Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: 44ksq0ZxkEC/gS69yn+w0vv9X1+yS90vlLhXDjw6emE=
Subject key identifier: 06:58:19:F0:0C:83:13:53:A9:64:B7:D5:27:6D:46:E4:70:54:42:C2
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 019A285497E57760273BA8959DE5ACF8D0BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 135D
Signing time: Tue 28 Oct 2025 01:00:23 +0000
Manifest this update: Tue 28 Oct 2025 01:00:23 +0000
Manifest next update: Wed 29 Oct 2025 01:00:23 +0000
Files and hashes: 1: CRyZWe4rqJ2qdiNWuAP-OJQeZow.roa (hash: g+uZ3IirtTKelPa51RylP3yoQBkp1cF9hHY0LUNHp8g=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: Zh5BI3rijSupBNlyZziilSH+kWEZ7PPqeKmbnIkH1mM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:54:97:e5:77:60:27:3b:a8:95:9d:e5:ac:f8:d0:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: Oct 28 01:00:23 2025 GMT
Not After : Oct 29 01:00:23 2025 GMT
Subject: CN=065819f00c831353a964b7d5276d46e4705442c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bc:ea:9b:d9:f8:c2:38:8b:12:97:5b:0f:a1:
95:50:c1:e6:a5:89:7d:0c:ae:8f:f7:80:c5:d7:a2:
1c:d2:e1:db:1c:d5:5f:d9:2f:89:c3:87:01:8d:f2:
53:d7:93:53:62:1e:8b:c7:9b:df:ab:2e:bc:2d:ec:
89:60:0b:e1:22:d9:b0:d8:48:91:be:6f:98:ff:ea:
00:ac:4d:4c:d4:0c:7f:c3:27:09:75:e8:14:99:40:
de:84:12:7c:d2:db:e5:a5:4d:6e:33:28:f4:14:ee:
e4:f5:76:ce:34:f0:71:a6:9e:e7:a8:54:f6:8d:9e:
df:2c:b6:7e:e8:5d:72:2f:99:db:ab:b2:8b:4e:3b:
f2:86:ee:1d:28:68:dd:b4:33:9d:bc:37:ee:ce:a2:
f4:bf:21:e4:49:de:bc:0d:dc:23:0f:38:99:46:7a:
4e:a4:2c:ef:7d:61:1b:f2:07:31:50:65:08:c5:fd:
26:72:d6:9d:ac:68:3f:e2:a6:b1:9f:fb:82:da:9a:
b3:dd:50:dc:ee:84:37:a6:e1:3b:ed:c5:19:a0:06:
51:a6:6f:24:6a:f1:3d:25:c1:a7:a9:69:23:99:68:
d8:5f:86:a8:89:80:8f:bf:36:39:41:22:34:9f:93:
18:77:f8:00:4b:2d:b5:96:ed:a7:ea:e6:3b:5a:ed:
52:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:58:19:F0:0C:83:13:53:A9:64:B7:D5:27:6D:46:E4:70:54:42:C2
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:a8:ee:3a:f7:01:08:0c:55:e8:d1:3f:73:76:31:3d:04:a5:
d5:6c:40:15:7a:14:ce:ab:09:80:ae:33:c6:2b:fb:cf:39:1a:
52:b8:fc:f6:a6:97:e1:30:d3:d5:c6:56:43:eb:2c:53:ce:96:
3a:29:38:2e:2b:6b:d3:e9:a5:8f:4e:b3:30:d5:f6:f9:93:52:
30:37:1e:cc:5c:40:f4:71:89:fb:bd:8d:bc:c8:f5:d7:ee:d7:
b5:67:3b:28:1f:1f:58:96:ad:55:b6:8d:4d:93:1d:fd:4c:55:
f0:c3:cb:4a:94:30:d9:f0:41:e2:f7:a4:39:cb:20:4c:f6:2e:
04:f3:81:7e:03:e5:c1:e4:c2:a2:5a:fb:f9:5e:49:ee:bc:f0:
95:6c:b5:ef:e3:ad:ba:c8:8b:16:f5:8c:f5:97:db:67:a7:23:
03:82:a5:23:4c:4b:b9:c9:c9:6e:1e:d5:7a:be:14:a5:14:68:
d9:1c:1d:4b:7a:33:e5:e7:2f:45:02:66:fa:08:a4:66:80:d8:
48:ef:e0:73:4b:82:c7:47:dd:b7:19:df:d2:64:a9:75:f7:3d:
1a:5f:ee:4b:3d:c1:12:75:5b:52:fd:30:26:27:db:5a:33:cf:
ba:99:28:71:5a:ff:f5:ab:e5:1d:3e:fc:ac:77:3f:18:5f:2c:
5b:6b:4e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 07:38:39 2025 by rpki-client