Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
File: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft (raw, json)
Hash identifier: PnIzkpe6P5CTO9qL2wXRLJhh8+mbEStNS5kuS51501w=
Subject key identifier: 93:D3:05:A0:82:4F:04:B5:DF:6D:CA:AB:FF:B4:21:58:0C:4D:9A:FB
Authority key identifier: 41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC
Certificate issuer: /CN=41d6451b923a07e365b2f190faa55a572dd0fafc
Certificate serial: 019A2E1FDA4CCBFAF2398F5CDD761E1ED87A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
Manifest number: 09C5
Signing time: Wed 29 Oct 2025 04:00:30 +0000
Manifest this update: Wed 29 Oct 2025 04:00:30 +0000
Manifest next update: Thu 30 Oct 2025 04:00:30 +0000
Files and hashes: 1: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl (hash: MxXWr4o/DqclP5t6uNhlGlTQjCD2Z9VRCSrNQs/Vts4=)
2: dwbiIWEratA3KWkL5imPi021V8I.roa (hash: uBYUZ2jEhyVMlLuwkanT9PAiy5t/N1UtpXaLMB0jCDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2e:1f:da:4c:cb:fa:f2:39:8f:5c:dd:76:1e:1e:d8:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d6451b923a07e365b2f190faa55a572dd0fafc
Validity
Not Before: Oct 29 04:00:30 2025 GMT
Not After : Oct 30 04:00:30 2025 GMT
Subject: CN=93d305a0824f04b5df6dcaabffb421580c4d9afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5f:2e:ec:37:f2:5b:a7:5c:05:c6:49:f8:4a:
28:15:04:93:b8:bf:4c:41:31:9c:ab:fa:90:5e:d2:
66:15:8d:20:0e:ad:da:7e:09:0b:d5:65:a9:64:52:
d4:9c:69:af:5d:b3:41:94:be:66:e0:4f:e3:55:ee:
30:e1:64:49:b6:1e:02:58:2d:38:09:6f:0f:ca:ac:
f5:e9:ac:f1:33:3a:db:1d:a8:40:54:b6:76:ec:df:
50:fc:e1:8d:f5:5f:7d:82:c1:9b:f6:f1:f6:d1:4b:
ef:17:62:c0:72:83:0d:b5:c6:1e:96:eb:ac:8f:f8:
98:9c:c5:8b:b7:4e:a3:0a:dc:db:85:c2:c4:8c:af:
47:eb:fe:31:7c:6a:39:0c:55:5b:a0:81:61:5b:1b:
b6:05:32:8d:dd:fb:5a:82:5a:42:25:31:d6:c9:58:
51:26:32:2b:7e:68:96:0d:b7:1f:df:53:69:a5:6d:
92:a7:3c:80:e2:dd:7e:c1:2c:7b:4c:5d:cc:39:56:
02:c2:8e:18:eb:4e:36:c7:49:a9:52:c6:14:7e:90:
c5:a0:8b:f7:ac:ed:3e:96:65:fc:43:ad:2f:57:00:
f3:3a:2d:e7:47:d8:00:42:8e:c8:11:e3:5d:21:3e:
55:8c:81:58:a5:9f:20:9f:f9:fb:fb:99:76:a1:91:
ce:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D3:05:A0:82:4F:04:B5:DF:6D:CA:AB:FF:B4:21:58:0C:4D:9A:FB
X509v3 Authority Key Identifier:
keyid:41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:99:ae:fb:db:96:89:5c:28:9a:22:d9:c3:4a:59:ed:88:10:
f9:88:b6:4e:61:d5:58:1c:cf:34:24:1c:29:90:07:dc:08:41:
89:82:b4:61:c5:55:d0:c4:d7:67:d8:87:74:8c:fd:9e:b2:83:
fc:83:96:42:eb:87:5b:0b:52:1c:c4:3d:b7:ba:16:4a:3f:d3:
41:37:f7:7a:f8:10:e4:a8:e5:df:f9:b0:db:55:58:31:3a:95:
f8:8d:42:60:f4:b2:b7:e0:5d:60:27:5e:1e:df:61:5e:07:e6:
a8:a9:57:6c:00:50:37:ac:1d:87:05:d5:65:9f:e2:d8:e4:56:
74:9a:6e:90:61:77:00:fc:41:3c:2a:76:d8:f5:9e:37:27:bd:
d6:ff:98:7e:94:54:96:63:45:0e:7d:89:0e:e3:94:d8:bb:5c:
eb:a4:21:19:0e:a8:fb:bb:81:f4:78:23:d8:1c:9e:57:08:14:
30:3a:d1:e7:4c:65:fe:58:b3:d8:87:c6:6a:68:e1:a5:e3:a5:
68:07:53:b5:fa:26:82:ee:e8:4e:34:e4:79:92:61:20:fc:e4:
0c:28:77:38:de:91:84:dd:dc:9f:ad:61:19:b1:05:d5:f0:04:
a0:59:04:03:9a:17:9d:5e:01:fa:10:2d:97:d3:23:12:ec:95:
1a:2f:e8:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 11:21:37 2025 by rpki-client