Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json)
Hash identifier: EKWPB12LsLB6Y5jPUJSUkLWdHcvzltboLUfPboMMhkM=
Subject key identifier: 0C:0B:A0:A0:B6:2E:0F:BF:F0:EB:67:84:6D:35:D4:27:34:D1:FF:3A
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 019A714A1A29BBC627985ADC769B1937529D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 05:01:13 +0000
Manifest this update: Tue 11 Nov 2025 05:01:13 +0000
Manifest next update: Wed 12 Nov 2025 05:01:13 +0000
Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: 5QXId/4xEVS326IhTWGmsX7Cf/pR/Wyg+uEw5PHIvIE=)
2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:1a:29:bb:c6:27:98:5a:dc:76:9b:19:37:52:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: Nov 11 05:01:13 2025 GMT
Not After : Nov 12 05:01:13 2025 GMT
Subject: CN=0c0ba0a0b62e0fbff0eb67846d35d42734d1ff3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8d:69:3c:4d:57:a0:b0:d4:14:29:b2:e5:af:
12:22:1e:c1:09:8f:c3:f2:e9:95:a6:de:fb:e0:1e:
4a:11:6c:13:4e:69:6a:24:71:c8:c6:60:73:17:98:
13:1d:4b:7e:7f:ac:13:f8:ca:b5:0d:5b:62:ea:97:
ed:07:a2:56:9e:56:84:8c:cb:48:e9:d0:8d:f9:dd:
f2:16:19:d6:87:53:a9:a9:c3:55:01:4a:24:ae:fd:
1e:a8:96:ea:70:7e:a4:f7:dd:66:0a:38:7d:d3:c2:
e1:7b:de:2b:28:0d:52:b2:bb:6f:89:95:10:9b:ba:
84:49:b1:57:d6:99:b0:ce:54:0f:70:00:bb:7c:12:
f5:41:74:7e:df:dc:f5:93:28:0f:a3:d7:4f:1b:14:
16:51:f8:c7:04:bf:c0:71:05:a5:e1:89:a8:6e:1d:
2b:ab:82:d6:fc:e8:b6:2a:5c:20:d9:9a:1e:71:67:
1a:9f:ec:1a:6e:97:5d:03:7b:36:cc:f0:d1:f5:de:
82:aa:2d:37:9a:0a:27:ac:73:f6:0f:bb:59:cc:3f:
9e:b1:b8:bd:a9:77:2b:4f:82:0e:77:a6:19:b0:b7:
85:b4:ac:ae:72:63:77:0a:89:5b:55:53:2e:d6:4e:
79:1b:78:52:7a:ce:98:7e:92:4f:7c:66:ff:6b:33:
2e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0B:A0:A0:B6:2E:0F:BF:F0:EB:67:84:6D:35:D4:27:34:D1:FF:3A
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:35:49:8a:16:b5:6b:b4:f8:ea:e9:45:81:af:35:64:23:7f:
1a:5b:07:a2:51:7d:fe:5d:78:06:c1:a9:52:40:eb:01:bd:74:
ee:33:23:ba:47:a4:5e:56:48:a2:fa:28:1f:83:e3:a9:b5:69:
f0:89:65:5f:cb:d9:2f:98:f1:5d:ff:12:45:c1:ca:03:15:a8:
f2:63:ef:4a:a0:d3:4b:c1:36:7c:85:cd:37:bb:52:dc:d4:e5:
40:71:f7:a4:a3:88:80:f6:6a:be:ac:b8:bb:1a:97:38:40:a5:
3a:32:b6:e5:75:9e:ba:3c:70:2c:9a:5a:38:2a:5a:c6:ab:e1:
ee:17:4e:9f:3c:ee:6a:ce:c2:5d:dd:35:16:5a:5f:e5:0c:4a:
2d:80:0d:8c:01:24:97:b5:42:4e:ee:2f:f8:3a:a2:d3:dd:c6:
08:28:14:69:8c:0f:34:ca:58:e3:7e:ff:6f:5d:72:1a:70:e7:
64:7e:4d:db:97:a5:c5:58:6a:2f:ce:7e:bd:67:c2:a3:82:cb:
7f:cf:d6:0f:37:a3:6c:d7:2a:de:c7:33:cd:85:8e:35:a3:d1:
36:ad:0c:80:90:41:79:aa:77:63:eb:02:e6:ee:c8:00:61:3c:
6f:17:d5:93:28:4c:12:d9:c2:3c:d7:a8:88:23:d7:9b:1d:8d:
ea:96:c8:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:25 2025 by rpki-client