Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
File: QWkOI5DpC72N5AIYrSIeCTvM7L8.mft (raw, json)
Hash identifier: A1fppmTcjWcCb4Dhb5/90VM3X1Y9+srUF/mbXp99oQo=
Subject key identifier: 4E:9B:7A:FA:8E:97:28:FD:2B:F2:8C:26:C1:DD:B4:4D:C3:DB:5A:56
Authority key identifier: 41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF
Certificate issuer: /CN=41690e2390e90bbd8de40218ad221e093bccecbf
Certificate serial: 019A4F2B172E65076463E7868B5E57A03D0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 14:00:15 +0000
Manifest this update: Tue 04 Nov 2025 14:00:15 +0000
Manifest next update: Wed 05 Nov 2025 14:00:15 +0000
Files and hashes: 1: QWkOI5DpC72N5AIYrSIeCTvM7L8.crl (hash: sdmxQirE/q+eaB5GP2XbrbE8EeS3pTP7RmbXbaZf3BQ=)
2: nsNEVxRNRAqK4M0HqDeGc01kd4k.roa (hash: u9cSwFwr5XiNLEjBeMMlXHN1pLGlDX3Y3bL8f/eEp3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:17:2e:65:07:64:63:e7:86:8b:5e:57:a0:3d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41690e2390e90bbd8de40218ad221e093bccecbf
Validity
Not Before: Nov 4 14:00:15 2025 GMT
Not After : Nov 5 14:00:15 2025 GMT
Subject: CN=4e9b7afa8e9728fd2bf28c26c1ddb44dc3db5a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ca:27:01:8c:71:fa:c8:68:f8:89:7b:b8:f8:
2d:f4:9e:c8:f3:9b:a3:7a:cf:f3:9c:05:4f:d2:19:
6a:43:fc:dc:e1:15:00:a8:09:c0:58:07:44:ce:34:
ef:05:6a:06:06:2e:e7:d1:35:85:30:38:37:f5:cb:
05:c0:7e:b7:93:9d:c0:90:9c:68:01:bc:14:17:8b:
cd:96:c5:f6:f1:77:71:b8:61:77:14:cc:1a:05:eb:
c9:41:f9:94:fc:50:b7:42:66:5c:fb:f6:9f:48:ec:
23:37:d5:67:ca:69:cf:9f:40:9d:6a:88:7d:c7:b5:
9f:e0:4e:82:04:5c:29:d4:46:81:88:4a:6f:a4:44:
4c:31:5d:f3:c4:c4:61:4a:03:d3:49:d2:d8:d6:47:
26:a9:7f:af:b3:3a:f8:dc:18:54:f9:a7:1d:08:62:
ef:07:96:48:21:8a:5c:2d:5e:3e:ab:ad:e7:82:2f:
23:da:f5:6a:65:3d:1c:e5:4e:80:0e:89:68:f6:dc:
9e:ae:2e:ac:78:27:08:bd:af:8e:7d:2e:96:5c:45:
60:ee:c3:b3:05:27:7f:15:22:d8:1b:01:4d:bb:f0:
9d:2e:ed:d7:89:fe:78:db:88:d4:62:b7:5a:ab:94:
ff:68:5f:c7:5c:49:2a:5c:45:2c:63:27:bb:95:b9:
d2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9B:7A:FA:8E:97:28:FD:2B:F2:8C:26:C1:DD:B4:4D:C3:DB:5A:56
X509v3 Authority Key Identifier:
keyid:41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:33:a7:fe:72:bb:f7:fd:d1:e7:58:02:73:a2:7d:6d:31:70:
77:21:53:71:e6:c6:15:11:a0:46:e0:f9:14:e8:c0:2f:54:5b:
d1:c2:93:6a:ff:f8:32:8d:7b:a0:e7:9d:c1:b7:91:0f:80:3a:
66:07:ff:7e:fc:c7:d9:b4:43:94:7c:e2:36:ed:e4:2d:65:78:
97:a4:b5:06:3f:6e:bf:41:d3:b2:0f:a4:12:89:76:08:8c:cc:
3c:08:7d:f5:59:3a:fd:a8:dd:96:07:ab:4f:6e:b4:81:6d:fb:
70:c8:0b:e1:3f:c6:53:20:e8:14:db:0f:12:61:5e:29:28:c0:
d5:02:bc:e8:7c:f4:be:43:05:0a:be:f8:7f:0e:8f:6d:88:4b:
26:7d:f3:a2:94:a8:aa:68:c3:f2:c9:0c:63:3e:97:6c:47:5a:
c0:0e:85:94:b3:9f:9c:24:c3:a7:b8:59:18:e2:4c:33:6a:b4:
cf:5d:0c:68:63:6d:e4:8a:0d:f4:27:c7:d3:ec:99:33:93:e8:
c7:ac:dc:86:49:8a:bd:11:62:15:25:85:ba:3c:8a:29:e5:b0:
53:c6:b3:99:b0:b9:06:89:20:72:05:67:f2:12:d0:85:89:25:
5a:b7:3c:de:f6:8f:e8:59:58:24:ef:a2:84:36:84:23:4a:d4:
74:9c:d5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:18:37 2025 by rpki-client