Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft
File: QZYjDljezAy8-xX1aqZN7dHzifU.mft (raw, json)
Hash identifier: zRvGG3jMBdkBAncDGfiR+ccERaAAuN9tCHF2Ir/t9wA=
Subject key identifier: 03:86:51:B3:E9:57:F9:F6:AE:D6:4C:0E:75:B2:D5:A3:47:4C:E8:15
Authority key identifier: 41:96:23:0E:58:DE:CC:0C:BC:FB:15:F5:6A:A6:4D:ED:D1:F3:89:F5
Certificate issuer: /CN=4196230e58decc0cbcfb15f56aa64dedd1f389f5
Certificate serial: 019A4B4E724501A2179E360B18650D8736BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft
Manifest number: 0FCD
Signing time: Mon 03 Nov 2025 20:00:23 +0000
Manifest this update: Mon 03 Nov 2025 20:00:23 +0000
Manifest next update: Tue 04 Nov 2025 20:00:23 +0000
Files and hashes: 1: 3MDGg1OHtAL-geuqk_TgrHeNJds.roa (hash: UTv0UG9oxSEa8ZKyczNWu3GLgSXbEFX86w4PXZf/pcw=)
2: QZYjDljezAy8-xX1aqZN7dHzifU.crl (hash: DHTyMmE9zUGNQP4LTfCdMv4cI9/28p/foqngaypr9fA=)
3: YXNgqkH32mHlbxjAP4XMYGxuX-A.roa (hash: U+xr/pCSHTkJQcJTemkszlIrTDWL9g14UMPWkZKLV+k=)
4: d3N4PsuvCl1rvX4ossRl_Xc4jsA.roa (hash: eCiVHw72+bTZlv8fotK++2o6VMWQ+UX2AuVuNcdkIqk=)
5: iXw_41SDwVWtAf5ihJuQUw9Lk8I.roa (hash: IeaHE4eJJAlQPpX43/jtDGK9a0UQu+G72Lz6Qc9LhBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 15:12:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4b:4e:72:45:01:a2:17:9e:36:0b:18:65:0d:87:36:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4196230e58decc0cbcfb15f56aa64dedd1f389f5
Validity
Not Before: Nov 3 20:00:23 2025 GMT
Not After : Nov 4 20:00:23 2025 GMT
Subject: CN=038651b3e957f9f6aed64c0e75b2d5a3474ce815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1b:87:e3:4c:57:18:45:79:b4:98:dd:59:d1:
5c:87:c7:b9:20:92:83:1c:70:09:97:25:ca:3e:98:
a4:9c:d0:1a:6e:b9:db:d9:d2:d2:77:36:9a:3f:5a:
96:5b:34:96:a8:b5:21:ab:42:78:a6:77:b4:7a:1b:
eb:24:d1:73:f7:d6:93:b6:d7:98:27:75:a6:6c:59:
58:48:10:2b:41:54:83:b5:83:3d:3d:3d:56:bd:9b:
1d:67:3c:fc:6f:e9:50:97:ad:13:18:ed:6d:5e:bf:
b5:a9:6b:08:fe:4a:d4:4f:08:bb:c1:f6:9d:6b:ad:
51:17:87:e3:a8:98:88:84:b6:7a:48:e5:71:f3:fd:
f1:be:b2:0b:b4:9e:a9:65:88:72:65:4d:66:6b:96:
85:f2:78:72:62:bc:0d:90:ae:4c:ff:2c:4a:49:8d:
5c:67:d9:3f:92:23:a1:2d:5a:9c:12:e6:ec:02:5d:
61:21:0c:a2:0c:e5:cc:0f:78:e6:ff:d2:cb:84:b1:
00:d7:78:5d:4f:ae:24:f5:8f:04:63:c2:23:21:ce:
ee:96:35:43:b4:cf:13:ed:96:9b:cd:42:ad:5a:53:
19:28:86:e5:82:61:f3:52:0e:ce:4c:de:bd:06:2c:
c0:b2:0f:cb:0c:44:a7:1f:67:3a:dc:97:2c:7b:e5:
c3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:86:51:B3:E9:57:F9:F6:AE:D6:4C:0E:75:B2:D5:A3:47:4C:E8:15
X509v3 Authority Key Identifier:
keyid:41:96:23:0E:58:DE:CC:0C:BC:FB:15:F5:6A:A6:4D:ED:D1:F3:89:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QZYjDljezAy8-xX1aqZN7dHzifU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/da96f5-3f33-46f9-a514-2befffd57fb7/1/QZYjDljezAy8-xX1aqZN7dHzifU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:24:53:81:f5:8f:66:78:ee:b9:14:b7:80:74:ce:57:9e:c8:
b5:96:68:ae:ca:f7:cf:ad:fb:f3:d9:6e:8b:19:81:1c:a2:6d:
e4:74:b6:78:c9:1d:c6:96:2c:ea:fc:17:18:36:19:2b:39:05:
ed:b5:95:a8:1a:73:3c:12:8d:81:e8:a5:0d:f9:09:29:7c:f5:
ae:e9:d3:d9:ba:9b:ee:3d:49:c4:1a:54:59:72:f0:55:20:da:
ab:19:f5:07:d5:01:fa:8c:68:c7:47:21:72:ae:2b:d0:6c:f3:
c4:7d:a2:14:ea:de:19:5b:da:2b:13:fa:96:89:2f:69:ce:6c:
e3:53:e8:25:86:54:fd:a4:bf:06:0e:1f:69:12:6e:2c:14:ae:
ed:61:68:cf:cb:c9:94:47:4b:99:16:ad:68:3a:26:04:23:62:
6a:8e:49:c1:2e:8c:b7:88:54:25:51:aa:c9:1b:a5:bd:e0:ec:
ae:a5:1c:db:5f:5f:82:ad:39:be:17:3d:9d:55:cc:79:b9:a4:
7d:a9:f7:8c:66:7f:b3:e5:f1:8e:71:25:26:c3:49:84:00:9b:
1e:6d:a8:4d:1e:2b:29:b9:9c:7e:7d:0f:53:9d:10:3b:02:c6:
9e:fb:d7:77:57:93:73:c0:90:bd:a4:d4:b3:61:15:18:eb:8c:
96:a9:fd:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 21:42:39 2025 by rpki-client