Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: Xef+DpzC5Tx8q8to5JYBL05rPNgoZ4tqDVol+vbvrVw=
Subject key identifier: B4:7F:22:53:0D:A6:5D:49:56:D0:F9:01:FE:A4:39:63:29:0D:31:A4
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 019A2108DBC30E42BD53EE0F2D00BF27C6BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 16F7
Signing time: Sun 26 Oct 2025 15:00:19 +0000
Manifest this update: Sun 26 Oct 2025 15:00:19 +0000
Manifest next update: Mon 27 Oct 2025 15:00:19 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: yojz7ei3Vyy1hsqYAcAHFrcnoxd8va/NecOf1eXQZNs=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:08:db:c3:0e:42:bd:53:ee:0f:2d:00:bf:27:c6:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Oct 26 15:00:19 2025 GMT
Not After : Oct 27 15:00:19 2025 GMT
Subject: CN=b47f22530da65d4956d0f901fea43963290d31a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:62:e5:3e:b2:1d:5d:af:62:72:ba:85:7a:84:
ed:91:ea:60:5f:c9:c0:e6:d6:3e:ca:12:e5:bd:3a:
92:96:11:87:66:ae:9a:31:7e:e6:0d:06:51:ce:05:
74:bf:9a:a8:b4:a3:b5:57:b8:67:a8:78:91:85:1b:
70:a0:68:05:8d:36:2f:51:0c:94:b4:c7:63:e2:15:
4d:d6:94:06:4c:8f:e9:92:da:9e:21:9f:41:57:b5:
cd:0c:d9:20:88:1d:ca:b9:6f:73:65:b6:63:dd:5e:
ba:5a:3a:0d:99:52:55:34:ed:dc:5d:8f:c7:a9:bb:
8d:24:42:93:f2:9c:b5:c9:d2:e2:0b:d1:1c:f5:f3:
0e:53:0b:5b:82:36:6b:96:61:de:a8:71:5c:a5:46:
21:58:d8:b0:ea:f7:3d:29:2a:2d:98:b7:9c:27:1e:
f4:79:c0:1d:d0:ba:86:32:c8:8d:d7:67:3e:66:5c:
b6:e4:bc:34:90:04:66:c0:d0:d7:e9:7f:1f:5f:dc:
fd:fc:22:4b:1b:57:9e:c5:4b:c4:77:1d:80:20:e2:
5e:67:85:ee:6f:0c:f5:01:4d:02:29:ef:46:a3:0b:
ee:60:b2:ae:be:f5:36:df:6c:3a:e8:3a:33:bc:7b:
b3:e6:08:f4:e9:d2:5d:c5:ac:24:4a:04:e1:cf:11:
d9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:7F:22:53:0D:A6:5D:49:56:D0:F9:01:FE:A4:39:63:29:0D:31:A4
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:97:ca:ef:36:6b:59:a0:67:e3:63:b5:55:9d:89:87:29:48:
26:b9:3e:7e:9e:27:2a:43:db:56:fd:68:c1:e2:54:0f:cc:aa:
52:96:6e:60:96:ce:1b:cd:44:fe:b6:8b:a7:aa:59:88:a2:ea:
57:b8:44:e9:89:91:d9:9f:e3:27:a7:72:6c:cd:ef:4a:d2:16:
1a:4f:92:2f:7a:42:97:e9:07:f3:93:b2:ac:65:29:03:2b:4e:
ce:58:c5:86:e0:a9:fd:8e:ac:88:b0:ed:ba:4d:92:40:cd:d9:
e5:3d:5a:8d:8d:ca:a2:71:9c:86:d4:a8:4d:7a:70:cc:bb:2d:
1d:11:a7:66:22:b4:6c:48:07:5e:e6:40:af:0a:cf:9a:c4:59:
b0:1c:65:be:bd:10:12:6a:6a:1b:4a:dc:54:69:f6:03:e6:e2:
d0:2a:d8:0e:09:aa:68:6b:55:fe:ba:06:6a:37:a4:57:eb:f1:
6a:f9:72:ca:cf:5b:72:21:1c:66:fb:f6:58:64:a9:f3:62:90:
7f:18:c2:62:92:19:0a:f0:9c:ea:5f:ec:1f:a3:bf:1a:cb:c4:
b1:78:60:c0:b9:49:8a:85:a2:c6:bd:6e:98:f4:98:2a:bd:a9:
2d:99:9e:87:e9:54:4b:0d:3f:7c:2a:6b:77:70:c4:51:7b:f6:
4f:1e:59:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 20:47:07 2025 by rpki-client