Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
File: qnv9Qg21yuutoaIFXYe8faKwnAc.mft (raw, json)
Hash identifier: KDV9d/S3j8pTjWvNDo8ywkAojqNzfWRYBgKRfA8K38w=
Subject key identifier: C6:C6:86:72:3B:1F:E3:25:F5:1A:81:B1:8C:E7:9F:95:C7:61:36:69
Authority key identifier: AA:7B:FD:42:0D:B5:CA:EB:AD:A1:A2:05:5D:87:BC:7D:A2:B0:9C:07
Certificate issuer: /CN=aa7bfd420db5caebada1a2055d87bc7da2b09c07
Certificate serial: 019873064FD0F622FF1EF76EF85AEF0CD728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
Manifest number: B6
Signing time: Mon 04 Aug 2025 03:00:50 +0000
Manifest this update: Mon 04 Aug 2025 03:00:50 +0000
Manifest next update: Tue 05 Aug 2025 03:00:50 +0000
Files and hashes: 1: du9Q9bL5BOWedJK9qhvdrfuTC6E.roa (hash: yMHVcCfWCQ3tfd7XRi0bmpwcyLFeWTkztgI3BA0HK6Y=)
2: qnv9Qg21yuutoaIFXYe8faKwnAc.crl (hash: MO5/R9/9ErnKxxoJxyNUeZ/76bkO1Lxdqi+B1+FK+aQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:4f:d0:f6:22:ff:1e:f7:6e:f8:5a:ef:0c:d7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7bfd420db5caebada1a2055d87bc7da2b09c07
Validity
Not Before: Aug 4 03:00:50 2025 GMT
Not After : Aug 5 03:00:50 2025 GMT
Subject: CN=c6c686723b1fe325f51a81b18ce79f95c7613669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e9:64:04:46:42:88:01:63:f1:7d:b5:09:c9:
6f:45:d3:9b:5d:2f:36:87:2a:e7:5e:67:4a:7a:1b:
c7:e0:20:bf:85:da:99:4d:f2:8d:cd:33:32:01:56:
8b:e5:f7:c7:f5:58:d0:6c:4d:ba:1c:df:d2:96:82:
bd:1e:fc:ef:e8:8e:54:ca:b2:b8:be:58:ef:74:bf:
ec:d5:0c:0a:06:06:a8:7b:8f:22:16:bd:a4:36:e6:
77:c0:f1:a9:52:43:8b:9b:b0:4f:cb:35:8b:f6:b5:
93:21:29:d4:5a:15:02:13:d7:a1:af:b9:07:5a:e4:
e7:3c:5e:fa:d6:11:8c:3e:b2:54:3b:46:22:94:9a:
d4:1d:14:f7:04:4d:58:fe:bb:99:62:21:bd:30:89:
db:62:22:4d:9d:f6:0b:b4:6f:cb:9f:f9:8c:5b:4f:
e7:cc:16:0f:cb:1c:be:4a:f4:e4:d3:4a:c6:5e:ea:
75:d3:68:30:12:50:81:6f:20:53:38:a8:19:53:94:
69:57:1a:ed:af:08:79:91:28:2f:23:04:91:3e:94:
0d:4d:74:48:a9:6c:00:f6:05:75:ad:ea:04:f4:a9:
92:a7:0e:a3:07:7e:ad:52:58:0e:7d:2a:af:ce:6c:
cf:c6:3b:bc:4e:67:4b:dd:50:c0:04:04:a8:7e:0b:
8b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:C6:86:72:3B:1F:E3:25:F5:1A:81:B1:8C:E7:9F:95:C7:61:36:69
X509v3 Authority Key Identifier:
keyid:AA:7B:FD:42:0D:B5:CA:EB:AD:A1:A2:05:5D:87:BC:7D:A2:B0:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:19:5e:9d:8a:4a:28:82:60:8e:7a:12:c0:0a:4a:80:bb:8e:
5b:67:ab:f2:8f:aa:f9:fd:c5:67:c3:17:96:21:c8:80:67:00:
89:2c:b6:56:58:60:72:91:1c:ba:13:e8:86:b5:29:c4:40:4b:
46:ff:8f:ec:39:72:c8:54:18:1f:de:fc:4b:9a:44:15:71:51:
39:a4:8a:67:7d:bf:2f:42:66:06:7e:87:f0:99:5b:14:c7:5e:
bf:eb:23:04:0d:f9:d2:36:63:7c:95:39:a5:98:39:db:22:6c:
ca:b7:26:c9:34:da:c8:8a:81:91:a3:e9:c9:75:03:fb:7e:9a:
45:04:33:fd:d2:d8:c8:ce:bc:18:d7:7f:83:ec:45:66:ab:ca:
a2:d8:57:7f:b1:7c:80:1f:65:f0:e4:87:53:6e:03:96:0f:f3:
05:0f:12:54:4b:16:99:9e:4a:81:59:e0:db:4d:7a:ef:49:6a:
61:51:9a:6c:e1:ce:43:51:a1:35:f9:51:14:39:51:23:6d:30:
35:6c:23:9b:22:58:a1:25:65:68:cc:f9:97:e8:42:c8:bb:2a:
bb:e5:6c:d2:49:18:7d:c2:0c:d8:14:80:7e:d9:c9:02:3a:3c:
87:4b:37:5b:e4:8f:ed:d8:a8:ac:ca:73:49:c0:c6:f2:69:80:
38:7d:89:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzBk/Q9iL/Hvdu+FrvDNcoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhN2JmZDQyMGRiNWNhZWJhZGExYTIwNTVkODdiYzdkYTJi
MDljMDcwHhcNMjUwODA0MDMwMDUwWhcNMjUwODA1MDMwMDUwWjAzMTEwLwYDVQQD
EyhjNmM2ODY3MjNiMWZlMzI1ZjUxYTgxYjE4Y2U3OWY5NWM3NjEzNjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzulkBEZCiAFj8X21CclvRdObXS82
hyrnXmdKehvH4CC/hdqZTfKNzTMyAVaL5ffH9VjQbE26HN/SloK9Hvzv6I5UyrK4
vljvdL/s1QwKBgaoe48iFr2kNuZ3wPGpUkOLm7BPyzWL9rWTISnUWhUCE9ehr7kH
WuTnPF761hGMPrJUO0YilJrUHRT3BE1Y/ruZYiG9MInbYiJNnfYLtG/Ln/mMW0/n
zBYPyxy+SvTk00rGXup102gwElCBbyBTOKgZU5RpVxrtrwh5kSgvIwSRPpQNTXRI
qWwA9gV1reoE9KmSpw6jB36tUlgOfSqvzmzPxju8TmdL3VDABASofguL4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMbGhnI7H+Ml9RqBsYznn5XHYTZpMB8GA1UdIwQY
MBaAFKp7/UINtcrrraGiBV2HvH2isJwHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW52OVFnMjF5dXV0b2FJRlhZZThmYUt3bkFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS81NWJkOTUtYzYzNy00NTFiLWIwN2Mt
NzliNDA5YzFiZDM4LzEvcW52OVFnMjF5dXV0b2FJRlhZZThmYUt3bkFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS81NWJkOTUtYzYzNy00NTFiLWIwN2MtNzliNDA5YzFiZDM4
LzEvcW52OVFnMjF5dXV0b2FJRlhZZThmYUt3bkFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmRlenYpK
KIJgjnoSwApKgLuOW2er8o+q+f3FZ8MXliHIgGcAiSy2VlhgcpEcuhPohrUpxEBL
Rv+P7DlyyFQYH978S5pEFXFROaSKZ32/L0JmBn6H8JlbFMdev+sjBA350jZjfJU5
pZg52yJsyrcmyTTayIqBkaPpyXUD+36aRQQz/dLYyM68GNd/g+xFZqvKothXf7F8
gB9l8OSHU24Dlg/zBQ8SVEsWmZ5KgVng201670lqYVGabOHOQ1GhNflRFDlRI20w
NWwjmyJYoSVlaMz5l+hCyLsqu+Vs0kkYfcIM2BSAftnJAjo8h0s3W+SP7diorMpz
ScDG8mmAOH2JeQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:30 2025 by rpki-client