Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
File: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft (raw, json)
Hash identifier: Z5AZaSwbrfME9xh10zAsarxl1LvHJJTDbwjH3tnDDPE=
Subject key identifier: 54:A6:E6:51:5F:8C:90:2E:E9:DC:89:09:5A:B7:9E:12:55:33:35:56
Authority key identifier: 41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
Certificate issuer: /CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Certificate serial: 019A54BF3DD79F5B8A42D56A8FA377C5A15F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
Manifest number: 1598
Signing time: Wed 05 Nov 2025 16:00:10 +0000
Manifest this update: Wed 05 Nov 2025 16:00:10 +0000
Manifest next update: Thu 06 Nov 2025 16:00:10 +0000
Files and hashes: 1: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl (hash: d9Cxe7ZTo7oHD7YYRjOhyHKMzrGhgkz+uOLm/xiqOYM=)
2: tCKYdWD2hSQqFlBHMS87DdwFA_c.roa (hash: P2KIjX/YYHmksRirKKz2Fd1xnQFo0kzJQbDUVFG/Ics=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:bf:3d:d7:9f:5b:8a:42:d5:6a:8f:a3:77:c5:a1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Validity
Not Before: Nov 5 16:00:10 2025 GMT
Not After : Nov 6 16:00:10 2025 GMT
Subject: CN=54a6e6515f8c902ee9dc89095ab79e1255333556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8d:f3:01:d2:22:63:ff:6b:16:d6:a7:d0:1e:
f2:ad:26:55:9a:6e:ce:be:29:d1:a6:54:0d:4d:21:
37:3e:a7:3a:14:2a:ea:1e:a5:f6:e2:cb:c2:8a:a4:
14:c7:1c:62:61:a8:3f:de:70:9f:36:e9:7c:d0:da:
d6:83:2c:12:c0:e1:da:ab:4a:28:43:46:b0:f4:10:
da:05:11:ef:d2:a9:ff:7e:7e:f9:6f:fe:06:89:c2:
e7:95:5e:18:ae:2a:f2:3f:26:60:b8:9e:c2:77:b1:
70:ed:81:0f:a5:ef:8b:d6:be:0f:8d:3a:c5:2e:b4:
28:85:6f:13:4b:62:39:23:f9:68:f9:ed:47:54:ef:
da:fc:eb:8b:48:5e:0e:c0:51:28:35:51:63:9d:b7:
c1:99:0d:b0:96:56:9e:a9:bb:25:dc:22:59:99:6c:
8f:c0:9d:15:ea:70:10:e1:ca:32:84:47:c2:4a:18:
27:05:5a:f9:7b:51:46:a6:b8:af:d6:66:70:9e:37:
c7:af:38:c6:9d:ff:ba:94:b0:ea:9d:9b:e6:f9:a7:
7a:24:a4:b3:cc:73:5d:c5:14:85:35:d0:41:0d:06:
e7:7c:7a:3f:cb:4b:b3:3f:5b:0e:d2:fe:48:f6:00:
47:11:66:d5:3d:b6:fa:f5:54:5f:20:8c:4e:aa:99:
e6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A6:E6:51:5F:8C:90:2E:E9:DC:89:09:5A:B7:9E:12:55:33:35:56
X509v3 Authority Key Identifier:
keyid:41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:74:45:75:46:2e:66:1e:a3:e4:12:12:c4:80:80:e6:5e:43:
98:28:f8:c7:eb:06:e8:b1:8f:0a:c1:c6:8d:13:94:d1:2e:d9:
b1:cf:24:52:49:af:4f:a6:f4:a5:17:ba:27:8b:6d:0e:88:3d:
61:7a:14:df:60:5f:23:66:a2:ff:05:bd:3f:43:7b:09:32:79:
4c:0f:81:7e:23:ce:aa:a0:23:10:b4:9f:04:af:d6:de:e8:31:
a2:de:6c:32:14:71:39:a2:a9:d3:cc:64:41:73:80:84:5c:77:
d0:47:02:60:c7:37:ea:44:cc:fe:75:10:a9:3f:d1:0a:55:b1:
4c:92:1a:e2:05:1f:e9:d0:c1:c4:51:46:83:e3:27:53:59:99:
f2:93:fd:b3:cd:12:5d:21:95:d7:bf:4d:8e:2d:3f:4f:d0:1a:
c9:f4:ff:70:5e:c5:c1:c8:0b:3e:4e:e7:4f:a3:9a:31:c9:47:
81:83:9d:67:9c:de:35:e9:71:3d:7b:62:61:9c:ce:be:e6:b1:
4a:94:89:e0:08:aa:38:0d:15:92:c4:94:66:ec:2a:02:f2:7c:
df:42:62:01:0f:52:ad:93:9a:45:8b:59:fe:b4:70:83:20:2d:
68:91:67:7b:0b:61:68:e2:9a:8d:be:4d:b6:5c:77:0a:eb:e9:
d9:d5:75:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 18:09:46 2025 by rpki-client