Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
File: QpBWwzjRbJLN_aHlXQk2givFDNI.mft (raw, json)
Hash identifier: LV/BcIKoI1pqmRwXAKDxrgF3g/RHQzgqdoQQHD/lXaU=
Subject key identifier: 9B:24:B1:E4:45:2F:1B:7E:3B:8D:76:10:3F:26:D7:D2:F0:A8:56:BF
Authority key identifier: 42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2
Certificate issuer: /CN=429056c338d16c92cdfda1e55d0936822bc50cd2
Certificate serial: 019A518763AA633D0B616D7A4C060DBC004E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
Manifest number: 05A3
Signing time: Wed 05 Nov 2025 01:00:18 +0000
Manifest this update: Wed 05 Nov 2025 01:00:18 +0000
Manifest next update: Thu 06 Nov 2025 01:00:18 +0000
Files and hashes: 1: QpBWwzjRbJLN_aHlXQk2givFDNI.crl (hash: A0QR5JiPu1Pc5VNPlah3MB8IRMlP5yG4Fb3BfmqEbsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:63:aa:63:3d:0b:61:6d:7a:4c:06:0d:bc:00:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429056c338d16c92cdfda1e55d0936822bc50cd2
Validity
Not Before: Nov 5 01:00:18 2025 GMT
Not After : Nov 6 01:00:18 2025 GMT
Subject: CN=9b24b1e4452f1b7e3b8d76103f26d7d2f0a856bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9d:8b:de:bf:34:8e:b7:1c:a1:d7:c4:e0:ed:
77:d5:56:55:89:17:6b:f4:43:bd:28:a7:22:9d:ac:
63:f4:c1:aa:17:13:79:c0:c1:3b:da:e1:1b:3f:b8:
ed:be:ae:16:be:ef:ec:32:49:ac:6c:7c:41:a7:57:
67:50:75:4e:ac:f5:b3:4f:75:91:eb:30:91:54:20:
ab:c3:ca:65:e0:95:b5:f3:89:87:e0:4f:ad:3c:97:
e0:73:47:6d:00:d6:87:cf:5d:9f:d9:e6:1b:a0:68:
3f:96:f2:86:59:6b:a2:d4:b4:e2:15:b2:a1:35:8d:
ea:b6:68:26:57:71:49:06:ab:04:aa:79:c4:11:40:
47:96:4a:80:b1:9c:1a:dc:b4:51:41:d4:aa:a8:53:
68:ce:25:83:e4:6e:e2:99:e9:19:e3:a5:a4:25:e7:
12:2a:94:be:6c:a3:fb:38:02:ec:60:bd:d2:ae:ff:
d8:68:dd:ba:d9:87:19:19:dd:76:75:3d:96:57:16:
cb:d9:1e:05:ae:f9:8a:30:11:b2:f7:ae:64:72:af:
ea:70:4d:f3:ec:28:c7:27:09:34:ac:22:8a:af:44:
33:58:6b:81:d4:88:c0:d2:91:44:6e:4a:76:2d:42:
a8:06:97:dc:19:c4:7d:98:69:4d:65:3e:4a:e6:de:
55:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:24:B1:E4:45:2F:1B:7E:3B:8D:76:10:3F:26:D7:D2:F0:A8:56:BF
X509v3 Authority Key Identifier:
keyid:42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:15:c4:20:4d:a1:af:00:0e:8e:b5:ac:a8:98:cf:dd:65:fa:
c7:52:5b:f9:69:f6:5f:23:08:b2:6d:8b:2c:ea:47:31:aa:4d:
f5:3a:44:87:8b:37:e7:f4:c1:45:bc:32:14:f8:03:5a:4c:7f:
6f:0a:2e:8d:5c:22:43:8c:1f:97:81:8d:e9:20:fa:f9:1a:7c:
e8:3f:bd:18:a5:e4:e7:64:56:a5:d3:c2:1b:4e:8c:90:c8:98:
1d:9e:be:d0:25:9a:2c:83:bc:81:e1:99:5f:b9:9b:35:78:69:
0e:2d:9f:89:a0:3a:cc:54:65:ed:df:db:f0:d0:ab:da:4e:d9:
d8:d3:67:eb:5f:28:b4:1a:4c:14:df:b3:f4:c6:08:d7:bd:a6:
49:df:75:0e:b8:d8:81:4d:9c:1f:42:7f:be:33:b3:84:c8:2a:
fd:c3:54:21:cc:2a:57:19:d7:6d:2e:57:7e:9d:02:70:28:3d:
73:7a:00:42:9f:ec:14:94:1a:8f:5f:2b:ce:43:26:c7:3e:49:
d7:bb:fb:9d:8d:63:af:3c:dd:62:e0:ce:e4:94:ab:82:6c:ea:
77:66:ec:69:15:39:17:3d:e8:3a:34:b6:cb:13:7f:34:e0:e9:
64:0e:c6:b0:50:33:9b:1a:a9:e0:f4:b4:f4:48:ca:96:3c:d8:
a7:b1:df:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:15:47 2025 by rpki-client