Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
File: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft (raw, json)
Hash identifier: C7HSQbLaO3Rdi9mQuDIwXVkA94XkphUhuOsPs1Q8fNQ=
Subject key identifier: 15:E4:63:17:1D:23:C4:45:30:0C:6C:43:A2:BC:1C:A5:C9:57:70:2C
Authority key identifier: 40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
Certificate issuer: /CN=4092c47db8a21931154605d576c3b7341d06b4b4
Certificate serial: 019A722628B6166C7E74F0BF452D937D221E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
Manifest number: 14A8
Signing time: Tue 11 Nov 2025 09:01:34 +0000
Manifest this update: Tue 11 Nov 2025 09:01:34 +0000
Manifest next update: Wed 12 Nov 2025 09:01:34 +0000
Files and hashes: 1: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl (hash: O1iCurWuphaia0nlWz/W6UAMbJvGiszkI9n7Vn6hGJo=)
2: knkqtZcmX5gSTiCaXxHQZfriQgw.roa (hash: E9ZLKfrMdp8ZIK1kQ0GbAJkgNgAmhxZR6M5lJ1uXi1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:28:b6:16:6c:7e:74:f0:bf:45:2d:93:7d:22:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4092c47db8a21931154605d576c3b7341d06b4b4
Validity
Not Before: Nov 11 09:01:34 2025 GMT
Not After : Nov 12 09:01:34 2025 GMT
Subject: CN=15e463171d23c445300c6c43a2bc1ca5c957702c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:73:c7:91:a4:b9:2b:5d:25:62:d1:fd:c3:74:
98:e0:e8:ba:d9:b2:81:a6:5d:86:c6:46:cb:6c:8f:
e6:43:56:17:20:79:8d:5c:f8:61:24:a9:af:ad:ea:
a0:14:e2:93:ba:e1:f7:1e:a5:b0:fa:ce:32:fa:75:
3e:24:ec:e2:36:54:53:10:d7:fd:35:c3:a5:a5:30:
20:e6:6c:c7:05:0d:78:16:c6:e2:f0:e3:96:3a:db:
57:f9:78:3c:fb:13:a6:09:63:b2:97:66:45:06:b6:
96:f7:07:6f:1c:2a:b7:f5:e0:08:c9:8e:5b:d0:50:
b9:a5:10:32:59:5b:f5:eb:57:66:e3:94:cf:24:75:
77:c3:9b:ae:94:1e:e1:5d:80:84:2a:d5:be:45:8b:
cf:4a:0d:e8:95:d7:67:88:ab:08:76:cb:7d:e5:36:
eb:45:40:4b:de:29:19:07:f8:bf:80:42:72:e5:1e:
a0:63:41:86:64:69:3b:f8:52:5a:e5:94:ce:91:e1:
be:57:0c:0c:c0:ce:12:d5:b9:98:e5:e6:83:a5:31:
d0:3c:54:0d:fc:ef:9a:a7:05:3e:00:98:db:be:4e:
ca:87:4c:39:f4:09:7b:4d:5a:27:03:ba:da:d0:03:
0d:af:05:4e:5d:85:fd:bf:19:2d:08:1e:32:d0:40:
af:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E4:63:17:1D:23:C4:45:30:0C:6C:43:A2:BC:1C:A5:C9:57:70:2C
X509v3 Authority Key Identifier:
keyid:40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:f5:fa:4f:22:2b:3a:26:ea:26:23:90:d1:13:40:a1:68:ff:
ba:41:71:32:2b:ab:13:1d:aa:60:6c:f8:cb:bd:54:93:6b:cf:
8f:ca:22:a0:0d:bd:5a:b1:f2:fa:c2:44:14:ac:36:d7:24:3c:
3a:b6:10:a5:ac:0a:a4:81:89:f5:7c:09:2c:a8:1c:72:6a:e2:
85:64:88:41:85:27:c2:5d:10:33:b7:76:46:72:ff:f5:fc:93:
d5:50:33:da:1a:ac:26:71:92:ee:91:83:5c:ea:5b:1f:22:38:
97:e9:c8:bd:50:c6:1b:51:a6:0c:48:e3:1a:74:26:ae:21:ee:
91:14:86:4e:f2:10:12:0a:35:2e:c0:71:10:a3:96:06:b3:d5:
df:38:a5:91:7f:13:8d:01:db:71:1f:c5:6c:ca:4e:a7:cb:3d:
e3:c5:5d:17:10:78:c0:ce:fb:01:2f:a1:e4:cb:22:01:10:27:
e3:96:e5:8c:0c:90:ae:f2:8b:05:64:24:63:46:2c:a8:ef:9c:
c0:3e:79:ca:df:db:39:81:af:68:4b:50:d5:1c:17:3e:cf:fd:
4d:eb:9d:af:98:b2:30:55:01:bb:be:19:2b:c1:64:ae:9d:8e:
60:78:1f:e5:a6:18:aa:bd:ff:7c:c3:0a:05:20:1d:65:40:e7:
15:01:c9:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:20:36 2025 by rpki-client