Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
File: QdD5FclU2DtKG_GEz7wTjEftpR4.mft (raw, json)
Hash identifier: HV5MxrHbPZGEEkBcOXoenyKJ60FuvbFACYrcCDbDUrk=
Subject key identifier: 6B:79:6C:2A:6D:AC:48:E6:97:57:39:5D:A1:9A:A4:4C:C3:AF:E1:05
Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Certificate serial: 019A4EF5AE990679E8D579E0DAA335BEB860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
Manifest number: 139F
Signing time: Tue 04 Nov 2025 13:01:54 +0000
Manifest this update: Tue 04 Nov 2025 13:01:54 +0000
Manifest next update: Wed 05 Nov 2025 13:01:54 +0000
Files and hashes: 1: QdD5FclU2DtKG_GEz7wTjEftpR4.crl (hash: ZU7PvZTpSJ0mbI6AF1OvEC0wBaEfDWZXGK7CvFxIckg=)
2: f6uKeUIzMA-uVptKc1ueYhFBFxM.roa (hash: yRxjbOfn/yIPjsEZSwuKIczmA3RcTEjtjojH+74JQXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:ae:99:06:79:e8:d5:79:e0:da:a3:35:be:b8:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Validity
Not Before: Nov 4 13:01:54 2025 GMT
Not After : Nov 5 13:01:54 2025 GMT
Subject: CN=6b796c2a6dac48e69757395da19aa44cc3afe105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:49:87:c7:22:05:70:d1:ed:f6:6b:9c:2a:69:
d0:dd:5e:55:a9:f9:e7:11:82:cc:3a:bf:ef:48:54:
37:99:26:66:f1:e2:51:25:9c:c9:48:ad:7f:d0:55:
9d:ca:e2:7f:15:83:03:45:c2:72:bf:49:82:ab:6c:
f0:a5:66:84:59:c1:c7:b8:8c:25:d7:0a:b1:89:52:
70:80:fd:54:fe:55:6a:f5:62:7f:24:3e:b8:56:e7:
33:21:92:10:06:29:69:4a:46:06:95:e1:00:66:c0:
c9:19:f1:e9:5d:3a:9b:ae:63:36:a3:1d:fd:97:76:
fc:78:bc:79:2f:f7:d5:89:79:d4:7d:2d:a3:16:81:
d2:15:12:01:90:d5:01:7f:6e:4c:19:d1:45:85:13:
f7:2e:ab:f2:d0:62:b7:04:67:7c:88:eb:c5:54:61:
08:65:f6:6a:6e:21:f7:1f:25:51:c6:0e:3f:76:5e:
a8:54:36:2d:bf:75:dc:19:33:16:e8:03:ed:19:f2:
35:79:10:fc:8f:d1:86:36:17:b8:e4:43:14:c3:f3:
1f:c9:fc:93:3e:d9:f5:03:c9:5d:22:21:15:83:49:
86:94:29:99:5e:8f:4c:19:a7:5f:a5:aa:0b:1c:e0:
d0:db:c6:5a:c6:58:38:ef:5f:5e:42:e0:f7:d7:0f:
f4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:79:6C:2A:6D:AC:48:E6:97:57:39:5D:A1:9A:A4:4C:C3:AF:E1:05
X509v3 Authority Key Identifier:
keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:9f:34:7f:6b:27:d3:92:7b:95:8f:aa:94:02:27:79:99:c5:
41:59:9c:0f:b6:b9:14:71:4a:67:3e:c3:04:8f:5f:8b:c1:de:
1d:71:5f:21:95:92:9b:ee:9e:74:11:4d:b3:c1:d8:bc:69:92:
87:57:40:cd:98:74:0e:8a:5b:1d:36:c7:39:73:bc:57:41:54:
3a:cb:00:9c:e0:b8:0c:db:79:00:81:99:9f:6f:57:fc:94:a5:
75:88:a7:64:84:d9:a0:9d:1a:87:0a:c8:18:6d:df:12:65:85:
79:68:c8:72:b5:5f:77:97:5f:cd:c9:72:6f:4e:78:d3:07:37:
f8:64:a2:2b:f5:10:0e:91:91:0c:bb:9d:42:e5:f0:a2:c5:e9:
4c:8e:e2:20:3b:ea:fd:d2:fa:2c:4b:bc:8c:61:60:b1:0c:79:
da:06:69:d3:70:96:9e:df:24:c7:c8:27:d9:03:8b:b9:7d:46:
a7:43:5b:3d:4d:47:82:dc:fa:a8:a8:ea:82:90:87:93:83:fa:
fb:7b:d6:b6:59:c2:3a:d5:43:9b:3d:b3:f4:c4:fc:54:dc:d2:
a9:40:75:9e:15:f9:ff:b3:16:b2:e1:aa:49:7d:7b:a7:7a:8d:
fe:85:4b:cc:c2:73:11:4c:ab:f5:69:29:c2:76:d6:c3:91:5b:
b3:aa:ca:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:52:55 2025 by rpki-client