Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: OoHmW4wmanmIUC/r/PSoOCZvI9dpfgfr71PNoQ2LLKc=
Subject key identifier: 4C:6E:DD:2C:26:76:59:E5:FF:B3:54:2A:32:F6:F1:BF:79:E0:6E:41
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 019A51F57165686B274A7AF5773A774EFFE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 170C
Signing time: Wed 05 Nov 2025 03:00:31 +0000
Manifest this update: Wed 05 Nov 2025 03:00:31 +0000
Manifest next update: Thu 06 Nov 2025 03:00:31 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: 0p/87UXDnzshyM9MJBHREHN6/9DFIFa+Hbn3oeMyJfI=)
2: zxt5ioQXS4YKJLP4ilCQM5v8g2Y.roa (hash: RY5SWWwhf3VR6uGt8AADVTrl85kwmlR4e1dP9tOTtrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:71:65:68:6b:27:4a:7a:f5:77:3a:77:4e:ff:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Nov 5 03:00:31 2025 GMT
Not After : Nov 6 03:00:31 2025 GMT
Subject: CN=4c6edd2c267659e5ffb3542a32f6f1bf79e06e41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3c:c3:f7:56:22:58:18:cd:13:f0:91:97:e4:
79:30:f4:d9:fb:8b:64:fe:71:eb:ae:5c:f9:9e:04:
a6:d6:a6:e7:33:d3:8d:a3:4e:1a:6d:82:89:42:3b:
83:be:6f:9b:61:ee:53:3a:fb:ff:a6:ba:31:60:6b:
47:48:20:7b:86:8a:0b:ef:99:df:c9:64:2f:00:98:
ae:7c:73:bf:75:e3:75:a7:a8:2c:ee:7f:86:53:98:
b4:27:a8:84:e1:75:33:5f:a1:b1:de:80:2c:a9:d2:
0a:5a:a4:e2:66:27:b6:1a:5c:54:d2:62:3c:e2:4d:
ab:81:a9:36:2b:72:99:00:fd:eb:be:d4:3e:6b:af:
9b:4a:b3:24:f6:ae:67:30:7f:3e:32:27:44:1c:cc:
9f:04:2c:a3:da:52:d3:c6:d5:6d:9e:8c:7b:4a:3b:
73:83:59:4d:72:07:74:b4:7d:1c:38:c2:e1:61:9e:
ab:57:c1:04:32:a3:d7:ae:d7:50:7f:ee:df:f2:62:
fb:59:55:90:b4:d2:48:17:f7:51:3b:7c:43:a8:06:
e4:21:32:e0:33:48:fd:fd:92:34:80:07:66:41:a0:
63:c0:20:3c:aa:79:8d:ac:ea:82:2d:0e:e2:d8:e9:
7e:15:13:d4:75:0d:58:11:fb:1e:93:e5:57:1e:c3:
5d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:6E:DD:2C:26:76:59:E5:FF:B3:54:2A:32:F6:F1:BF:79:E0:6E:41
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:9d:43:c3:bf:3c:bd:63:9a:bb:8f:3a:55:0c:05:83:95:c5:
69:6c:ec:b6:41:89:3d:de:e7:f4:d6:70:85:e9:28:d7:8f:57:
68:7c:7b:41:35:81:ab:1e:bf:fd:a8:f7:05:f0:74:73:68:70:
87:b5:32:06:dc:e9:1b:9d:4d:4c:19:17:0f:d1:e4:b1:d5:73:
f8:a7:8f:8d:22:5c:32:63:17:33:f7:40:0e:c7:77:2e:b8:2a:
98:50:e5:db:a3:17:ff:d6:d0:93:0a:e3:5d:c2:18:0c:4c:d5:
25:7f:35:45:28:7b:5a:b2:42:8a:99:ce:83:be:81:6c:ee:95:
e8:17:c6:0b:71:11:80:9f:6c:3e:cb:08:f8:5f:3f:c0:3f:9c:
4f:e3:94:e5:27:89:4b:c5:1e:46:e2:f7:dc:3d:36:ce:2f:98:
9b:eb:51:7f:22:c2:29:c8:1b:bd:42:c3:0e:0a:51:1e:11:39:
4a:38:ac:37:f2:45:ac:b6:f7:62:0d:26:f2:ce:ad:ec:af:70:
25:04:fa:31:6f:38:97:0f:7f:d5:d7:70:61:84:99:aa:63:07:
95:78:1f:4f:a4:bb:b6:3a:d0:fc:82:0c:c8:f7:08:24:30:38:
e9:8a:5e:9c:39:ec:5d:4f:67:96:29:df:ae:70:3c:af:63:d1:
60:38:e7:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:08:46 2025 by rpki-client