Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: 4m2SbV77VboO2VNjRmEnalKiLTH8MtSLNi8VZCwkfHg=
Subject key identifier: F6:B9:46:6C:71:24:D6:65:43:A4:95:30:56:AD:7A:46:EB:BC:E3:B2
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 019922FAEC6478F187781C20949EF120649A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 07:01:33 +0000
Manifest this update: Sun 07 Sep 2025 07:01:33 +0000
Manifest next update: Mon 08 Sep 2025 07:01:33 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: th6j4ct0Vj3gPIUJRMWAnyeIqtgLYPc02tjNhPnxjpU=)
2: zxt5ioQXS4YKJLP4ilCQM5v8g2Y.roa (hash: RY5SWWwhf3VR6uGt8AADVTrl85kwmlR4e1dP9tOTtrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:ec:64:78:f1:87:78:1c:20:94:9e:f1:20:64:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Sep 7 07:01:33 2025 GMT
Not After : Sep 8 07:01:33 2025 GMT
Subject: CN=f6b9466c7124d66543a4953056ad7a46ebbce3b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a2:b3:4a:7c:a0:43:7c:36:4f:6c:7a:73:95:
a1:48:22:23:4b:64:27:14:3c:a2:04:70:54:19:7f:
59:92:fb:87:7c:bd:2a:ca:1f:23:a3:b4:27:72:fd:
1d:aa:80:18:20:05:23:18:f0:18:e7:dd:9e:6e:07:
8d:cf:45:17:f7:6e:53:b6:3a:1a:a3:81:a0:e7:35:
9f:c2:b2:23:e1:52:be:a6:68:c6:61:48:09:62:4b:
f7:b0:9b:55:0a:0c:cb:8f:fc:25:ad:ed:3c:fa:12:
f3:a8:50:a4:b8:ba:8c:91:c8:ec:32:a5:0b:36:ac:
68:36:1e:7c:79:4f:25:18:2d:cc:18:7d:38:e2:e2:
a3:c1:3d:fe:fb:a8:4c:d4:5d:a4:6a:85:a6:95:8e:
65:f6:e1:d5:c8:cd:69:62:ca:7e:ac:04:ac:cc:46:
f2:31:b8:59:9d:3f:77:1f:2b:87:24:fa:02:19:9a:
bd:ac:cc:5b:69:0d:6c:b2:30:34:d5:7b:2e:6f:28:
17:58:5b:ef:d3:93:83:d3:03:3f:25:de:f7:80:71:
99:80:66:a8:90:ad:81:45:98:54:51:51:42:cd:43:
c5:29:95:18:79:fa:bd:84:7d:90:ea:93:38:b7:e0:
a1:85:72:55:8c:1d:0e:67:9b:7e:74:ba:cf:d6:43:
fc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B9:46:6C:71:24:D6:65:43:A4:95:30:56:AD:7A:46:EB:BC:E3:B2
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:74:66:ed:20:d0:5e:f0:e4:ac:ee:58:6d:44:b2:03:32:8c:
71:15:d2:21:72:ab:f3:2e:4c:17:aa:f1:a1:d7:55:c3:d3:f7:
4b:aa:9f:51:72:93:84:44:86:4a:f6:de:a1:4c:f2:67:12:5c:
5a:29:f4:18:ed:e1:1a:96:fd:5e:f4:eb:01:3f:10:68:4c:41:
c4:c1:31:a7:3b:96:85:5a:a0:d0:75:5e:80:52:bc:54:2e:6d:
7d:49:67:40:a4:ce:f8:d9:a5:00:fc:a6:21:c8:6d:70:7c:90:
61:48:0c:e4:63:9f:8c:63:dd:19:cf:0b:bb:fc:c4:ad:90:da:
2e:17:3b:be:12:f6:c7:ee:c3:9c:00:61:30:98:fb:cb:78:d1:
08:6e:8d:9a:d7:b6:4f:23:e1:61:87:62:ad:e4:96:ae:6c:6c:
de:6a:07:0d:3a:be:6d:6f:c1:99:3e:2b:8c:14:58:33:ad:7a:
fc:38:06:44:89:3f:c1:a6:53:7e:5e:1a:5c:dd:91:b1:67:41:
7f:98:5e:05:a6:fb:55:d5:08:63:ae:57:40:da:39:ac:b2:78:
fb:57:a2:d0:85:be:42:32:5b:e3:38:da:a7:22:71:91:44:8a:
3b:e3:6c:0e:13:be:f1:b2:82:15:cf:7f:10:93:74:3e:85:ef:
c8:2d:97:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:53:44 2025 by rpki-client