Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
File: QGHbehW9JPvKFGzRLMcNQTnIW58.mft (raw, json)
Hash identifier: Jvf4f38Fi0uffJDS+Cg4qfEoUc+L+N7T7/QYVxHEoh8=
Subject key identifier: F7:C3:98:E9:D6:76:B2:F3:24:45:46:3F:7B:3B:AC:50:54:3E:EE:BD
Authority key identifier: 40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
Certificate issuer: /CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Certificate serial: 019A72CA48C37DB9121EC97F86361145FFF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
Manifest number: 16EC
Signing time: Tue 11 Nov 2025 12:00:50 +0000
Manifest this update: Tue 11 Nov 2025 12:00:50 +0000
Manifest next update: Wed 12 Nov 2025 12:00:50 +0000
Files and hashes: 1: QGHbehW9JPvKFGzRLMcNQTnIW58.crl (hash: ekstUCscVlTcHPxi21Q0zETV/h52dWGM6eEs/2w/GpU=)
2: o-ZlaW1WgunU3TjJVwdOR6husz0.roa (hash: 4yZiG/NqXqcKJ1Bdf8yQPmHJloI/I/ZH5JktUOUh3mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:48:c3:7d:b9:12:1e:c9:7f:86:36:11:45:ff:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Validity
Not Before: Nov 11 12:00:50 2025 GMT
Not After : Nov 12 12:00:50 2025 GMT
Subject: CN=f7c398e9d676b2f32445463f7b3bac50543eeebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1d:72:22:23:ad:41:f2:74:9d:83:97:9d:c7:
c7:f4:2c:6f:a0:be:9d:6d:a9:9e:97:fa:87:a2:23:
83:7e:58:40:7c:26:f9:b4:a6:ae:86:5a:63:f6:a1:
6f:a6:91:7e:5c:21:ab:ec:70:e0:ef:bb:f5:b5:64:
be:bf:a2:95:cf:7d:28:ad:f0:c3:02:99:78:bd:5e:
c9:ac:91:88:e4:b0:9d:df:d5:27:78:6b:a7:d6:cd:
e3:01:92:05:a3:22:50:7f:3f:33:89:65:1f:3c:3d:
01:f0:92:d1:3e:7c:14:ff:c3:78:10:3b:2b:df:d2:
84:03:c5:97:4f:14:c3:24:66:74:89:cf:3a:c5:2b:
3b:c7:30:11:5a:38:9b:c0:d4:ee:4f:62:cd:2c:b1:
fe:3e:4d:d7:64:d2:81:39:09:64:8b:85:c8:4e:19:
6e:fd:e7:98:48:8a:1b:e1:68:0a:43:24:7a:cd:09:
1b:8d:5f:f1:6e:01:41:e2:a5:53:f9:58:5a:74:fb:
f1:4c:74:0c:74:16:93:c5:4e:df:a0:2a:d3:90:6f:
44:fa:26:34:3d:a7:7f:01:8a:aa:8b:93:9e:f2:c3:
83:3b:10:01:ac:c9:01:2d:57:17:16:0b:03:9b:b3:
48:2c:33:17:34:33:f6:d3:47:92:14:c1:ee:26:e1:
5a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C3:98:E9:D6:76:B2:F3:24:45:46:3F:7B:3B:AC:50:54:3E:EE:BD
X509v3 Authority Key Identifier:
keyid:40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:0b:71:d8:30:ab:39:e0:58:51:07:f1:d0:99:07:32:fd:09:
99:87:ce:cf:98:97:8b:6c:b4:d4:75:1b:4e:b7:4b:a3:4f:03:
18:81:00:ea:40:ae:ea:0a:a0:44:13:95:f8:aa:54:e1:fb:3e:
a8:60:9b:1a:df:9a:18:0c:7c:d2:08:f3:60:1b:d8:19:16:4c:
b4:cc:85:3d:ab:5a:1b:a0:70:5f:e3:2a:2f:f9:a7:4c:06:ac:
bf:0c:86:4a:71:3d:2d:e1:fe:f1:54:70:79:3a:67:48:09:86:
61:ae:1e:7f:36:09:e8:00:20:46:d9:42:e8:73:0e:19:30:22:
05:45:4d:d6:52:58:74:3a:20:09:5e:4e:d3:e5:1f:88:a3:1e:
4b:ac:7e:fb:61:72:b5:8c:ef:1c:dc:16:98:7e:13:88:70:31:
6b:98:d3:d2:59:bc:9c:2d:72:35:00:e6:82:b5:75:b2:4f:ad:
b6:25:99:c5:07:63:17:ec:c4:33:52:9f:a4:5b:99:52:0c:70:
d5:bf:50:2e:dc:93:fe:e2:3a:8d:41:62:90:37:04:d7:91:f9:
2f:50:ab:df:7e:85:e9:47:9c:90:f6:f7:f2:4b:46:59:c0:c3:
12:b2:a1:66:22:97:4b:70:6e:b7:30:1e:5a:60:b2:7e:f1:af:
32:5d:5c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:52:34 2025 by rpki-client