Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
File: QM_TpJvHHnSg0L9-NGyomylZehI.mft (raw, json)
Hash identifier: 93tneIPfwXLdK36RORn8G/4AguQXQwb5VG1YWFnesOA=
Subject key identifier: B1:D7:85:5F:B5:F4:8D:46:EB:66:36:9D:02:DB:3F:BF:44:5D:B3:2B
Authority key identifier: 40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
Certificate issuer: /CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Certificate serial: 019A1CBFA5FF8898C6D48D8FECB033385D43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
Manifest number: 16F3
Signing time: Sat 25 Oct 2025 19:01:53 +0000
Manifest this update: Sat 25 Oct 2025 19:01:53 +0000
Manifest next update: Sun 26 Oct 2025 19:01:53 +0000
Files and hashes: 1: QM_TpJvHHnSg0L9-NGyomylZehI.crl (hash: tTin28p9kx8qpKltmJXJoXe7M5+l0/8Os2Xrjf2qOaA=)
2: cOU0f1SCKSAnKUQtSDidcXUui3Y.roa (hash: SxetuqQIAbe3h1o0xhzW+JEeQWRKvCIOYuGwJHKjEXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:bf:a5:ff:88:98:c6:d4:8d:8f:ec:b0:33:38:5d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Validity
Not Before: Oct 25 19:01:53 2025 GMT
Not After : Oct 26 19:01:53 2025 GMT
Subject: CN=b1d7855fb5f48d46eb66369d02db3fbf445db32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d4:7a:84:f1:b5:94:78:01:0d:7b:54:dd:58:
5c:24:e6:4f:6b:c2:00:ea:92:f8:5e:22:41:6d:8f:
f1:cc:c6:31:6d:54:da:69:14:3f:c9:7b:ff:89:59:
f4:25:ee:16:07:0f:68:1d:0f:b6:27:4b:7b:37:f4:
16:f1:aa:b7:90:1b:ce:fe:08:bc:81:b8:c7:00:a2:
ed:18:b4:04:93:e5:fa:3c:d1:5e:ad:f8:54:55:14:
16:3c:d5:93:ca:d5:af:c0:28:2d:dc:56:50:f6:8f:
3d:a1:95:fe:24:bb:85:61:41:37:cb:1d:fc:e2:5d:
38:18:78:00:b7:1f:3c:d3:20:df:0a:ee:94:40:46:
75:15:31:b8:49:a8:60:93:f2:df:7d:68:65:72:bc:
6b:bc:4c:70:4b:69:07:b5:10:e8:2f:21:60:6b:e2:
24:bf:17:0f:5d:a5:07:0b:32:3e:1e:94:2d:3b:58:
1f:82:21:2d:47:d3:e5:e4:c5:b0:40:d1:c7:18:59:
e3:71:ba:ab:b5:39:4a:7d:9f:64:eb:4e:a4:3b:3c:
7a:25:ae:f2:e2:5b:e7:67:b7:7e:74:b1:ed:31:c6:
6a:c7:d6:07:68:d8:23:1d:d9:d6:c4:43:63:5f:e3:
12:aa:03:f5:1a:e1:89:23:47:8d:c2:ff:1c:01:b8:
fe:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D7:85:5F:B5:F4:8D:46:EB:66:36:9D:02:DB:3F:BF:44:5D:B3:2B
X509v3 Authority Key Identifier:
keyid:40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:39:07:ea:9b:8e:47:79:dd:68:0f:e8:dd:f8:eb:2a:eb:11:
68:54:94:2b:bf:02:34:74:cc:db:93:2c:1d:21:02:a0:f1:4c:
10:35:ae:5a:85:fe:1e:be:b2:1f:0e:af:ad:33:3d:a5:c4:ab:
41:3b:0a:6d:62:93:dd:fc:bf:5a:2d:15:82:b3:66:75:fa:54:
84:b2:d3:b8:0d:a2:dd:70:ee:d7:66:b8:4b:72:06:6f:17:8c:
d9:d3:eb:a6:62:cd:dc:f6:75:d5:90:7f:a4:15:ff:ba:7f:93:
c2:a4:c0:71:75:18:c2:2a:e6:ca:7a:e5:92:83:28:8a:3a:bf:
2e:d9:9f:79:e8:11:9a:df:40:32:9d:e5:c9:7b:bc:07:2d:83:
16:f7:8b:c4:09:c6:9f:1a:20:77:c6:6d:67:d3:f7:3b:bf:98:
6d:dd:ba:b3:d3:25:e8:09:6e:ca:25:6b:14:1e:7d:89:70:0b:
85:86:4d:33:4b:2a:44:7a:69:34:cd:8f:9f:87:bd:0b:d7:cf:
c1:44:f9:01:08:2b:9d:a1:44:a7:c8:73:a6:b2:99:cb:44:ae:
ed:b3:46:a7:a7:e1:64:9b:30:0e:14:c8:83:8d:2d:b9:4e:25:
81:96:7d:3e:61:4a:89:56:80:05:b3:07:8d:6a:68:ce:a7:6d:
39:7a:14:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 03:15:02 2025 by rpki-client