Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: ocHEDC3TVsaERd15XzHU3r4piUxNtJF6tqbjvV0TinI=
Subject key identifier: 46:A0:94:75:3E:8D:EA:EB:60:9D:EF:5A:DC:87:80:8A:D8:A2:64:E4
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 019885449142410CB8B19E39E7861C709147
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0D41
Signing time: Thu 07 Aug 2025 16:02:00 +0000
Manifest this update: Thu 07 Aug 2025 16:02:00 +0000
Manifest next update: Fri 08 Aug 2025 16:02:00 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: F2FDGveLxJ/UmQVt5KFzfR2DmuQs1OI0CciVRF2Eb4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:44:91:42:41:0c:b8:b1:9e:39:e7:86:1c:70:91:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Aug 7 16:02:00 2025 GMT
Not After : Aug 8 16:02:00 2025 GMT
Subject: CN=46a094753e8deaeb609def5adc87808ad8a264e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:d9:ab:d7:b8:f5:a8:52:5f:0d:ae:52:36:
0a:60:e5:7d:7a:bd:54:53:fe:04:5b:08:91:77:55:
05:ec:39:cf:e2:73:7a:de:0a:be:46:c0:87:ef:90:
e8:36:63:20:9a:dc:31:bc:26:bb:a8:be:fe:b4:fa:
73:e7:fb:32:e6:7e:6b:02:13:43:22:ee:a2:8f:fd:
49:07:97:eb:1a:c7:33:ea:ad:83:81:90:6e:8c:e0:
c3:3e:84:b1:7f:d1:57:11:7d:9d:75:e1:52:83:02:
fe:74:03:a3:52:61:a0:d2:e3:e3:eb:96:ed:6d:d6:
4e:2d:3b:a0:46:68:41:f6:2e:e0:ef:bc:0c:b4:44:
c1:47:5c:10:a0:63:c0:5b:5f:5b:60:eb:7f:8c:2a:
c3:21:a5:a8:72:b1:0a:dc:cb:bc:95:2a:48:de:df:
6d:1f:50:40:a3:a9:c1:23:19:8f:b4:42:6c:77:c7:
f6:15:fd:43:75:92:03:b5:2b:09:a0:2f:3c:ed:f8:
33:1a:45:36:14:89:4b:dc:ea:59:c5:53:45:ad:fb:
b0:65:85:b2:f1:9c:d0:2e:df:e2:24:fe:bb:1b:24:
64:5d:e7:74:31:76:d5:52:1c:e5:61:8b:94:ea:e0:
d2:88:cb:cc:21:f6:9d:36:28:5f:ac:bd:60:58:69:
51:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A0:94:75:3E:8D:EA:EB:60:9D:EF:5A:DC:87:80:8A:D8:A2:64:E4
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:c1:09:e8:83:20:cb:91:76:6e:69:aa:09:e4:78:92:61:3f:
67:b0:04:36:57:db:cd:47:4c:fb:f2:8f:87:7f:d7:c4:5c:87:
e5:2c:21:eb:35:40:6d:aa:d1:8e:5e:8d:54:44:01:cf:a9:f9:
71:49:1a:fb:d3:cc:46:38:17:b8:35:ad:24:06:f9:be:b1:f0:
3f:2c:4d:09:ab:f3:34:71:21:4a:f8:90:a4:e9:50:99:f5:46:
79:5e:ed:58:1b:79:f5:2c:ba:39:71:56:f5:c6:fb:a2:94:74:
a6:67:32:2d:e8:d6:52:47:7d:8b:89:ab:98:4a:34:d0:f5:28:
44:58:63:e3:4f:33:fd:ec:f2:08:fa:11:01:4a:15:a1:cd:ff:
7a:6e:23:a0:57:a1:6d:42:6c:85:dd:c7:2e:ea:3b:6a:79:3e:
b6:1f:79:32:83:ca:01:2a:77:39:5b:29:2a:fc:1a:b8:b3:88:
c7:3d:22:b0:cc:2f:fb:78:c2:7c:5b:b0:04:06:81:21:a2:2b:
23:98:7a:ec:0f:8d:a5:1d:17:e0:11:b8:5e:a3:66:24:90:29:
b2:7e:9a:4b:52:b0:8d:53:d9:87:51:91:bb:7d:16:aa:89:18:
a5:bf:8d:89:11:d8:47:da:8d:59:33:34:73:46:ce:19:e5:91:
c2:b2:58:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiFRJFCQQy4sZ4554YccJFHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYWE5NDlkMzFjNjY4ODhjYjQ3NThmMjNkZDVmMzEyMTQx
ZGVjNGEwHhcNMjUwODA3MTYwMjAwWhcNMjUwODA4MTYwMjAwWjAzMTEwLwYDVQQD
Eyg0NmEwOTQ3NTNlOGRlYWViNjA5ZGVmNWFkYzg3ODA4YWQ4YTI2NGU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfTZq9e49ahSXw2uUjYKYOV9er1U
U/4EWwiRd1UF7DnP4nN63gq+RsCH75DoNmMgmtwxvCa7qL7+tPpz5/sy5n5rAhND
Iu6ij/1JB5frGscz6q2DgZBujODDPoSxf9FXEX2ddeFSgwL+dAOjUmGg0uPj65bt
bdZOLTugRmhB9i7g77wMtETBR1wQoGPAW19bYOt/jCrDIaWocrEK3Mu8lSpI3t9t
H1BAo6nBIxmPtEJsd8f2Ff1DdZIDtSsJoC887fgzGkU2FIlL3OpZxVNFrfuwZYWy
8ZzQLt/iJP67GyRkXed0MXbVUhzlYYuU6uDSiMvMIfadNihfrL1gWGlR6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEaglHU+jerrYJ3vWtyHgIrYomTkMB8GA1UdIwQY
MBaAFECqlJ0xxmiIy0dY8j3V8xIUHexKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgt
ZmQxMWJiMWNjODJkLzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgtZmQxMWJiMWNjODJk
LzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkMEJ6IMg
y5F2bmmqCeR4kmE/Z7AENlfbzUdM+/KPh3/XxFyH5Swh6zVAbarRjl6NVEQBz6n5
cUka+9PMRjgXuDWtJAb5vrHwPyxNCavzNHEhSviQpOlQmfVGeV7tWBt59Sy6OXFW
9cb7opR0pmcyLejWUkd9i4mrmEo00PUoRFhj408z/ezyCPoRAUoVoc3/em4joFeh
bUJshd3HLuo7ank+th95MoPKASp3OVspKvwauLOIxz0isMwv+3jCfFuwBAaBIaIr
I5h67A+NpR0X4BG4XqNmJJApsn6aS1KwjVPZh1GRu30WqokYpb+NiRHYR9qNWTM0
c0bOGeWRwrJYUA==
-----END CERTIFICATE-----
Generated at Fri Aug 8 00:02:03 2025 by rpki-client