Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
File: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft (raw, json)
Hash identifier: 52ikFgYt2OvKtrDExJbJauNitYnn8r4RE+E6RnfJJ1o=
Subject key identifier: 38:8E:04:7F:CB:27:AA:EA:5B:BB:C3:21:AC:51:F5:75:C6:51:29:A2
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 019A5C0B6270FDBB73E1F2F286472333E91D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
Manifest number: 08E0
Signing time: Fri 07 Nov 2025 02:00:41 +0000
Manifest this update: Fri 07 Nov 2025 02:00:41 +0000
Manifest next update: Sat 08 Nov 2025 02:00:41 +0000
Files and hashes: 1: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl (hash: Ud1gkoOa8VsskxC6N8F/3HKLUAvU9wkpMm7XJsMmmk4=)
2: Z5KDHzf527U1qRAIHwgcHaWLd8Y.roa (hash: 2FLC0+uc30V7W0I0O5nyFk8rgVmBx+XIWSxS6WsMyJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 20:27:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:5c:0b:62:70:fd:bb:73:e1:f2:f2:86:47:23:33:e9:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Nov 7 02:00:41 2025 GMT
Not After : Nov 8 02:00:41 2025 GMT
Subject: CN=388e047fcb27aaea5bbbc321ac51f575c65129a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4d:19:05:0d:4d:45:6c:82:99:b8:30:db:93:
ae:76:4e:c5:6b:49:80:5c:95:b2:fc:8a:9f:e6:fa:
8c:25:f6:0a:36:69:11:37:c5:db:31:ea:dd:c9:52:
40:07:f6:32:71:18:a7:e6:7c:4f:68:34:ee:8a:0b:
b7:1d:3a:49:0d:24:9a:68:a1:6c:35:37:33:08:d7:
f3:e7:38:2d:30:ab:5f:d1:8d:1d:4b:3e:21:12:92:
c0:c2:48:c5:b2:61:e8:ad:be:7a:22:70:b9:4c:8e:
8b:0b:f3:41:d7:49:a0:6d:2e:d4:c9:3c:52:45:88:
55:41:3f:54:48:0f:b9:0f:bf:23:7e:d8:2c:80:5b:
20:f3:5a:53:87:c5:2f:7c:f8:93:21:86:49:32:ab:
64:ac:e6:3b:17:47:f2:c6:af:78:7a:f9:e7:1c:98:
8e:05:76:0f:ca:6b:e0:a1:4d:ad:ea:32:44:14:72:
e2:f4:5b:5f:85:ea:4e:cc:c6:9c:8b:c5:77:c4:b9:
2a:a0:68:a4:97:86:15:a6:d2:7a:69:36:c6:9d:dd:
c9:d7:50:3c:8d:92:d4:80:af:96:80:b7:ed:8a:e3:
4b:6e:4b:a2:77:4f:6f:19:e3:c9:d8:d0:a2:75:ea:
43:e1:91:e6:86:cf:99:3e:5a:0e:8b:b5:79:18:2a:
dc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:8E:04:7F:CB:27:AA:EA:5B:BB:C3:21:AC:51:F5:75:C6:51:29:A2
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:5c:c3:45:c8:2d:41:be:48:97:12:5a:3b:9b:04:e4:05:98:
77:3d:12:28:53:d0:d4:8d:e8:b6:2c:1c:e4:90:56:9f:3c:c0:
76:a9:d6:fd:32:04:d6:3c:3c:0d:02:e1:48:d7:3b:c5:c6:c8:
69:2b:a1:e7:29:ae:0d:74:06:af:58:2b:f7:60:13:8f:0b:a5:
c3:2d:bc:c0:79:00:8b:41:bb:f3:92:f9:ca:e8:f8:3c:08:48:
0e:81:ea:c9:fd:01:a0:f1:72:37:6c:08:c3:77:58:43:10:13:
91:96:a2:73:d1:a7:80:1d:cc:1d:c7:42:0f:22:3b:2b:6e:64:
ad:ce:86:ed:17:46:cb:a3:4c:93:96:17:4c:ec:a6:4e:00:96:
dc:ab:f3:ce:ec:0f:c7:c4:19:ea:e1:5d:54:f0:17:ba:e8:ac:
fd:9f:74:a0:1b:89:a1:12:cd:06:43:7c:d5:77:2b:65:24:42:
ff:14:bc:79:79:79:19:98:03:c9:51:11:dd:cf:47:99:a6:20:
a5:64:ca:a1:68:1b:e6:31:ca:c6:73:bd:a6:c8:2f:85:96:4b:
8b:5a:36:f3:ad:b3:a9:e3:f8:62:50:47:28:46:48:f5:45:1e:
ea:85:3d:8c:f8:d7:13:59:5f:aa:1b:c9:7f:3e:f8:45:5d:27:
df:77:d7:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 7 06:20:26 2025 by rpki-client