Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: f22v09VfDP/xhYh5Y/2DyrXvpjuBE+x02N2FWeAyKAw=
Subject key identifier: 24:46:34:43:A1:2F:4A:57:54:FD:8C:5F:8B:11:28:15:0D:F7:14:03
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 019A4E4FF6683B90436E8CF70F184C5BCDE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1714
Signing time: Tue 04 Nov 2025 10:00:54 +0000
Manifest this update: Tue 04 Nov 2025 10:00:54 +0000
Manifest next update: Wed 05 Nov 2025 10:00:54 +0000
Files and hashes: 1: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: uyYiZGue+WClcNuBDdx3vi0Xa8SSF3LWTxB/Rxa4a1o=)
2: YqDxs-OvuVQHWefybCF_NO3X2LQ.roa (hash: T8m4+98qGxOiuFkFF1AHlHH+ajIR7QgNJlfbjXDXJ94=)
3: tc90ntWAEd82qK0_CS7-3-Q6s0Y.roa (hash: 0mZz7plH7Kh9tzG5C0loWt280MVfKoBtrgSHIPS0Ry4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:f6:68:3b:90:43:6e:8c:f7:0f:18:4c:5b:cd:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Nov 4 10:00:54 2025 GMT
Not After : Nov 5 10:00:54 2025 GMT
Subject: CN=24463443a12f4a5754fd8c5f8b1128150df71403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:96:85:b8:3e:d4:cd:7d:76:ff:a4:a6:b0:a1:
3b:75:b8:e7:ce:ba:7b:a5:3e:8d:5d:6e:ca:07:44:
fd:1b:58:f3:41:8a:67:81:82:04:d5:85:bd:f1:0e:
6a:7e:48:e1:89:1c:ac:6a:1c:0a:68:ad:29:98:27:
a9:ca:f7:80:9b:9d:40:26:fd:2b:b6:53:cc:fc:b8:
64:7c:a8:b3:1c:1b:3f:9a:75:6c:57:ff:ce:fe:7f:
84:ce:b0:cb:fa:e9:b2:a6:59:c4:99:4f:7e:84:92:
a7:2a:1f:a7:80:e4:73:c2:24:e5:eb:82:83:1b:14:
f6:0e:8a:d5:36:4a:86:19:b0:be:57:c1:27:3b:8c:
fa:1d:cd:1c:fb:ba:74:15:29:f0:9c:07:82:1f:2c:
d1:95:96:66:15:93:73:40:1b:2a:68:39:1e:5c:42:
57:f4:a1:ee:5b:f5:2c:34:90:9d:14:cb:b7:08:ad:
88:98:58:d6:2a:5e:cd:1d:ba:8d:b6:39:6c:04:ab:
38:f4:6b:96:5f:c9:d4:7c:2f:0c:cf:d9:a2:53:31:
5f:a6:74:30:3d:19:4e:87:f6:6a:10:a1:8a:16:e9:
db:09:30:d0:4e:db:b6:63:4f:62:07:93:4d:5c:9e:
f6:77:9f:dd:56:ea:f4:05:03:07:ba:5a:8a:a5:79:
84:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:46:34:43:A1:2F:4A:57:54:FD:8C:5F:8B:11:28:15:0D:F7:14:03
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:a6:0c:cd:77:48:8c:1e:ab:29:f8:8e:38:70:5d:3c:b9:14:
14:3e:8d:bd:81:e1:3a:6e:53:34:6f:8a:2c:70:6b:05:ac:ea:
3d:e1:ec:61:76:0e:69:ce:f5:01:d8:b8:5d:99:b2:50:44:ff:
4b:51:67:0e:8a:ed:9f:10:3b:dd:ef:e1:52:54:bd:d1:d3:ae:
e5:f7:e9:e9:bb:c8:12:30:78:34:05:29:2d:76:e5:b7:e8:04:
42:07:67:c0:97:c8:b0:8f:77:da:08:f2:3a:ad:08:e5:4f:47:
6c:c5:ab:29:19:6f:c9:62:82:44:dd:65:10:4f:67:84:ba:3c:
23:c0:8d:ad:54:ef:97:96:ea:fb:43:72:82:bb:04:48:1a:b6:
d1:75:ef:2f:b9:20:61:b4:2e:f8:97:db:f2:5d:be:c7:6c:8c:
da:af:58:9d:40:1f:a7:e5:d9:8f:c4:61:53:5d:7e:86:44:f3:
90:01:d5:6e:4f:50:bc:f5:51:0e:c7:dd:70:dd:e1:e2:53:86:
e0:83:53:7d:2e:d0:db:fd:2c:0e:d8:b1:24:1f:50:fe:db:bf:
dc:6a:b2:fd:c2:32:65:e5:f3:7d:00:f5:0c:dd:57:47:fd:a3:
15:ac:80:16:51:52:0f:b9:74:89:ba:20:b8:61:77:bf:ad:65:
94:6b:7b:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:51:42 2025 by rpki-client