Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json)
Hash identifier: KZMIm2rr2C8HGdUyfyvQUPOaUeGTKSxxUlnZ686QXwI=
Subject key identifier: 6A:F6:14:3C:1B:C7:80:32:E8:83:76:70:97:98:AD:B0:A0:DB:03:4E
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 019A50E3335107AE51AD9190945A774F6116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
Manifest number: 1715
Signing time: Tue 04 Nov 2025 22:00:58 +0000
Manifest this update: Tue 04 Nov 2025 22:00:58 +0000
Manifest next update: Wed 05 Nov 2025 22:00:58 +0000
Files and hashes: 1: 0UiMAD3K1Vd_o1ukey_EamOgfsg.roa (hash: /lgJM2bqi/sUpmdCb7crrQqVayvXqEJ8evDSByU3DJU=)
2: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: AG1ZedyGChKDH7SZaaH8h2/gQzl4qq39QrxKBrAT68M=)
3: aVnXSxl3A9imF58Ni6PA9o97Lt0.roa (hash: 1b03aGZyiDI4vZq8xAQwMk9wWsMeLl0pjrQrWqhenxw=)
4: misEsljA75nAA5oIsh_k4GVCg4w.roa (hash: p4BzWp3j9j27Wjuz+V0a+txHqIiOhQ+ybn3eqzzf6rU=)
5: ujK7196Gk_c3ddVaz2vNjb1yuKM.roa (hash: oPbTKsm4Ke6sVA27ztN+8OGkGTX5DqK9hqJSWTYFs3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:33:51:07:ae:51:ad:91:90:94:5a:77:4f:61:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Nov 4 22:00:58 2025 GMT
Not After : Nov 5 22:00:58 2025 GMT
Subject: CN=6af6143c1bc78032e88376709798adb0a0db034e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e7:68:77:73:8c:68:c7:86:d8:3b:cc:5d:6a:
50:3f:59:fc:f4:0e:67:29:e8:b2:14:ed:6d:bb:b3:
a9:28:f4:18:b1:b4:5e:2d:9e:8b:c4:9a:58:5b:9a:
5e:68:7e:f9:95:fa:81:f2:88:ec:37:76:e8:33:ed:
c3:7b:b2:f8:04:5f:45:f9:3e:7d:3a:15:17:8c:3e:
ce:33:81:fa:68:87:60:e6:5a:bc:93:21:fa:22:0b:
d7:18:a2:8d:8f:21:f8:a9:0b:7e:9a:59:a7:c2:46:
a1:25:32:c9:e6:5a:14:2d:61:29:d3:4c:b5:6e:d0:
c8:88:7c:b3:fd:90:45:bc:61:32:e9:e5:1d:8b:0a:
96:69:ba:60:f3:2a:e5:4b:43:94:51:2a:97:2a:84:
3d:1d:a2:ea:a0:30:59:a2:c0:b2:93:63:69:c2:64:
1f:72:aa:9e:c5:33:a7:9e:cd:b0:59:a3:ff:e0:06:
d9:04:3c:4f:08:9e:b4:ad:e5:0b:0a:9a:f5:bd:f7:
44:b4:dc:b6:81:b5:d3:5b:07:dc:d5:71:7a:94:c7:
46:b0:bc:2e:5c:2b:87:30:4a:ff:68:d7:43:e7:00:
1e:06:6b:43:6b:b5:fe:6c:1a:30:f4:0e:26:01:8c:
91:0d:36:3c:27:de:48:dc:4d:25:58:11:de:7a:0a:
74:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F6:14:3C:1B:C7:80:32:E8:83:76:70:97:98:AD:B0:A0:DB:03:4E
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:aa:8a:63:23:03:fe:7f:f2:8a:38:00:35:fc:20:86:71:32:
fa:c4:13:4d:76:69:a9:81:bb:8f:dc:bf:04:a8:dd:8c:48:b0:
27:e0:ef:51:1c:ed:73:94:77:fd:22:63:f0:dc:7d:35:44:1d:
0a:95:e1:f1:42:5c:3d:54:7d:a0:d0:ce:1c:a5:a3:16:18:17:
9c:d8:8b:bb:59:e3:db:c6:3b:7c:58:b3:8d:3e:55:10:a8:64:
70:bc:c0:db:a1:16:bb:cf:f5:9e:9f:43:ec:ba:c5:9c:61:91:
e3:b1:dd:45:e8:62:7b:a4:e9:fd:79:a8:bb:b5:f8:3f:e5:4c:
9f:e5:78:f6:53:df:f4:dc:d1:0a:3b:1f:f0:04:e3:af:e6:42:
34:d2:b1:86:6a:22:04:f3:33:ef:dc:5f:17:1e:46:31:d9:10:
fc:fb:aa:e2:f2:b3:2b:67:a7:db:8b:12:9a:f4:c4:bf:aa:27:
d0:7a:55:b4:6c:b8:ad:aa:fe:05:b0:11:a3:b5:46:fe:6c:23:
ef:a2:aa:6e:80:b3:93:1c:16:2a:82:6a:4e:b1:71:1a:e0:cc:
e5:8e:dd:5c:ec:bd:98:7b:a2:70:74:aa:05:16:a2:41:8e:76:
63:42:7a:ec:6c:25:91:68:8b:bf:34:ec:9d:b0:d0:db:b0:0b:
43:a6:b2:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQ4zNRB65RrZGQlFp3T2EWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwZTM5NTNjNWNiNDUyZjE1OWY4ZTE1MDVmYzcwMmU4ODM2
NTdlNzIwHhcNMjUxMTA0MjIwMDU4WhcNMjUxMTA1MjIwMDU4WjAzMTEwLwYDVQQD
Eyg2YWY2MTQzYzFiYzc4MDMyZTg4Mzc2NzA5Nzk4YWRiMGEwZGIwMzRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApedod3OMaMeG2DvMXWpQP1n89A5n
KeiyFO1tu7OpKPQYsbReLZ6LxJpYW5peaH75lfqB8ojsN3boM+3De7L4BF9F+T59
OhUXjD7OM4H6aIdg5lq8kyH6IgvXGKKNjyH4qQt+mlmnwkahJTLJ5loULWEp00y1
btDIiHyz/ZBFvGEy6eUdiwqWabpg8yrlS0OUUSqXKoQ9HaLqoDBZosCyk2NpwmQf
cqqexTOnns2wWaP/4AbZBDxPCJ60reULCpr1vfdEtNy2gbXTWwfc1XF6lMdGsLwu
XCuHMEr/aNdD5wAeBmtDa7X+bBow9A4mAYyRDTY8J95I3E0lWBHeegp0rQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGr2FDwbx4Ay6IN2cJeYrbCg2wNOMB8GA1UdIwQY
MBaAFEDjlTxctFLxWfjhUF/HAuiDZX5yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEt
ZmE1YWYzOGRlYjVlLzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEtZmE1YWYzOGRlYjVl
LzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABaqKYyMD
/n/yijgANfwghnEy+sQTTXZpqYG7j9y/BKjdjEiwJ+DvURztc5R3/SJj8Nx9NUQd
CpXh8UJcPVR9oNDOHKWjFhgXnNiLu1nj28Y7fFizjT5VEKhkcLzA26EWu8/1np9D
7LrFnGGR47HdRehie6Tp/Xmou7X4P+VMn+V49lPf9NzRCjsf8ATjr+ZCNNKxhmoi
BPMz79xfFx5GMdkQ/Puq4vKzK2en24sSmvTEv6on0HpVtGy4rar+BbARo7VG/mwj
76KqboCzkxwWKoJqTrFxGuDM5Y7dXOy9mHuicHSqBRaiQY52Y0J67GwlkWiLvzTs
nbDQ27ALQ6ayeg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 06:52:16 2025 by rpki-client