Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
File: QBMclDl36gqT787s000dXRyxgq8.mft (raw, json)
Hash identifier: lVjoNZQsKtqJy53biF5ThEAIzT8dj5vSEytKoj30lbg=
Subject key identifier: 2E:73:66:92:E5:C1:36:D7:16:60:F1:73:0D:CA:7D:E6:8A:CC:00:65
Authority key identifier: 40:13:1C:94:39:77:EA:0A:93:EF:CE:EC:D3:4D:1D:5D:1C:B1:82:AF
Certificate issuer: /CN=40131c943977ea0a93efceecd34d1d5d1cb182af
Certificate serial: 019A72935E696548F0FC5C0D285A29267679
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
Manifest number: 0FCE
Signing time: Tue 11 Nov 2025 11:00:51 +0000
Manifest this update: Tue 11 Nov 2025 11:00:51 +0000
Manifest next update: Wed 12 Nov 2025 11:00:51 +0000
Files and hashes: 1: QBMclDl36gqT787s000dXRyxgq8.crl (hash: cBw2byuI24b1AD0zm8QB1uddDycYIF5vy6l2qBS4XGg=)
2: ULUALQSKNZEpPcNq68X1y69o-9w.roa (hash: u+zVU0SkY5ZMKNVKnpjmcvlKMcttm6HzHNnhk032Vso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:5e:69:65:48:f0:fc:5c:0d:28:5a:29:26:76:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40131c943977ea0a93efceecd34d1d5d1cb182af
Validity
Not Before: Nov 11 11:00:51 2025 GMT
Not After : Nov 12 11:00:51 2025 GMT
Subject: CN=2e736692e5c136d71660f1730dca7de68acc0065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:00:aa:64:12:29:d2:2b:28:3a:ed:11:8c:
d2:0f:e4:ec:55:8d:83:4e:d6:6f:ac:fa:36:78:d1:
b6:41:94:4b:6f:c4:6b:a6:15:c3:9f:15:aa:c1:c6:
05:70:a8:89:a3:9b:dc:79:60:d9:0c:b8:03:04:bb:
d7:b2:15:df:24:00:4d:fe:32:4f:fd:12:b5:42:bc:
91:d7:90:33:02:42:88:1b:d1:76:80:45:92:84:c0:
c6:46:d1:77:90:93:23:2d:ce:07:cb:77:87:5d:55:
8f:a6:9a:29:63:fc:ce:a7:2e:de:5b:df:a5:f9:ee:
36:5b:62:7d:37:78:4b:40:b2:5d:90:9a:4b:a4:53:
1f:b4:9e:00:ee:8c:6c:8f:fa:d1:18:f2:e2:a7:08:
3a:77:ad:e1:50:4c:f8:06:16:bf:ff:f4:22:31:91:
4f:db:c5:21:5d:c6:a3:90:aa:4f:7e:5a:57:40:a2:
38:60:72:2c:cd:b1:4c:6b:45:a3:a7:6f:99:89:73:
49:6d:31:c2:6f:19:93:db:11:f7:e8:60:92:1f:2a:
46:86:6b:7e:14:52:9b:f0:3f:70:cd:77:96:95:08:
09:b0:50:a2:b2:72:28:57:46:be:23:ed:72:3c:3f:
0e:14:3f:9a:97:82:32:a6:1f:14:d8:f5:51:67:7a:
37:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:73:66:92:E5:C1:36:D7:16:60:F1:73:0D:CA:7D:E6:8A:CC:00:65
X509v3 Authority Key Identifier:
keyid:40:13:1C:94:39:77:EA:0A:93:EF:CE:EC:D3:4D:1D:5D:1C:B1:82:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:60:69:cd:4a:df:25:34:33:e5:e9:24:4e:1d:28:e4:ac:c1:
38:53:65:7f:80:22:02:50:df:c2:a3:41:d5:86:89:64:f5:da:
6c:91:c2:c3:34:40:de:49:da:b6:bb:6c:e7:b5:4a:6a:0e:c5:
08:75:a0:97:6a:87:8e:ed:9e:89:73:72:63:94:17:55:30:b0:
2a:b5:96:22:76:17:ea:14:88:17:fa:22:e7:c1:42:71:9b:19:
72:76:dc:b5:60:c6:01:48:b0:8b:3a:34:5e:b0:0d:43:2d:23:
22:55:32:8c:e3:97:3e:72:e9:10:66:a9:a6:43:39:f1:1e:f1:
10:e4:07:5f:bf:17:a5:47:fb:ef:80:00:2c:ac:50:79:ae:e9:
86:03:1a:d5:06:3a:30:e5:7c:c4:49:0a:66:f9:86:e7:11:16:
f0:98:05:58:b9:d7:d1:ec:e7:31:6c:9f:45:b2:d1:c4:2e:7c:
db:99:df:48:92:54:bb:13:93:7f:2a:03:47:40:82:4f:68:ed:
32:f6:34:8e:74:b2:c1:c8:e9:28:5c:fb:f0:80:43:b8:a5:c0:
b2:23:27:49:8c:59:85:8f:b4:83:a6:26:f5:13:36:ce:05:4e:
86:1b:b6:12:75:11:06:7a:04:46:4c:07:10:ae:43:6c:18:86:
54:06:5f:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk15pZUjw/FwNKFopJnZ5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMTMxYzk0Mzk3N2VhMGE5M2VmY2VlY2QzNGQxZDVkMWNi
MTgyYWYwHhcNMjUxMTExMTEwMDUxWhcNMjUxMTEyMTEwMDUxWjAzMTEwLwYDVQQD
EygyZTczNjY5MmU1YzEzNmQ3MTY2MGYxNzMwZGNhN2RlNjhhY2MwMDY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufcAqmQSKdIrKDrtEYzSD+TsVY2D
TtZvrPo2eNG2QZRLb8RrphXDnxWqwcYFcKiJo5vceWDZDLgDBLvXshXfJABN/jJP
/RK1QryR15AzAkKIG9F2gEWShMDGRtF3kJMjLc4Hy3eHXVWPppopY/zOpy7eW9+l
+e42W2J9N3hLQLJdkJpLpFMftJ4A7oxsj/rRGPLipwg6d63hUEz4Bha///QiMZFP
28UhXcajkKpPflpXQKI4YHIszbFMa0Wjp2+ZiXNJbTHCbxmT2xH36GCSHypGhmt+
FFKb8D9wzXeWlQgJsFCisnIoV0a+I+1yPD8OFD+al4Iyph8U2PVRZ3o3rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC5zZpLlwTbXFmDxcw3KfeaKzABlMB8GA1UdIwQY
MBaAFEATHJQ5d+oKk+/O7NNNHV0csYKvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUJNY2xEbDM2Z3FUNzg3czAwMGRYUnl4Z3E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC81YzliNzQtNzUzYi00MmUyLWI0MWEt
MmI2NDlkNWViYWYzLzEvUUJNY2xEbDM2Z3FUNzg3czAwMGRYUnl4Z3E4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC81YzliNzQtNzUzYi00MmUyLWI0MWEtMmI2NDlkNWViYWYz
LzEvUUJNY2xEbDM2Z3FUNzg3czAwMGRYUnl4Z3E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAemBpzUrf
JTQz5ekkTh0o5KzBOFNlf4AiAlDfwqNB1YaJZPXabJHCwzRA3knatrts57VKag7F
CHWgl2qHju2eiXNyY5QXVTCwKrWWInYX6hSIF/oi58FCcZsZcnbctWDGAUiwizo0
XrANQy0jIlUyjOOXPnLpEGappkM58R7xEOQHX78XpUf774AALKxQea7phgMa1QY6
MOV8xEkKZvmG5xEW8JgFWLnX0eznMWyfRbLRxC5825nfSJJUuxOTfyoDR0CCT2jt
MvY0jnSywcjpKFz78IBDuKXAsiMnSYxZhY+0g6Ym9RM2zgVOhhu2EnURBnoERkwH
EK5DbBiGVAZfLw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:28 2025 by rpki-client