Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
File: QlbgyzjNYSXO4U5Jcii4SQodQOk.mft (raw, json)
Hash identifier: He6SaJFCgEqi2lvngu2D2nCXKAYXVsGDoU1I3mgQMbU=
Subject key identifier: 9F:12:CF:4E:10:F8:2E:D3:91:97:CF:7B:70:C4:C0:85:AA:81:8C:A6
Authority key identifier: 42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
Certificate issuer: /CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Certificate serial: 019A25542E737CC4187F67465B7E84792BCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
Manifest number: 0653
Signing time: Mon 27 Oct 2025 11:01:05 +0000
Manifest this update: Mon 27 Oct 2025 11:01:05 +0000
Manifest next update: Tue 28 Oct 2025 11:01:05 +0000
Files and hashes: 1: QlbgyzjNYSXO4U5Jcii4SQodQOk.crl (hash: HENzCV33NaIbItA3DPd6MDWvzGIva8lbYl0GTGVNh9U=)
2: ekPIeumjzc0aQ-0qnlrmTiVhDJI.roa (hash: MI/BYhVlkTAuExjmOk0h+DG2/B/CqzwrvfdzA0OS10s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:54:2e:73:7c:c4:18:7f:67:46:5b:7e:84:79:2b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Validity
Not Before: Oct 27 11:01:05 2025 GMT
Not After : Oct 28 11:01:05 2025 GMT
Subject: CN=9f12cf4e10f82ed39197cf7b70c4c085aa818ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b6:c9:2c:93:f5:67:a7:f0:bb:ef:1d:17:2d:
8c:92:f6:24:8e:1e:7b:a3:10:e7:d2:74:64:99:8c:
81:16:fe:d0:16:ba:1d:93:58:2a:5a:47:c1:46:0b:
9e:0a:c2:ab:39:6c:1e:e0:7c:36:9c:73:67:19:53:
a3:e2:b5:2d:f2:8f:62:ca:4a:93:22:75:53:4d:30:
80:f8:cf:e0:be:6d:cf:69:ba:75:37:ef:44:61:3b:
6d:73:e2:c5:84:eb:d1:f3:34:f6:02:b0:d8:a4:df:
6e:71:65:2f:d8:1a:b8:bd:c4:94:69:05:ee:d6:d3:
d1:dc:fc:61:65:1d:61:e8:be:ae:68:2d:fe:87:c6:
3a:8a:77:87:87:76:37:e4:cb:81:ff:e2:ff:7a:85:
8e:9d:4d:de:26:2c:8b:62:28:3a:a1:7d:98:e2:92:
82:29:30:f4:a4:b1:2d:77:1d:ac:d4:14:4a:9c:36:
fa:25:11:02:a8:7d:3b:ae:6a:42:e9:f6:24:1e:be:
c4:9c:99:f2:86:62:53:5d:fb:67:68:7d:40:a4:58:
94:3f:66:2e:53:44:a4:05:82:e8:12:58:b8:cd:91:
2c:63:b8:1e:74:3a:c5:39:98:95:25:b6:f1:97:15:
13:4e:38:d9:f6:7f:a7:56:d8:3f:ae:bc:89:98:1e:
83:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:12:CF:4E:10:F8:2E:D3:91:97:CF:7B:70:C4:C0:85:AA:81:8C:A6
X509v3 Authority Key Identifier:
keyid:42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:8c:d7:74:b1:2c:2b:18:16:6f:f3:36:b8:d9:be:49:2d:45:
bb:fe:82:59:1c:ce:bc:93:52:0a:71:cd:d3:8a:af:5d:49:26:
46:56:20:6d:14:5b:8b:b6:96:cf:e2:3e:71:b9:52:f6:ae:f3:
4d:38:b6:5c:db:d7:e2:bc:7f:ec:1d:c9:32:77:08:c9:9b:1e:
da:85:ac:01:6c:54:73:e6:03:24:d6:b2:00:3f:0a:cf:d2:d5:
4a:09:ca:a1:93:64:43:a6:b3:73:4c:27:23:d2:9a:93:ca:5c:
84:47:72:9c:77:43:62:69:db:fd:54:a1:95:e0:41:fb:c3:ab:
25:ed:76:53:28:88:bf:c0:e6:1d:28:d3:95:44:33:c7:bd:11:
cd:1a:38:af:4c:32:2b:c3:f6:67:de:5f:32:00:65:10:8f:c0:
69:fb:bb:dc:a6:a0:d0:9d:ec:1c:da:0f:8a:6f:08:02:70:dd:
86:cf:27:38:41:41:82:f1:12:fb:08:1f:0a:bd:04:2e:c2:39:
a1:8e:60:58:5f:f0:ec:b4:59:7d:8b:c3:00:5c:cc:25:b8:24:
54:7e:ec:f7:97:c8:81:5f:99:10:c2:28:59:34:93:f5:0c:39:
cd:cf:a9:5f:8a:4e:a4:6f:ac:26:8d:4a:37:92:ff:d6:87:57:
7c:a2:98:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 14:12:00 2025 by rpki-client