
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
File: QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft (raw, json)
Hash identifier: qRENgmkNVe63WJ8ygOIO4fzpbz6HWrRPvjWztPTA7ic=
Subject key identifier: 75:7D:BC:27:39:E7:1B:24:14:8A:EE:4D:28:80:AE:15:DB:46:7F:4E
Authority key identifier: 40:7C:70:83:46:0E:1A:4C:72:C4:BC:42:76:31:3D:3A:85:94:4A:87
Certificate issuer: /CN=407c7083460e1a4c72c4bc4276313d3a85944a87
Certificate serial: 01988279C0D302A16807BD546B8957F689E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
Manifest number: 0DAF
Signing time: Thu 07 Aug 2025 03:01:13 +0000
Manifest this update: Thu 07 Aug 2025 03:01:13 +0000
Manifest next update: Fri 08 Aug 2025 03:01:13 +0000
Files and hashes: 1: GQOl6LTvNyPMyG3KjW9Ajp0Bvpw.roa (hash: eZX/fpaYpvDnXloavaVJKtIU2XKfpzNfzwR74TFia7o=)
2: QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl (hash: 0Xpq1P9i9vnEQ95oVLQQ4Xh8F1c1RDEnNp9ZyL9By2o=)
3: b5Ug6NPJo2XtezY8UVzxnmPE-i0.roa (hash: VB+B1HYKvDBDwa8bPpxYYXoTuHADEZJRpgBpaSqbPu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:79:c0:d3:02:a1:68:07:bd:54:6b:89:57:f6:89:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407c7083460e1a4c72c4bc4276313d3a85944a87
Validity
Not Before: Aug 7 03:01:13 2025 GMT
Not After : Aug 8 03:01:13 2025 GMT
Subject: CN=757dbc2739e71b24148aee4d2880ae15db467f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:11:a9:0d:7c:07:41:d3:4c:23:a1:bb:53:56:
6b:0e:8f:98:40:72:8e:16:c8:63:3a:cf:36:72:74:
02:f2:31:8f:c6:8d:52:be:8c:8e:27:8e:9a:dc:b0:
ad:e0:a7:21:bf:03:fa:25:9d:7a:26:95:06:09:ec:
c2:bf:f0:db:bb:00:ce:84:15:1f:73:45:d6:fc:ff:
72:97:69:dd:68:c5:19:9f:ac:e0:6d:f3:82:6b:5b:
98:a8:7c:89:65:db:ce:2a:b3:03:f7:ea:69:e9:84:
97:2c:1b:d5:26:83:d6:17:17:7e:45:7d:37:bb:fe:
ca:f3:c4:55:0d:45:44:95:9d:0f:86:b2:5f:53:d5:
44:6f:5e:d2:4f:40:68:88:26:62:a9:7d:ca:aa:99:
16:79:f0:58:99:bd:4d:2a:94:8b:9e:0c:82:86:ca:
b6:d7:77:07:6a:af:4c:a4:d6:5d:b1:3a:87:bf:6b:
c2:78:84:44:c4:f1:75:7a:b1:bc:50:fd:42:aa:b5:
97:fa:c1:4a:cf:16:06:95:03:f6:15:ce:6f:11:12:
9c:71:bb:a3:04:a5:3e:7d:9e:da:1c:30:fb:8c:b4:
4f:00:d9:ab:e6:7b:3c:19:da:3f:80:59:b5:c8:56:
3f:96:97:54:26:35:92:67:78:88:42:46:e5:81:a9:
d1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7D:BC:27:39:E7:1B:24:14:8A:EE:4D:28:80:AE:15:DB:46:7F:4E
X509v3 Authority Key Identifier:
keyid:40:7C:70:83:46:0E:1A:4C:72:C4:BC:42:76:31:3D:3A:85:94:4A:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:28:f2:d7:b8:6d:c4:44:5c:4e:3b:db:26:bf:4e:7b:4f:24:
e2:6a:c4:bc:ba:9c:1b:69:b5:ce:98:36:17:27:ca:11:3f:b3:
62:ae:9e:23:19:47:80:3c:d7:b8:6c:6a:ea:38:87:53:98:7e:
25:42:35:aa:97:11:30:66:e9:7a:08:a3:74:0b:c0:44:1e:b3:
7a:73:c9:aa:36:55:1b:3c:db:e7:af:2a:05:ed:ca:b1:83:57:
a8:5a:b7:e3:06:3c:7d:42:91:7c:93:94:f4:fa:8f:5a:f2:49:
93:3d:b1:82:2d:a9:7a:ee:f2:8e:c3:aa:05:d6:1a:6a:06:3f:
31:de:af:bf:7c:21:ff:44:3e:e8:2b:1e:1c:d1:87:0f:8a:b4:
59:4b:2d:3a:05:36:33:c8:ef:cc:19:e3:ca:b0:c9:44:06:71:
db:bb:61:86:d7:02:19:57:7d:fa:6d:7e:df:ba:a6:af:b9:ce:
68:1f:50:dd:a4:f6:90:4b:1b:d8:fc:09:d4:ed:e2:6c:7d:ea:
8c:f2:97:ab:18:66:db:77:36:ff:bb:2e:3a:ff:9a:1f:fd:3f:
71:88:7a:21:a0:a2:f1:f0:65:4c:70:68:77:32:a1:e8:b6:11:
34:81:d2:76:cc:47:a9:db:17:55:35:37:04:d5:19:ee:09:57:
32:89:e7:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiCecDTAqFoB71Ua4lX9ongMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwN2M3MDgzNDYwZTFhNGM3MmM0YmM0Mjc2MzEzZDNhODU5
NDRhODcwHhcNMjUwODA3MDMwMTEzWhcNMjUwODA4MDMwMTEzWjAzMTEwLwYDVQQD
Eyg3NTdkYmMyNzM5ZTcxYjI0MTQ4YWVlNGQyODgwYWUxNWRiNDY3ZjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhGpDXwHQdNMI6G7U1ZrDo+YQHKO
FshjOs82cnQC8jGPxo1SvoyOJ46a3LCt4KchvwP6JZ16JpUGCezCv/DbuwDOhBUf
c0XW/P9yl2ndaMUZn6zgbfOCa1uYqHyJZdvOKrMD9+pp6YSXLBvVJoPWFxd+RX03
u/7K88RVDUVElZ0PhrJfU9VEb17ST0BoiCZiqX3KqpkWefBYmb1NKpSLngyChsq2
13cHaq9MpNZdsTqHv2vCeIRExPF1erG8UP1CqrWX+sFKzxYGlQP2Fc5vERKccbuj
BKU+fZ7aHDD7jLRPANmr5ns8Gdo/gFm1yFY/lpdUJjWSZ3iIQkblganR5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHV9vCc55xskFIruTSiArhXbRn9OMB8GA1UdIwQY
MBaAFEB8cINGDhpMcsS8QnYxPTqFlEqHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUh4d2cwWU9Ha3h5eEx4Q2RqRTlPb1dVU29jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi84YTc1NjktZWQ3NC00YTkyLTg2Mjct
OTg1ZWQxNWM5YWViLzEvUUh4d2cwWU9Ha3h5eEx4Q2RqRTlPb1dVU29jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi84YTc1NjktZWQ3NC00YTkyLTg2MjctOTg1ZWQxNWM5YWVi
LzEvUUh4d2cwWU9Ha3h5eEx4Q2RqRTlPb1dVU29jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhSjy17ht
xERcTjvbJr9Oe08k4mrEvLqcG2m1zpg2FyfKET+zYq6eIxlHgDzXuGxq6jiHU5h+
JUI1qpcRMGbpegijdAvARB6zenPJqjZVGzzb568qBe3KsYNXqFq34wY8fUKRfJOU
9PqPWvJJkz2xgi2peu7yjsOqBdYaagY/Md6vv3wh/0Q+6CseHNGHD4q0WUstOgU2
M8jvzBnjyrDJRAZx27thhtcCGVd9+m1+37qmr7nOaB9Q3aT2kEsb2PwJ1O3ibH3q
jPKXqxhm23c2/7suOv+aH/0/cYh6IaCi8fBlTHBodzKh6LYRNIHSdsxHqdsXVTU3
BNUZ7glXMonnSA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 07:21:35 2025 by rpki-client