Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
File: Q34DDURmGkwgHroD3kUrBLjn2eU.mft (raw, json)
Hash identifier: +N+4xSqektp7ZgbCub+uJ1Z9oBuDb2Nn7g7/WalMNW0=
Subject key identifier: BC:F8:14:E4:4C:3F:C6:84:AF:FA:F7:F9:FC:D0:25:7C:76:70:CD:FA
Authority key identifier: 43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
Certificate issuer: /CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Certificate serial: 019A221BE9858CC98C30FF14D7AACF8A2DF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
Manifest number: 163B
Signing time: Sun 26 Oct 2025 20:00:45 +0000
Manifest this update: Sun 26 Oct 2025 20:00:45 +0000
Manifest next update: Mon 27 Oct 2025 20:00:45 +0000
Files and hashes: 1: Q34DDURmGkwgHroD3kUrBLjn2eU.crl (hash: 0LbemwO2UoZTuZpas75d5w6Kj56Xy/MbOtcRBaS2B4U=)
2: aTnDDG7156iJH1B7VtXl45Lxz4c.roa (hash: uqmE7u3SyyyiP9Dvg82dGi927wLVOacs75i5/YZ4Qho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:1b:e9:85:8c:c9:8c:30:ff:14:d7:aa:cf:8a:2d:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Validity
Not Before: Oct 26 20:00:45 2025 GMT
Not After : Oct 27 20:00:45 2025 GMT
Subject: CN=bcf814e44c3fc684affaf7f9fcd0257c7670cdfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f6:a4:4d:6c:ee:29:5f:69:ce:11:0e:0f:c8:
c9:92:2b:76:80:cc:c3:51:c5:2e:86:13:4d:0d:a6:
3d:97:9a:f2:0b:bc:ee:07:5e:30:20:7c:45:44:4d:
bb:3e:e9:e3:d5:6f:dc:00:fd:1d:a3:be:c4:35:13:
bb:4e:68:cb:fe:dc:38:0d:95:af:46:5a:75:28:5f:
53:61:af:21:f0:79:0f:24:7f:09:32:09:95:ea:9d:
cc:cb:ef:3a:80:5f:91:3a:04:0b:62:99:75:57:38:
a5:dd:02:21:14:ae:5a:a2:26:cb:4b:6a:e4:c1:3d:
20:a6:48:d2:88:23:b8:91:3a:58:be:44:52:01:7e:
6f:5b:64:99:9c:23:aa:1e:5a:a2:a5:8d:b4:34:54:
9f:81:c6:d6:c5:74:7b:c2:18:10:27:87:fe:25:3c:
8f:65:06:1d:aa:6c:5c:83:c7:68:f5:dd:d8:63:13:
96:cd:c6:52:22:e9:9a:1c:fd:74:a6:25:c9:a5:22:
b3:6e:09:4f:c5:bd:19:08:d0:73:a9:bf:6d:fd:34:
ec:a4:95:45:40:eb:39:d2:a2:18:d5:30:16:24:70:
fb:06:9d:6b:89:9f:b1:25:01:63:e1:7f:24:60:2a:
a1:94:b5:8b:af:01:42:ea:97:bc:c6:c6:36:20:33:
cb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F8:14:E4:4C:3F:C6:84:AF:FA:F7:F9:FC:D0:25:7C:76:70:CD:FA
X509v3 Authority Key Identifier:
keyid:43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ae:90:ea:b1:77:66:29:0d:76:c7:5d:31:86:e2:7c:d0:aa:
d8:59:3b:23:20:01:67:81:3a:c7:6a:2f:1e:dc:ed:98:8f:89:
0e:83:c8:8e:ae:d3:0f:82:8a:1d:7a:ec:ba:e0:43:f7:04:7d:
08:45:e2:eb:a8:57:ee:1d:16:87:fa:9e:d3:28:38:15:ab:14:
43:27:bd:d8:1f:da:73:80:aa:f3:4f:bf:78:1e:49:e7:e4:02:
4c:85:86:c9:7f:da:81:7e:11:c9:5d:fd:64:bb:7c:d3:ea:06:
27:d4:28:df:21:2a:e1:e5:c4:92:77:d9:da:c8:7b:83:9c:2a:
64:a7:a7:be:d8:84:0c:af:02:87:48:29:c5:ab:3a:fd:38:80:
08:db:8a:45:f5:99:1c:12:98:b5:69:b3:23:92:4f:e2:af:59:
9d:32:bd:e4:4b:32:33:bf:53:ee:3b:42:3d:91:cf:56:01:30:
d3:eb:2d:3e:1d:7a:c4:8e:b2:b4:3c:d6:d8:a1:3f:15:e1:ac:
40:0d:51:ce:61:4f:d7:31:68:33:d9:38:1c:dc:ae:6b:ed:e9:
8f:5f:44:20:c8:f5:75:48:49:43:a9:56:96:2d:11:7f:09:47:
73:9d:6d:db:b9:85:20:62:2e:9c:36:9c:7f:25:86:d0:97:e1:
4f:f5:d3:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:38:32 2025 by rpki-client