Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: CuzYtClW0E22M8V5vCHZZmmZlqvUxJHcLUDnRt6FQEc=
Subject key identifier: 6F:D1:EB:7A:4A:7F:55:C5:4E:F3:1A:A6:A1:55:84:90:68:2C:4F:85
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 019A4EF5B2F2261DD2B2770115EE5AE1F68E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 10F3
Signing time: Tue 04 Nov 2025 13:01:56 +0000
Manifest this update: Tue 04 Nov 2025 13:01:56 +0000
Manifest next update: Wed 05 Nov 2025 13:01:56 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: anYrRayPixiBO0dyI7U2CBd8dvHx6Ru+dN6Lq2hBieQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:b2:f2:26:1d:d2:b2:77:01:15:ee:5a:e1:f6:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Nov 4 13:01:56 2025 GMT
Not After : Nov 5 13:01:56 2025 GMT
Subject: CN=6fd1eb7a4a7f55c54ef31aa6a1558490682c4f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b8:a7:c8:66:4c:bc:a7:ea:3b:a0:0a:8a:9f:
34:d5:7a:fc:5f:29:4d:89:e9:c1:15:b6:14:3f:be:
96:c1:4c:ae:ca:2e:73:da:a2:0d:ac:98:ed:c0:bf:
b3:69:b7:f2:c5:9a:4f:60:89:e3:e4:aa:89:64:eb:
87:71:36:0f:12:0d:6f:3f:72:4d:f7:1a:d6:26:d5:
9f:47:c9:a8:5f:d7:31:3b:78:21:3f:0b:27:90:42:
8c:5d:15:49:61:4d:61:6f:82:e8:bf:e4:92:9d:d8:
6f:25:79:a3:df:06:a5:22:c5:65:ea:a8:18:c8:0f:
8f:f9:99:a4:67:91:d7:24:f0:bf:92:67:4a:64:61:
da:33:23:1c:05:59:65:bc:5f:a7:bc:b5:49:5a:3c:
16:93:f7:71:b1:1d:7b:1a:55:d2:f2:39:97:b4:c7:
b9:ad:bc:9c:2a:b9:48:e2:ca:3f:3c:0f:f4:81:81:
52:4d:0a:c3:ca:d9:f7:23:6a:b9:ab:0a:bb:89:03:
ab:c4:2a:47:51:4b:83:c8:cf:38:a4:0c:11:16:ba:
93:01:f6:ae:64:34:20:37:9c:40:be:3f:ea:46:16:
55:5a:da:a5:32:76:c0:fc:f3:20:b6:c6:7e:3e:94:
d3:17:e9:1d:7f:98:72:5a:d8:65:f1:85:3b:22:81:
bd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D1:EB:7A:4A:7F:55:C5:4E:F3:1A:A6:A1:55:84:90:68:2C:4F:85
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:f0:86:f5:08:a7:c0:b1:e8:2c:fd:2c:7b:d1:bb:9b:75:8a:
de:fa:5e:11:7d:15:9d:e8:74:92:75:3d:ee:0f:a5:99:8f:06:
55:e7:a4:10:9a:64:f5:9d:eb:ea:77:f1:e8:92:f1:38:d5:fa:
a7:97:33:19:8d:6a:97:9d:68:7c:01:76:87:5d:9e:6c:ff:58:
3d:10:5c:66:c2:fd:50:1b:4b:75:4b:fd:0c:10:69:2d:dc:3a:
77:d7:eb:c5:a7:1d:73:c8:d5:5a:d0:4e:34:f4:77:83:6c:a2:
81:0a:0b:51:3f:54:18:50:08:8f:36:ab:3a:5c:e1:31:9f:c1:
74:09:4f:15:c1:b9:fb:95:a9:eb:12:15:97:0d:d3:2f:1f:5e:
d0:39:ac:b4:39:51:55:9d:9f:99:3a:fb:f6:ee:da:1a:38:7f:
f8:63:7f:d1:c1:f6:39:7d:d3:e1:1b:a4:ad:3d:2c:3b:49:d2:
9e:8e:f6:b4:39:d5:87:86:8f:07:df:a6:92:f9:85:ee:d7:d8:
c7:57:54:10:a6:73:9d:e1:92:c9:6b:7f:38:58:22:49:9b:44:
63:c0:cd:7b:b4:10:72:20:6c:ca:54:5c:4d:1e:2a:4b:d1:73:
f6:5c:a5:e9:06:d2:cc:63:19:11:cc:19:62:57:93:ba:76:0f:
89:0a:73:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:16:31 2025 by rpki-client