Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
File: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft (raw, json)
Hash identifier: T18MnqBNFiWnBS2JVHlTUo/kLLHUNbSNG5+AgDqabEY=
Subject key identifier: F7:83:59:80:33:46:44:83:B2:11:49:24:9E:97:97:16:8A:48:1B:12
Authority key identifier: 40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
Certificate issuer: /CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Certificate serial: 019A725C6DAB5A165FD84646BEF544D12EA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 10:00:51 +0000
Manifest this update: Tue 11 Nov 2025 10:00:51 +0000
Manifest next update: Wed 12 Nov 2025 10:00:51 +0000
Files and hashes: 1: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl (hash: IYpI0PpGQoVMvbWqnUZ31gilgOLwXU8xVguJFmLtPl8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:6d:ab:5a:16:5f:d8:46:46:be:f5:44:d1:2e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Validity
Not Before: Nov 11 10:00:51 2025 GMT
Not After : Nov 12 10:00:51 2025 GMT
Subject: CN=f783598033464483b21149249e9797168a481b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:da:1d:7c:cc:54:96:85:17:f1:b0:2e:ca:e2:
6c:5f:67:0b:88:48:2d:f2:de:fa:49:0a:2f:86:24:
9b:92:e3:f1:e0:ff:7f:c3:08:d5:17:be:6c:3c:e1:
a6:61:e9:0e:47:5a:43:02:5c:cc:fc:2d:d2:65:4f:
00:5f:dc:94:22:39:0e:f1:fa:55:a9:7e:04:e8:99:
e1:23:08:49:3c:78:e2:76:f5:57:aa:71:bf:ef:ce:
b5:bb:bc:11:7e:cd:77:8f:c0:c4:3a:83:4e:6a:ad:
5c:c1:bf:c8:1a:ab:cc:f5:6b:c8:b6:cf:4a:6b:ff:
ed:2e:eb:5b:d0:db:0b:76:17:e7:60:14:c9:8f:c8:
00:39:31:1f:e1:53:94:33:3e:88:1f:e8:31:d5:5a:
66:a3:28:fc:51:84:d4:62:c6:07:fe:09:e8:6b:eb:
84:f4:f5:74:09:db:10:30:91:4a:68:43:ca:5d:00:
0a:ea:82:fb:c7:b9:44:0a:99:c5:e5:bc:28:ba:ec:
2b:1e:e3:97:cf:6e:80:d8:97:3b:7b:eb:fc:d2:a8:
52:66:08:6d:39:49:80:ae:0e:fb:02:2f:21:c1:dd:
c5:94:1a:1f:e1:67:d5:7b:44:8c:85:56:f6:14:c1:
20:cc:8e:bf:40:e6:12:f0:f5:e7:66:32:c8:ea:33:
c9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:83:59:80:33:46:44:83:B2:11:49:24:9E:97:97:16:8A:48:1B:12
X509v3 Authority Key Identifier:
keyid:40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:2f:e9:de:ae:b1:96:b4:dc:2f:8c:15:3b:cc:4b:b6:6e:ff:
0b:f1:ba:58:ca:d4:36:c8:f4:51:72:00:64:3f:30:00:68:ad:
7b:ef:1b:57:3a:dd:0d:f9:b2:82:5d:94:3f:67:9b:7d:4a:c1:
14:a2:ec:a9:e4:6d:ee:f7:c1:9d:c5:9d:40:a6:18:d0:2f:10:
08:a6:aa:8b:89:cb:7e:57:d1:85:ef:f9:e9:fa:7f:10:f0:53:
a7:5e:15:85:26:d5:c9:c2:7e:0e:14:bf:bd:d8:92:47:0b:bb:
6f:06:bb:79:7a:d4:76:b9:77:85:97:1b:44:4d:87:f6:26:9e:
70:06:51:11:0e:79:0f:52:ba:67:83:5b:e0:6c:e5:16:3f:dd:
a3:a8:e6:80:ad:ff:73:cf:ab:88:2a:3f:cc:e6:6b:af:07:51:
6c:ca:d5:2b:44:a1:63:4c:bd:4b:c9:a2:e6:63:86:9c:d5:07:
73:70:97:71:b4:37:69:21:15:0c:c6:5b:75:14:39:e7:63:e3:
6f:1b:56:52:01:5d:e3:3e:a2:ab:2a:2c:18:b6:61:0b:73:7c:
d4:9c:60:90:04:66:7a:18:ae:f9:81:01:27:54:0b:df:1d:d9:
42:34:b5:da:e6:5b:80:3a:a4:6a:d2:0f:a2:c8:25:f6:04:ed:
e8:51:73:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:19:45 2025 by rpki-client