Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
File: QHSniVh1zyxnhUT2zm9LI59JKfs.mft (raw, json)
Hash identifier: 7e4iebkFIfgJiew8EdXfMzBDJF9dAHYBKwHrelLkrk4=
Subject key identifier: 6B:C8:55:A8:E9:1D:57:49:D0:E4:71:DD:CE:57:96:7E:E0:68:D3:CE
Authority key identifier: 40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
Certificate issuer: /CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Certificate serial: 0199F80DB95B502D86D278C869CEE4510818
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
Manifest number: 16DF
Signing time: Sat 18 Oct 2025 16:01:12 +0000
Manifest this update: Sat 18 Oct 2025 16:01:12 +0000
Manifest next update: Sun 19 Oct 2025 16:01:12 +0000
Files and hashes: 1: QHSniVh1zyxnhUT2zm9LI59JKfs.crl (hash: +0sJD8SdjXlZKZrWebTgqblULFVV1shzELWauPetaGs=)
2: wQqY6GzbDftcPzXJa8kVYZmeUUk.roa (hash: JDvmaY6VGQlVNt+ZPlklOrTqgJ6a+KsUqH/Pcr7SIcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Oct 2025 16:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:f8:0d:b9:5b:50:2d:86:d2:78:c8:69:ce:e4:51:08:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Validity
Not Before: Oct 18 16:01:12 2025 GMT
Not After : Oct 19 16:01:12 2025 GMT
Subject: CN=6bc855a8e91d5749d0e471ddce57967ee068d3ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:23:b2:e6:f1:70:dd:8d:b0:cc:4a:7b:b1:88:
7a:2d:11:bf:08:40:99:21:d5:57:77:1a:69:10:db:
de:b0:4e:5d:36:11:e0:fb:d5:d3:fd:28:3b:64:1b:
90:05:f2:06:10:44:62:1f:fc:da:53:74:a4:bd:52:
15:4a:c9:cf:23:e9:5b:54:a3:98:42:0f:0d:04:95:
aa:77:0c:7d:bf:95:16:04:d5:b9:f2:99:ba:6d:27:
e0:33:af:18:9e:f0:44:fa:dd:1f:56:7a:db:00:f4:
64:0a:eb:b8:5f:4a:0e:37:40:80:2d:d1:c7:05:84:
1e:85:4e:33:2b:07:fa:8d:1a:8e:c8:d8:15:29:1e:
21:ce:44:c4:e5:51:88:8a:39:18:f1:b9:f0:de:cf:
60:32:cc:5e:37:26:c4:41:7e:d2:96:93:82:68:16:
1a:52:a4:9d:00:94:23:04:ba:00:70:3c:24:cb:06:
53:43:a5:b2:7f:e7:44:e1:1a:e1:e9:0d:b9:15:fa:
89:23:6c:dc:95:66:da:1d:ca:29:c6:43:bc:74:93:
65:a6:78:4e:ec:4d:9c:78:db:1a:26:db:e6:14:52:
76:09:cd:1a:26:b8:1d:36:d4:d0:b7:02:2f:06:6e:
93:ac:25:12:8b:e2:24:f5:25:b9:fe:aa:60:d6:3b:
66:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C8:55:A8:E9:1D:57:49:D0:E4:71:DD:CE:57:96:7E:E0:68:D3:CE
X509v3 Authority Key Identifier:
keyid:40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:48:45:4a:9b:5a:a3:90:f8:7b:d5:0a:de:08:28:5e:e7:bb:
c5:ca:8d:b9:d9:0c:3d:e8:a7:ce:e2:86:9e:88:b9:0c:60:2b:
b0:56:29:15:1e:1a:c8:25:a4:4c:d4:97:fd:f3:0d:72:f1:2c:
24:c7:2d:16:9c:76:84:b3:cb:61:86:ba:0d:34:e3:0a:cc:5d:
24:e5:3e:11:7a:41:10:f5:80:95:1c:68:46:b5:34:ca:d7:90:
e0:58:05:d5:a6:93:e3:ee:aa:8c:cd:4b:b6:20:28:81:ac:1b:
64:46:cc:62:3d:ba:5c:1f:75:fd:0d:47:41:6e:a4:b5:8d:20:
23:20:3a:46:cf:83:a1:bd:84:bf:66:36:8d:a4:8e:29:8f:22:
dd:5f:96:01:9a:d5:f2:67:42:40:13:0a:a9:52:ff:6d:ae:64:
00:97:ca:cd:0e:82:46:bb:af:ee:d2:e0:a7:0f:b3:93:2c:9a:
1c:29:83:ac:25:bc:cc:d1:21:8d:f7:28:6d:26:e5:e4:77:9a:
91:e1:e7:44:90:ec:fc:b1:e1:96:40:c4:fd:eb:de:07:0b:10:
3b:88:21:11:82:9f:dd:db:fd:ae:27:be:72:9c:74:a8:9d:cc:
c8:ea:f6:c3:d7:21:90:d6:94:09:91:87:bd:bc:2c:ad:4c:92:
64:7f:cb:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 18 23:36:33 2025 by rpki-client