Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
File: qxSu-APVDXALuYUq6LsrtAkmFqU.mft (raw, json)
Hash identifier: auB2OEYBLPNfzSIsKqKBRnql/Jcf2dUOx18sUooNvrw=
Subject key identifier: 33:59:91:39:75:F0:9B:BF:1E:D1:AD:C4:AE:30:9D:7B:F5:D8:CC:FB
Authority key identifier: AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5
Certificate issuer: /CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5
Certificate serial: 019A7225E6CF8992ED9711F956CB903E6346
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
Manifest number: 0E37
Signing time: Tue 11 Nov 2025 09:01:17 +0000
Manifest this update: Tue 11 Nov 2025 09:01:17 +0000
Manifest next update: Wed 12 Nov 2025 09:01:17 +0000
Files and hashes: 1: qxSu-APVDXALuYUq6LsrtAkmFqU.crl (hash: jAfbbcNlRcyQYbf+HYb2mdTabANWXBtuntqB1idejUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:e6:cf:89:92:ed:97:11:f9:56:cb:90:3e:63:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5
Validity
Not Before: Nov 11 09:01:17 2025 GMT
Not After : Nov 12 09:01:17 2025 GMT
Subject: CN=3359913975f09bbf1ed1adc4ae309d7bf5d8ccfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:46:de:f8:bb:99:a5:8a:67:99:85:2c:1f:9e:
e9:05:fd:08:db:71:c8:b4:8d:dd:48:e8:4d:57:98:
b4:96:64:19:62:64:2d:d6:e4:d3:3e:6e:82:4e:14:
06:5e:53:8b:71:3d:7d:cf:33:79:e1:fe:36:9b:5c:
4c:85:cf:c3:e3:08:74:6d:f7:bc:96:c3:3d:cf:f9:
d3:e0:8e:29:07:ae:a7:44:7f:ec:6c:e6:27:8d:bb:
11:ac:79:9c:01:c3:ee:d9:f2:cc:7a:c2:d4:8f:de:
a0:7f:b7:96:02:2c:32:6f:df:f1:50:f8:0c:0a:29:
65:b2:0c:2b:7b:28:b0:5c:67:da:b8:42:81:ec:1c:
01:7e:2f:d8:17:f0:0b:be:d2:6c:d3:8d:db:4a:71:
11:af:26:2a:f4:3e:58:70:c0:92:f1:98:d8:b7:d5:
e3:c1:21:d1:88:b1:45:e5:d6:d3:1d:ed:1c:6f:0a:
dd:d6:b4:49:c6:5f:a1:6a:66:f1:22:d9:5e:cd:ca:
90:a6:e6:0e:ec:c2:e4:62:23:bd:57:43:ee:3a:c1:
61:dd:de:1c:a7:f1:5f:22:53:19:d4:d2:d9:0f:91:
2b:6a:0c:e3:9e:35:c2:71:dc:d2:c8:95:16:e1:03:
6b:f4:23:1a:d5:bf:98:a9:24:3c:5a:87:ac:eb:a9:
16:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:59:91:39:75:F0:9B:BF:1E:D1:AD:C4:AE:30:9D:7B:F5:D8:CC:FB
X509v3 Authority Key Identifier:
keyid:AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:84:28:62:73:fb:61:b4:cb:02:7e:b0:2e:2a:4f:59:25:9c:
1e:79:46:e9:39:6e:12:d0:37:41:26:5b:1a:4a:2a:3e:e6:39:
36:70:2e:7d:b0:fe:49:60:e1:4e:68:07:41:16:0c:a6:5d:92:
97:5b:7b:f4:3e:95:de:ea:e1:20:09:9f:ff:0d:b4:84:24:64:
da:85:a4:18:e0:f0:8e:21:50:78:c0:c2:f1:b2:3a:fb:a1:1c:
ae:7d:2c:66:64:09:fd:26:30:f3:4a:dd:e9:d7:94:ea:43:b8:
03:41:c5:41:22:ee:ed:6c:9f:34:2c:b6:93:2c:a3:93:14:fd:
80:28:d0:95:cd:9f:56:0d:ee:e8:1b:ce:43:89:70:d8:2e:d7:
e9:66:df:70:37:ff:f3:1b:44:54:8c:47:79:b2:5d:92:1a:0b:
93:8c:8a:08:e5:98:14:7b:72:23:0b:b4:0d:ed:12:0b:54:50:
5d:6a:a8:06:dd:02:00:b6:09:d2:0e:39:57:03:bd:8b:2f:a0:
80:a3:85:1d:bf:4a:ed:d4:82:bf:36:4b:09:73:a8:87:7d:d2:
e8:d0:28:6d:59:79:85:fd:c4:15:e8:52:96:ca:40:3e:59:cd:
2e:1a:59:3c:3e:5b:48:1c:08:5a:48:8f:a9:5c:8d:0f:be:26:
94:80:82:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:57 2025 by rpki-client