Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
File: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft (raw, json)
Hash identifier: BwSnrwKqPWmEjmLy+81wfLspt17dQ5dPncx0nk/bpr4=
Subject key identifier: BA:66:6F:6D:23:BB:0C:EF:8A:44:B4:09:1A:8D:AB:DB:83:39:74:09
Authority key identifier: 42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5
Certificate issuer: /CN=42f9a96952777f1074338303ecb65025c4e2b8b5
Certificate serial: 0199394B39B21AB0D83A87A5C45E2B35C286
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
Manifest number: 07B5
Signing time: Thu 11 Sep 2025 15:00:55 +0000
Manifest this update: Thu 11 Sep 2025 15:00:55 +0000
Manifest next update: Fri 12 Sep 2025 15:00:55 +0000
Files and hashes: 1: HF0LqW6Nn7yrC4zWZGNegGbZJQI.roa (hash: ZufShUH8VmdZ1SaW4ZA1zfhMayCSiwCUVqOn6kPrIf0=)
2: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl (hash: +GtN/GszbeOU+QIBZAY6vVt10AR4fANjLoclpQKIAYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 14:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:39:4b:39:b2:1a:b0:d8:3a:87:a5:c4:5e:2b:35:c2:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f9a96952777f1074338303ecb65025c4e2b8b5
Validity
Not Before: Sep 11 15:00:55 2025 GMT
Not After : Sep 12 15:00:55 2025 GMT
Subject: CN=ba666f6d23bb0cef8a44b4091a8dabdb83397409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:52:61:2c:6e:da:d7:7a:f3:0e:69:ec:12:fe:
c2:c4:e2:c7:09:b8:c9:f4:c7:54:59:10:c1:94:66:
1b:7d:54:05:2e:ae:4f:4b:97:35:00:cf:68:d9:2d:
8c:e2:e5:c2:27:da:ba:bf:ff:64:33:cc:46:7a:b2:
94:bf:a5:cf:b9:36:ff:16:f4:a4:cc:72:53:f2:e4:
c7:16:59:ce:5a:b6:f8:4a:a5:bd:ef:27:ba:6b:40:
6f:ef:7e:0e:da:33:13:8d:d7:f7:d5:c8:da:13:7f:
f1:df:6b:27:70:a5:27:74:2b:23:87:35:fe:78:cf:
c9:d0:e9:3a:4b:55:2d:60:37:7d:a7:3f:d0:0a:1e:
e7:95:cc:6e:12:fa:af:37:ac:d1:de:3d:47:1e:f5:
b6:fc:72:de:db:68:7a:e6:4f:cb:2d:ee:41:be:c2:
b8:a3:41:02:22:e8:f0:4e:6e:f4:60:c1:be:3f:51:
6f:03:1b:ab:0b:3c:26:15:32:e3:1b:ae:9f:41:75:
72:21:9a:82:b4:53:00:3d:db:3d:c6:6c:bb:f9:17:
f1:69:ec:84:a6:7e:e5:bb:25:ed:cf:a4:48:52:07:
47:19:1f:de:09:d6:74:9f:31:0d:28:07:23:44:61:
95:56:07:2f:e0:74:7f:d5:ac:07:f9:0b:e6:ee:6f:
f6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:66:6F:6D:23:BB:0C:EF:8A:44:B4:09:1A:8D:AB:DB:83:39:74:09
X509v3 Authority Key Identifier:
keyid:42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:66:40:84:dc:49:a3:f2:9a:c9:31:45:c2:9c:8e:c5:12:04:
9e:61:15:d3:16:61:27:0a:84:49:f8:05:2b:f6:5f:23:bd:e9:
38:6f:5c:db:48:3f:d1:b6:37:0c:30:03:e5:bf:3f:61:a2:9a:
ac:7e:66:26:6d:d1:dd:ef:12:9a:c6:e7:0d:10:dc:bf:f5:f2:
a8:00:da:a6:93:1e:a1:1a:38:86:92:08:f5:ce:bb:fc:d3:2d:
e1:51:8c:b7:ab:65:5b:3b:73:4b:49:23:d9:3b:e9:1c:3f:b8:
8e:54:95:f8:e2:b8:f8:3d:81:1d:72:d8:0d:b6:94:c9:47:f1:
2c:90:52:e1:4b:83:63:38:64:96:f7:36:74:6c:59:97:03:e9:
06:d5:04:a5:66:20:4f:f8:b1:83:bd:67:dd:07:1a:46:2c:71:
c8:7a:d1:d5:ef:ae:6a:24:9a:f7:a0:8d:51:19:2e:b9:17:7c:
a6:7f:a0:12:54:c3:34:eb:a5:99:12:94:ed:53:0c:83:1c:80:
31:1f:48:e9:9f:63:72:6a:00:58:2c:64:7a:36:b8:2f:aa:a2:
f1:e4:aa:71:e5:cc:05:cd:c3:bb:42:53:d7:3c:07:71:37:5c:
dd:52:47:81:56:be:b7:77:ea:e2:70:70:e0:ef:df:6e:40:2f:
5c:ec:73:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 21:38:06 2025 by rpki-client