Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
File: QdD5FclU2DtKG_GEz7wTjEftpR4.mft (raw, json)
Hash identifier: ZQZQN6VW+KY4SgT0IajolecGe5Io7ELM7LwsegWRx5Y=
Subject key identifier: 44:DC:35:E4:A1:36:6F:88:3C:37:1F:1F:F4:9A:09:B6:9E:1A:B8:57
Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Certificate serial: 019A71B80DA3E6FCDB776B085FA7BD8072F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
Manifest number: 13B1
Signing time: Tue 11 Nov 2025 07:01:18 +0000
Manifest this update: Tue 11 Nov 2025 07:01:18 +0000
Manifest next update: Wed 12 Nov 2025 07:01:18 +0000
Files and hashes: 1: QdD5FclU2DtKG_GEz7wTjEftpR4.crl (hash: b45cBw50GMDqrGsfpoVIRlLJkVt815JDk6XjWmYl/eI=)
2: f6uKeUIzMA-uVptKc1ueYhFBFxM.roa (hash: yRxjbOfn/yIPjsEZSwuKIczmA3RcTEjtjojH+74JQXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:0d:a3:e6:fc:db:77:6b:08:5f:a7:bd:80:72:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Validity
Not Before: Nov 11 07:01:18 2025 GMT
Not After : Nov 12 07:01:18 2025 GMT
Subject: CN=44dc35e4a1366f883c371f1ff49a09b69e1ab857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:48:88:7b:ca:a6:ad:0c:88:3a:6d:c5:14:ac:
f9:a4:bc:f5:19:1f:02:18:e6:a2:5c:38:fa:0d:7e:
a8:a5:00:67:8d:a1:6a:4e:30:cc:67:51:60:88:a9:
91:19:aa:30:25:28:06:ba:0b:ae:4e:4a:d5:b0:07:
dc:1f:0b:e8:d4:79:8b:75:c0:c9:f2:a1:6b:53:b0:
a9:f0:11:87:fe:00:a8:21:d3:e1:53:0c:78:a5:f0:
56:80:b8:d9:f5:bd:d1:7c:3a:5f:bc:ae:65:7e:30:
21:50:8d:2a:ed:81:dd:51:93:a2:c1:74:77:bc:bb:
44:a5:d2:38:df:0c:f6:a2:12:bd:69:b3:99:57:3c:
35:44:c4:47:43:51:0c:95:09:6b:11:69:e4:ee:32:
ca:80:3b:4d:61:84:03:4b:97:58:74:c8:aa:4f:35:
ef:ac:11:29:68:fe:e9:20:a3:36:6f:22:f4:a7:8c:
3e:4a:9e:75:45:fa:2e:b3:9a:a5:fc:4f:4c:4c:8f:
ac:25:fa:38:d0:f3:a3:bf:c7:44:65:22:9d:67:e2:
7b:e6:81:00:e2:75:85:cf:65:82:1b:b7:bb:f6:8b:
8c:4f:41:38:2b:be:33:f2:2d:3a:6e:a9:3f:1b:90:
23:37:6a:3f:aa:f4:ea:c6:43:b1:10:5b:f1:27:8f:
5d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DC:35:E4:A1:36:6F:88:3C:37:1F:1F:F4:9A:09:B6:9E:1A:B8:57
X509v3 Authority Key Identifier:
keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:f8:ca:6c:d7:ab:01:cd:ba:e8:24:ee:c4:f0:e3:04:48:b8:
f0:52:17:cc:14:9c:0a:5a:eb:ef:b0:03:23:6b:de:5c:5d:ea:
9b:58:f1:30:5c:40:19:eb:2e:56:3f:22:73:f5:2b:60:2f:0b:
6d:05:7d:09:af:ce:ba:69:66:55:c1:bd:d3:82:41:b6:5c:9c:
cd:87:fd:8c:78:11:ea:6b:50:da:a3:93:2d:1c:2a:10:20:a9:
eb:1e:4b:5a:ef:44:af:d2:9a:94:d9:ec:18:2f:63:ee:06:35:
79:41:d9:30:c4:d2:ee:0b:bb:66:52:4a:0a:0a:82:77:e1:c0:
9c:5b:df:a5:af:18:f2:5f:1d:e2:24:08:0e:be:22:c6:01:a0:
f8:f4:e8:71:4c:de:9e:28:f4:b6:2d:f8:c9:95:a8:61:84:d5:
85:38:74:45:f6:07:9a:db:5e:d9:3a:c7:2f:86:7a:11:b7:f8:
c1:c0:ed:2c:c5:e9:da:23:6c:a8:3a:bf:02:4f:ab:e9:70:24:
e8:cd:0f:c6:f3:9d:64:c7:a0:88:72:d0:63:42:b8:86:46:b9:
47:32:63:1d:35:0e:a1:f1:be:0d:93:d5:ea:a4:8d:08:6d:6e:
e0:4e:ed:83:8d:6f:ec:ab:5c:7b:9a:a3:99:72:52:95:9f:5e:
8f:ff:20:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:49 2025 by rpki-client