Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: qMbjsiAouHK4uTLtNBNHxkjdT45MPjXSI5ETFojt5Ss=
Subject key identifier: 67:89:19:AD:7B:8C:D3:13:98:A9:DA:A2:4E:62:B0:01:ED:8D:B6:70
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 019A72937F94947C2046F01C64B931AF96DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 16AF
Signing time: Tue 11 Nov 2025 11:01:00 +0000
Manifest this update: Tue 11 Nov 2025 11:01:00 +0000
Manifest next update: Wed 12 Nov 2025 11:01:00 +0000
Files and hashes: 1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: 4S6M5oVb4bVpVb7UbX2CeTlnsTEwMtfL76ZXR9up/1g=)
2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:7f:94:94:7c:20:46:f0:1c:64:b9:31:af:96:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Nov 11 11:01:00 2025 GMT
Not After : Nov 12 11:01:00 2025 GMT
Subject: CN=678919ad7b8cd31398a9daa24e62b001ed8db670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:30:4b:80:be:21:f1:e2:5b:47:ec:1a:d4:34:
8f:a9:e0:aa:cc:6a:d1:e7:71:f6:a3:b1:64:8f:c1:
0d:eb:ea:1d:bb:c5:22:e3:47:4f:03:32:13:8d:78:
66:1c:ab:6a:95:20:32:d8:0d:c1:c6:35:2b:01:90:
5d:d6:ec:56:a8:da:21:6c:1a:38:6a:31:d7:46:75:
38:c1:8d:b2:75:e4:32:11:90:15:dc:b9:97:6b:bd:
48:06:5a:d4:ba:9c:2e:9b:7b:2f:1c:13:c7:58:e9:
b3:86:7e:7b:98:09:4d:a0:73:30:18:cc:5c:aa:93:
7e:cd:78:1e:ac:a6:5f:7a:eb:cc:1a:86:27:05:1b:
da:43:08:03:42:05:82:68:15:6a:0a:1c:23:ba:c9:
04:42:81:7d:46:09:a1:f0:69:9d:14:fa:05:4c:c4:
34:4c:27:73:34:f0:bc:15:01:2b:ba:4f:0e:7e:6a:
13:21:df:8e:59:39:c8:ba:11:5d:1f:7d:40:69:52:
6f:9f:ee:98:8d:59:1a:e8:a0:29:01:7c:f5:bc:ae:
f5:35:99:81:01:14:5c:8d:bb:e7:9c:91:59:43:c9:
5a:b0:b8:6e:3b:f9:51:fa:e1:20:ec:fb:0f:3f:1b:
90:d8:ef:c8:4b:ce:67:21:19:0a:4f:f0:16:08:3d:
9f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:89:19:AD:7B:8C:D3:13:98:A9:DA:A2:4E:62:B0:01:ED:8D:B6:70
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:4e:88:00:a3:66:98:6b:bb:81:74:eb:a7:ff:60:9b:a8:fe:
81:29:a2:d1:46:b7:28:24:6e:3c:36:45:d2:65:cf:d9:0f:1b:
17:d7:e5:88:12:62:6e:ef:87:ee:9b:8a:a1:c0:ab:a4:e0:0f:
91:de:db:32:00:38:30:8e:0f:6e:4d:9c:ee:68:8b:1f:7b:99:
35:e4:7c:06:31:ab:ff:2d:3c:bc:a6:fd:81:cc:74:c9:dc:a0:
70:cf:42:e0:c5:6b:5f:f0:54:d4:33:6a:44:42:2f:e1:c7:b1:
91:03:0e:de:c9:04:97:f9:4e:b1:48:23:62:21:75:88:49:cd:
72:f2:93:23:53:ee:97:2a:ea:31:ca:47:67:5e:a9:f1:95:19:
85:1c:f1:02:45:59:eb:b1:e6:30:9e:51:06:72:fb:5c:92:3b:
9f:a4:80:93:83:d6:4f:bc:f0:a3:fe:48:5f:b7:e8:72:f1:de:
20:7f:87:54:83:23:a4:7a:22:d9:b8:ea:7a:89:c8:d4:96:92:
5a:b5:aa:7f:5b:b0:75:06:a8:f2:fd:1d:51:ec:7a:b8:5b:4f:
a4:b3:59:30:08:40:2f:12:4c:c5:4b:cd:ae:54:0b:50:af:e9:
31:ab:32:d2:f2:89:63:c4:dc:98:8e:f0:c9:35:98:52:81:c6:
66:0f:aa:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:15:14 2025 by rpki-client