Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft
File: QTJyL2byeskHL9x-kx9uGoUTz8Y.mft (raw, json)
Hash identifier: RD7goAkmpkJGgqTtMUaR7tWJRcpL1cGnGxes0jUWJtA=
Subject key identifier: D9:C3:03:CA:17:EF:0B:37:83:89:DD:E6:68:24:98:FF:4E:C4:AF:D7
Authority key identifier: 41:32:72:2F:66:F2:7A:C9:07:2F:DC:7E:93:1F:6E:1A:85:13:CF:C6
Certificate issuer: /CN=4132722f66f27ac9072fdc7e931f6e1a8513cfc6
Certificate serial: 019A71B8894E9F46951260FC8E0372C2FBB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft
Manifest number: 0238
Signing time: Tue 11 Nov 2025 07:01:50 +0000
Manifest this update: Tue 11 Nov 2025 07:01:50 +0000
Manifest next update: Wed 12 Nov 2025 07:01:50 +0000
Files and hashes: 1: QTJyL2byeskHL9x-kx9uGoUTz8Y.crl (hash: afZIFiCEv4YWiDpoDHA0NB4gyCtTZhHK0/N0kcQHs7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:89:4e:9f:46:95:12:60:fc:8e:03:72:c2:fb:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132722f66f27ac9072fdc7e931f6e1a8513cfc6
Validity
Not Before: Nov 11 07:01:50 2025 GMT
Not After : Nov 12 07:01:50 2025 GMT
Subject: CN=d9c303ca17ef0b378389dde6682498ff4ec4afd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8e:15:69:37:b3:d5:36:4f:d7:ea:e8:99:4e:
8c:6f:3b:81:d7:2e:0a:f0:1a:10:16:80:ab:29:92:
01:38:12:3a:e9:bd:3d:9d:b0:a7:ed:e8:7f:05:ce:
24:84:4c:60:c6:44:41:82:f3:cd:80:1e:a3:af:52:
e1:79:95:bd:1d:ca:40:71:ed:c0:01:58:69:df:e2:
a9:02:76:76:16:24:c7:fa:1a:7a:8f:cd:be:85:44:
99:3d:e9:5b:e9:ba:bc:a5:ef:f4:45:24:71:eb:1a:
3d:56:ef:26:d9:c2:4f:1e:87:fb:dc:f0:40:5c:a3:
1d:dc:01:c4:90:de:92:9e:0c:ea:c9:ab:aa:79:51:
bb:ce:fc:6c:07:54:7b:b6:c6:0c:d7:2a:e4:19:25:
3c:84:2b:87:2b:bd:dd:19:f8:5f:94:51:15:f3:cb:
2d:03:22:25:5a:73:07:26:b8:4b:a5:59:58:3e:b3:
ab:5d:53:85:bc:18:4e:a5:a4:b8:7b:60:97:0d:4f:
c6:db:4d:91:3d:11:9f:c0:b4:3c:de:79:dc:e2:a7:
19:95:3a:1b:e6:47:8a:d5:6b:fc:d8:51:f0:c1:d0:
b7:56:b9:cd:7e:98:b9:87:bc:5f:0c:b2:b7:b0:f4:
34:f9:c1:07:ec:e6:cf:44:fd:53:ae:70:4e:c5:04:
5c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C3:03:CA:17:EF:0B:37:83:89:DD:E6:68:24:98:FF:4E:C4:AF:D7
X509v3 Authority Key Identifier:
keyid:41:32:72:2F:66:F2:7A:C9:07:2F:DC:7E:93:1F:6E:1A:85:13:CF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:81:0c:ab:57:d0:0d:ff:26:4d:cb:66:de:26:bb:e4:13:c7:
ed:3c:ce:d7:8f:cf:a5:73:55:6c:b3:b9:31:b7:2b:e2:b5:b7:
6f:7a:e4:11:f2:43:49:e7:87:3a:b0:b3:3e:94:84:50:70:24:
8a:65:95:26:a0:e2:fa:9f:d9:b6:a2:eb:cc:c3:c2:55:a6:80:
50:16:ad:00:c2:d6:74:c5:be:01:30:47:7a:d2:5a:45:88:b5:
5a:c4:5c:fb:fc:0b:ca:39:9b:e2:f3:8d:c0:cb:94:e0:11:2d:
ad:7b:cc:3c:db:fc:67:76:a0:5f:f5:f5:4f:7c:5f:92:6d:a2:
c2:cf:cf:99:7e:ec:dd:af:67:55:7f:22:96:b0:04:47:48:18:
18:7b:7c:2f:4a:3b:dd:fc:7f:74:c4:1d:71:18:10:4a:2e:c2:
55:9e:34:2b:7b:4e:cd:9a:c2:b5:d2:17:28:13:77:7f:85:05:
f9:b6:79:27:5f:0b:8a:98:1b:c4:3e:16:99:a8:c2:fb:fb:48:
01:ff:01:fb:00:34:ea:85:ee:d2:0f:85:d8:09:50:08:c1:f1:
fc:09:1c:89:56:18:c5:b0:c5:dc:8b:8b:37:66:72:a8:66:92:
c9:24:54:22:08:ff:ff:90:0e:f2:b7:7f:f4:6b:44:9c:a6:a9:
cd:6a:71:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuIlOn0aVEmD8jgNywvu3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMzI3MjJmNjZmMjdhYzkwNzJmZGM3ZTkzMWY2ZTFhODUx
M2NmYzYwHhcNMjUxMTExMDcwMTUwWhcNMjUxMTEyMDcwMTUwWjAzMTEwLwYDVQQD
EyhkOWMzMDNjYTE3ZWYwYjM3ODM4OWRkZTY2ODI0OThmZjRlYzRhZmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqI4VaTez1TZP1+romU6MbzuB1y4K
8BoQFoCrKZIBOBI66b09nbCn7eh/Bc4khExgxkRBgvPNgB6jr1LheZW9HcpAce3A
AVhp3+KpAnZ2FiTH+hp6j82+hUSZPelb6bq8pe/0RSRx6xo9Vu8m2cJPHof73PBA
XKMd3AHEkN6SngzqyauqeVG7zvxsB1R7tsYM1yrkGSU8hCuHK73dGfhflFEV88st
AyIlWnMHJrhLpVlYPrOrXVOFvBhOpaS4e2CXDU/G202RPRGfwLQ83nnc4qcZlTob
5keK1Wv82FHwwdC3VrnNfpi5h7xfDLK3sPQ0+cEH7ObPRP1TrnBOxQRcUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNnDA8oX7ws3g4nd5mgkmP9OxK/XMB8GA1UdIwQY
MBaAFEEyci9m8nrJBy/cfpMfbhqFE8/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My85ODUwNTYtNzQ4Zi00YjkyLWI2ZmUt
NTRjMzdjMDJiN2VlLzEvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My85ODUwNTYtNzQ4Zi00YjkyLWI2ZmUtNTRjMzdjMDJiN2Vl
LzEvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvoEMq1fQ
Df8mTctm3ia75BPH7TzO14/PpXNVbLO5Mbcr4rW3b3rkEfJDSeeHOrCzPpSEUHAk
imWVJqDi+p/ZtqLrzMPCVaaAUBatAMLWdMW+ATBHetJaRYi1WsRc+/wLyjmb4vON
wMuU4BEtrXvMPNv8Z3agX/X1T3xfkm2iws/PmX7s3a9nVX8ilrAER0gYGHt8L0o7
3fx/dMQdcRgQSi7CVZ40K3tOzZrCtdIXKBN3f4UF+bZ5J18LipgbxD4WmajC+/tI
Af8B+wA06oXu0g+F2AlQCMHx/AkciVYYxbDF3IuLN2ZyqGaSySRUIgj//5AO8rd/
9GtEnKapzWpx1g==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:11:20 2025 by rpki-client