Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: OYGaLdSWGjQuKCFmCbt+u2ZkHLDQViow5h7uubhXlKY=
Subject key identifier: 8B:ED:2A:2C:8C:A5:89:8A:9A:98:C5:EC:44:A7:6D:6B:5A:79:64:DC
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 01995D20FB15DAEEFB19CE0DAF7649F1A201
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 0A14
Signing time: Thu 18 Sep 2025 14:01:06 +0000
Manifest this update: Thu 18 Sep 2025 14:01:06 +0000
Manifest next update: Fri 19 Sep 2025 14:01:06 +0000
Files and hashes: 1: PTvQgS1qnjLwo9s4LdFb_Ohs-14.roa (hash: ISrdGe09G63GrIhvFHUR6KGbQ/gtnJbbuoeTtm56a1E=)
2: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: yG0thMU6JtaspFIbS/56XZiIrG2B2c2uwV3oDQBuU5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 13:49:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5d:20:fb:15:da:ee:fb:19:ce:0d:af:76:49:f1:a2:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: Sep 18 14:01:06 2025 GMT
Not After : Sep 19 14:01:06 2025 GMT
Subject: CN=8bed2a2c8ca5898a9a98c5ec44a76d6b5a7964dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a3:44:e8:ee:24:ad:c5:49:00:b6:8f:7c:9f:
7c:e8:82:73:12:fc:8a:18:7c:b7:a9:5a:c1:c9:04:
e8:ee:c6:ab:57:d4:f3:23:c6:13:0d:ea:c8:de:f5:
1b:b9:d5:0b:65:a6:18:24:ce:5a:ec:a9:39:03:33:
ac:46:78:85:2a:33:00:e6:d4:b8:17:79:68:29:6f:
8a:a7:bc:c4:73:8d:dc:3d:4b:94:5f:49:74:39:99:
59:38:17:25:3c:72:29:92:fd:d1:18:9e:a2:10:82:
a4:f2:09:9a:d1:2a:03:0c:7d:60:94:6d:db:97:e7:
eb:c6:06:99:28:ad:d2:10:9e:77:22:26:17:dc:02:
b0:80:30:b3:8a:fb:ec:0b:77:58:12:90:02:32:3a:
ea:80:6b:f4:ad:1f:e0:cc:82:50:bf:76:e3:0d:f6:
42:59:72:56:e3:43:8f:19:14:6f:99:59:1e:e3:35:
3b:9e:14:83:a5:ad:b4:e4:60:3a:9c:6e:2c:e0:c5:
62:89:5e:c6:bc:40:38:fc:eb:9d:38:4b:58:7b:9e:
38:a5:76:d5:31:d7:81:4f:a7:78:44:df:bd:da:21:
a2:c0:05:26:6b:61:7c:00:67:7a:4d:12:c3:10:9a:
02:87:5c:25:fd:38:9a:e8:63:0d:28:1f:e7:a7:54:
10:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:ED:2A:2C:8C:A5:89:8A:9A:98:C5:EC:44:A7:6D:6B:5A:79:64:DC
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:7d:95:ca:0c:24:e7:0a:ff:9a:1c:d9:ed:05:e7:d8:0b:90:
13:0c:7c:2c:75:2f:49:38:44:d8:11:83:a4:9b:88:f2:87:74:
2d:2c:c6:f2:ab:66:13:53:59:12:b0:48:34:6f:37:fe:d9:7c:
2c:02:e1:77:df:ba:6a:eb:07:90:12:f7:dc:59:f2:03:ce:4e:
4a:33:01:85:cb:57:c0:8c:b1:6a:26:a4:9d:88:8e:a9:17:c3:
e0:5f:b1:8c:a2:28:de:97:3e:d0:b2:ed:ed:13:e9:4c:3c:01:
b4:f8:63:37:3b:c1:dc:88:fb:b3:67:dd:2c:a9:e1:33:aa:66:
f6:a8:dc:45:05:fc:62:a4:05:b9:41:68:09:88:83:5a:b8:2d:
86:18:58:7d:d8:d1:69:ad:ad:d7:a9:68:ff:05:8c:29:e0:a0:
b6:e9:4c:f6:7a:3f:91:1d:6e:76:3e:3c:67:b9:9a:84:c7:48:
5f:21:5a:fe:b6:b3:77:96:f9:6c:8a:2e:e8:62:c6:62:2f:05:
b5:31:dd:20:ff:b5:18:3d:89:01:ef:71:a4:81:3c:28:4e:af:
5f:cf:4c:e5:fa:02:7d:6e:c6:1b:8a:71:c1:1d:2f:c1:b9:5b:
51:48:43:8b:c6:2a:b5:65:ea:0e:05:e0:73:79:3d:98:2a:b5:
fc:a9:dd:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 15:21:23 2025 by rpki-client