Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
File: QEPj9wJFibliregc9EVjBvTTXmg.mft (raw, json)
Hash identifier: juPzV07Cdp2bhKV9YR7YnHSNgE/VY1M3iUml5X3glv8=
Subject key identifier: 84:43:FA:C7:DB:19:47:BB:6E:32:30:44:41:64:85:F0:E4:C9:B1:A3
Authority key identifier: 40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
Certificate issuer: /CN=4043e3f7024589b962ade81cf4456306f4d35e68
Certificate serial: 019A4F61FF80031E10AA591D41C170273C00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
Manifest number: 13F4
Signing time: Tue 04 Nov 2025 15:00:13 +0000
Manifest this update: Tue 04 Nov 2025 15:00:13 +0000
Manifest next update: Wed 05 Nov 2025 15:00:13 +0000
Files and hashes: 1: 7347cFurkIFVNRTShqXtdTwOLOA.roa (hash: 81GL5pa945jQA5j8/X64fsQyRv+u1Eyr3yERMPF2bKE=)
2: QEPj9wJFibliregc9EVjBvTTXmg.crl (hash: YGIdT9PC5TpTD+J1Cd1j/B/ZnJZd/gxgC9/WzpZg5kc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:61:ff:80:03:1e:10:aa:59:1d:41:c1:70:27:3c:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4043e3f7024589b962ade81cf4456306f4d35e68
Validity
Not Before: Nov 4 15:00:13 2025 GMT
Not After : Nov 5 15:00:13 2025 GMT
Subject: CN=8443fac7db1947bb6e323044416485f0e4c9b1a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:71:fd:d7:3f:2d:02:f1:35:e1:74:a7:59:a1:
b7:d5:e3:70:bf:e7:78:fa:62:f3:e6:31:a1:eb:9f:
81:eb:05:96:ec:63:03:65:0b:34:ea:20:0f:ab:65:
18:e7:99:dd:7a:da:50:c7:db:96:1f:54:9e:d2:86:
4a:e2:2f:23:3e:8d:c3:8a:b3:04:ac:38:fc:64:17:
dd:b1:b2:af:d4:67:86:e0:6a:a0:24:4d:f5:4c:1e:
a7:c9:08:ad:3a:6d:5d:a0:a1:78:a0:3a:0b:e2:a5:
93:d4:36:a2:99:fa:a6:50:97:d3:26:a9:c8:f3:8e:
61:b2:f4:44:a3:89:38:fb:e8:f2:0b:1e:24:11:1c:
57:a7:5f:bb:03:47:0c:d5:71:3a:98:e9:e9:ee:c3:
1f:91:41:78:42:df:0b:cc:d6:27:32:f8:d4:33:d0:
29:77:47:8d:29:05:fd:41:6c:5b:8c:3a:58:70:8e:
c1:e1:e7:f7:d6:93:80:e8:dd:5f:5e:57:2a:a6:a6:
30:ec:30:ab:64:7d:1f:87:38:75:6d:6f:fd:e1:b7:
f1:1f:44:39:13:4d:96:dd:83:ce:b1:74:ce:b6:a0:
9e:a8:e1:57:81:69:0b:6b:38:27:6e:24:ad:5a:d1:
b7:2c:50:9c:76:86:ef:08:45:ef:a8:90:01:47:0f:
42:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:43:FA:C7:DB:19:47:BB:6E:32:30:44:41:64:85:F0:E4:C9:B1:A3
X509v3 Authority Key Identifier:
keyid:40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:6d:ca:bc:e8:ff:e2:27:14:58:db:12:7a:fa:e6:32:e3:88:
63:44:8d:21:f2:72:e8:1d:11:b9:2c:80:25:fd:d1:b6:9c:04:
43:84:e0:e4:02:6a:20:4d:52:3b:d1:4a:c3:cb:01:d8:0b:7d:
88:33:dd:03:e0:e2:df:d4:61:a9:9e:99:46:28:73:2d:b1:bd:
22:34:a1:24:6d:9e:e7:5d:c7:e1:dc:8d:a7:db:eb:36:0e:fd:
70:f2:fd:31:5f:06:4b:26:01:d0:96:c3:79:82:d5:2e:e0:97:
8c:9d:89:15:16:65:0c:21:19:94:4f:db:e6:3b:d0:fb:70:3a:
02:41:3e:81:72:69:73:84:ff:9c:a6:f3:73:f7:4d:76:a0:e2:
3a:8a:bf:e3:f8:ac:18:ab:56:d8:43:c1:e1:41:5d:26:fd:34:
9b:fb:6f:5c:87:b1:d0:eb:82:12:dc:c0:95:52:4f:16:c5:2a:
cf:84:a2:98:b8:24:b5:e0:52:7b:ab:c7:dc:e5:12:b2:87:b7:
f7:cb:93:e7:29:6f:9f:c3:3c:19:92:be:8d:b6:ce:49:24:18:
1f:9e:b0:2f:b4:f4:a7:06:dc:7f:29:48:44:19:8b:51:2d:13:
e5:92:2d:4d:3d:d3:54:83:2b:e1:f4:2c:9e:02:3a:f9:32:7d:
12:1d:3c:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:25 2025 by rpki-client