Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
File: qHxnPzWntwWmtCTTORT6OS07li4.mft (raw, json)
Hash identifier: bsrMchvn7+6683qyuaqOieH0s1K8rE95B3Yz1k0sFtE=
Subject key identifier: C3:59:E4:A6:FE:FF:5C:3B:81:5A:58:E7:27:19:FB:F1:23:5E:70:A4
Authority key identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
Certificate issuer: /CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Certificate serial: 019874195DD69D371C4938CDBABB10F625E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
Manifest number: 0892
Signing time: Mon 04 Aug 2025 08:01:16 +0000
Manifest this update: Mon 04 Aug 2025 08:01:16 +0000
Manifest next update: Tue 05 Aug 2025 08:01:16 +0000
Files and hashes: 1: Eax-YG047Te5n0m45RUjhbrR1oI.roa (hash: iDlk1T+vVuMTMOmIBdx2Kl0rk1EldiQCxibfcQYd5i0=)
2: qHxnPzWntwWmtCTTORT6OS07li4.crl (hash: 1D3q5kLBxTve3GYVr7FlQGktpgxurUGyGxwnvqerdYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:19:5d:d6:9d:37:1c:49:38:cd:ba:bb:10:f6:25:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Validity
Not Before: Aug 4 08:01:16 2025 GMT
Not After : Aug 5 08:01:16 2025 GMT
Subject: CN=c359e4a6feff5c3b815a58e72719fbf1235e70a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:59:bb:cc:06:dc:a4:16:a5:d0:95:3a:c6:05:
cd:9a:3c:27:ca:68:a5:76:ea:c7:0c:77:7d:66:9d:
22:3f:c8:74:d1:bc:94:5f:4f:f6:57:20:6c:53:75:
ed:7a:51:f2:c0:44:82:d0:ad:2a:bb:a5:dc:c4:4d:
75:60:34:87:73:09:37:85:a4:95:49:2a:70:99:76:
f7:ab:b4:f1:35:2e:11:8b:1e:45:0b:d0:ef:98:60:
90:44:7e:79:cd:60:7f:3c:b9:da:06:62:d3:f1:12:
bc:80:03:68:58:95:4e:5d:dd:33:6a:61:86:da:4a:
2d:87:06:db:d0:9a:d2:87:38:bd:78:76:8b:2a:9c:
9c:dc:64:8d:a4:76:a0:35:a0:db:a5:e7:9f:f1:62:
41:be:98:bc:5f:c7:45:b3:da:91:56:ee:24:6a:9e:
12:ef:67:cc:36:bf:47:e1:97:b3:6c:96:f4:68:16:
7f:62:73:42:2c:78:43:91:df:a1:bd:b6:fc:8c:8c:
9e:77:d0:b6:ac:d3:6e:e6:5b:19:86:03:c1:0d:7a:
6b:4a:19:3d:cd:95:76:5e:3c:5a:7a:3f:a6:b9:62:
13:48:39:80:ba:d0:47:be:41:e5:81:cb:6c:b8:94:
79:13:8f:84:30:05:18:1b:69:e6:06:44:85:2a:36:
5c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:59:E4:A6:FE:FF:5C:3B:81:5A:58:E7:27:19:FB:F1:23:5E:70:A4
X509v3 Authority Key Identifier:
keyid:A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:00:cd:a9:c8:6b:67:66:f8:99:50:d1:3d:83:b0:75:3f:f0:
b5:fd:95:92:81:6a:a6:95:7a:06:78:75:9d:b1:77:7d:a7:e3:
a4:c2:fe:ba:eb:08:20:58:9f:a5:f3:ca:d8:28:88:35:71:4a:
28:39:44:7a:b9:6d:a6:76:6c:5e:92:02:60:a7:f2:3c:f3:11:
61:df:8a:3b:66:2a:0e:78:f4:01:85:e4:75:a5:53:0e:06:67:
fb:6d:b8:35:3b:34:c9:fe:33:98:51:6b:a7:20:8e:7b:70:93:
0b:f8:78:99:71:4f:54:f6:5d:f0:e1:ad:b6:be:42:10:cc:73:
39:82:ca:49:5d:8e:c3:ed:ad:b7:3e:59:a1:48:58:0e:aa:6c:
a4:25:b5:31:74:2c:fd:3e:97:4d:c9:aa:e5:6a:c0:4a:cc:e7:
49:72:71:4f:3e:e0:f4:d9:3d:38:c2:3d:aa:70:f2:6e:b9:1b:
fb:1c:02:f2:f1:c4:69:84:e9:f1:be:e1:35:b2:50:24:99:35:
b2:1d:1f:b1:f2:0c:05:7b:be:2c:f2:73:3c:bb:ac:55:cf:be:
f9:67:0a:f3:90:bb:e2:45:64:50:a8:e1:48:3d:e3:71:87:0e:
20:a2:7d:15:f2:ad:13:0c:68:5f:3b:82:54:57:cc:58:69:73:
6c:64:f1:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0GV3WnTccSTjNursQ9iXlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4N2M2NzNmMzVhN2I3MDVhNmI0MjRkMzM5MTRmYTM5MmQz
Yjk2MmUwHhcNMjUwODA0MDgwMTE2WhcNMjUwODA1MDgwMTE2WjAzMTEwLwYDVQQD
EyhjMzU5ZTRhNmZlZmY1YzNiODE1YTU4ZTcyNzE5ZmJmMTIzNWU3MGE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFm7zAbcpBal0JU6xgXNmjwnymil
durHDHd9Zp0iP8h00byUX0/2VyBsU3XtelHywESC0K0qu6XcxE11YDSHcwk3haSV
SSpwmXb3q7TxNS4Rix5FC9DvmGCQRH55zWB/PLnaBmLT8RK8gANoWJVOXd0zamGG
2kothwbb0JrShzi9eHaLKpyc3GSNpHagNaDbpeef8WJBvpi8X8dFs9qRVu4kap4S
72fMNr9H4ZezbJb0aBZ/YnNCLHhDkd+hvbb8jIyed9C2rNNu5lsZhgPBDXprShk9
zZV2Xjxaej+muWITSDmAutBHvkHlgctsuJR5E4+EMAUYG2nmBkSFKjZcJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMNZ5Kb+/1w7gVpY5ycZ+/EjXnCkMB8GA1UdIwQY
MBaAFKh8Zz81p7cFprQk0zkU+jktO5YuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9hYTFhZjQtOTI1Ni00NmM4LWFiMDIt
OTRlNjQ3MjYyMTYwLzEvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9hYTFhZjQtOTI1Ni00NmM4LWFiMDItOTRlNjQ3MjYyMTYw
LzEvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASwDNqchr
Z2b4mVDRPYOwdT/wtf2VkoFqppV6Bnh1nbF3fafjpML+uusIIFifpfPK2CiINXFK
KDlEerltpnZsXpICYKfyPPMRYd+KO2YqDnj0AYXkdaVTDgZn+224NTs0yf4zmFFr
pyCOe3CTC/h4mXFPVPZd8OGttr5CEMxzOYLKSV2Ow+2ttz5ZoUhYDqpspCW1MXQs
/T6XTcmq5WrASsznSXJxTz7g9Nk9OMI9qnDybrkb+xwC8vHEaYTp8b7hNbJQJJk1
sh0fsfIMBXu+LPJzPLusVc+++WcK85C74kVkUKjhSD3jcYcOIKJ9FfKtEwxoXzuC
VFfMWGlzbGTxYQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:56 2025 by rpki-client