Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: gtwVe1DHZDEkZn/oX1NdnfM4bXSXFIkOGzpM4Hr9YWc=
Subject key identifier: C8:06:4A:AA:34:0F:81:A0:31:96:86:71:BF:D1:DB:8D:83:CE:8E:06
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 019A71B80FF38E2195D254A082810C46FA56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 1105
Signing time: Tue 11 Nov 2025 07:01:19 +0000
Manifest this update: Tue 11 Nov 2025 07:01:19 +0000
Manifest next update: Wed 12 Nov 2025 07:01:19 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: 6vDppytNvXt5Ih6aLPH/gCtqd1Ob1QvGyC5AHLlD+DA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:0f:f3:8e:21:95:d2:54:a0:82:81:0c:46:fa:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Nov 11 07:01:19 2025 GMT
Not After : Nov 12 07:01:19 2025 GMT
Subject: CN=c8064aaa340f81a031968671bfd1db8d83ce8e06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ff:a2:fe:2d:3c:1f:96:f7:59:0f:5b:55:1f:
65:d8:c8:8a:36:a5:eb:aa:4a:cf:7f:23:5b:bb:69:
05:c1:43:b4:e5:d9:26:fe:70:2d:4d:88:7f:32:e1:
de:84:53:63:cd:3a:df:5f:ec:14:8a:de:6e:d3:b6:
56:60:c7:fe:1e:41:83:be:08:fa:77:b6:00:95:44:
80:a6:94:30:54:1d:f3:b2:5e:3a:59:13:b9:dd:08:
de:d3:6d:b2:01:2a:27:67:2d:e4:25:6f:d4:5b:e3:
56:c2:e9:fb:99:0c:a1:21:2e:28:f3:98:93:3b:e3:
98:8a:48:6f:26:0f:ab:9b:9b:30:53:84:7f:06:28:
1f:15:8b:31:46:2c:cf:af:00:15:af:ca:2a:92:d3:
a9:56:b6:03:b9:e0:58:91:88:fc:87:2a:d9:fc:ea:
8c:dc:40:34:a1:90:fc:05:eb:46:2a:8d:3d:fc:78:
28:73:e3:6a:50:af:cd:db:30:94:1e:0c:8a:4a:eb:
1b:73:ea:f8:c0:58:e0:0f:8e:18:a4:d2:70:e4:02:
95:4f:0e:4e:74:91:41:25:e6:61:f2:99:d3:1f:58:
cd:9d:58:f8:e6:28:2b:87:ae:fb:32:12:f3:73:0b:
4e:4d:e7:ef:4e:10:11:8b:37:cd:6a:03:40:c3:c0:
52:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:06:4A:AA:34:0F:81:A0:31:96:86:71:BF:D1:DB:8D:83:CE:8E:06
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:b7:58:6a:0a:6b:7d:8d:ed:e8:eb:4f:ac:fb:f0:bf:e3:d0:
a9:23:2a:08:76:92:4f:10:82:3b:2c:6d:1b:e7:04:e5:07:94:
95:13:ed:cc:11:9c:0b:86:79:8c:24:79:6c:36:51:a8:87:b4:
e5:9d:cc:d1:51:a5:14:0f:34:11:c5:28:69:ae:a5:fc:0b:7a:
12:70:81:9c:8f:e4:b3:bf:25:d3:d8:9b:fe:4d:b9:99:b8:cc:
91:6f:d8:a9:ba:bf:74:15:70:c1:8b:c9:54:d0:3d:75:15:bc:
05:eb:bb:8e:fd:ab:3b:23:e8:0e:63:ba:6c:85:6c:d0:db:6b:
67:1d:81:d7:09:45:43:b7:f3:b5:0d:47:0a:b8:c2:8f:b7:6e:
f3:c4:06:f6:b6:95:60:ca:3f:d0:59:b9:7f:e8:65:b8:0c:e5:
cf:11:83:77:aa:b6:ff:37:14:f4:f3:e9:28:5d:8e:db:31:f7:
a8:89:6b:33:74:68:0a:3b:b0:66:e2:d0:d7:15:1a:50:59:73:
9b:38:ad:ee:5f:51:ae:ad:89:80:13:e4:83:cd:21:07:13:12:
ef:a9:dd:de:a8:18:eb:42:29:b8:33:08:7c:1d:a3:55:e6:cb:
1d:6a:90:36:ef:69:1a:e1:39:fc:20:46:7f:eb:4b:a1:e5:8a:
d0:2b:64:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:13 2025 by rpki-client