Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
File: QWkOI5DpC72N5AIYrSIeCTvM7L8.mft (raw, json)
Hash identifier: yqIR30vehDFaendaghOjDXI1AfmxID1BmxLq/82LQhk=
Subject key identifier: A1:7D:93:93:33:00:8D:7D:05:43:84:E8:FD:F6:9E:5A:6B:27:D8:50
Authority key identifier: 41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF
Certificate issuer: /CN=41690e2390e90bbd8de40218ad221e093bccecbf
Certificate serial: 01988F2290D7DEDF446F798BC1EE810A11F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
Manifest number: 1624
Signing time: Sat 09 Aug 2025 14:01:03 +0000
Manifest this update: Sat 09 Aug 2025 14:01:03 +0000
Manifest next update: Sun 10 Aug 2025 14:01:03 +0000
Files and hashes: 1: QWkOI5DpC72N5AIYrSIeCTvM7L8.crl (hash: 4DiQPE10fubeU56hdWOhQyXg91BsJxuQN1BS5qYeQ6Q=)
2: nsNEVxRNRAqK4M0HqDeGc01kd4k.roa (hash: u9cSwFwr5XiNLEjBeMMlXHN1pLGlDX3Y3bL8f/eEp3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:22:90:d7:de:df:44:6f:79:8b:c1:ee:81:0a:11:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41690e2390e90bbd8de40218ad221e093bccecbf
Validity
Not Before: Aug 9 14:01:03 2025 GMT
Not After : Aug 10 14:01:03 2025 GMT
Subject: CN=a17d939333008d7d054384e8fdf69e5a6b27d850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:73:70:85:55:41:48:ef:e0:2e:28:37:c0:3a:
9b:fc:f3:4a:ff:b6:d9:e0:77:58:94:15:73:02:e5:
e2:5c:51:bc:4c:fd:59:0b:40:0b:15:2a:26:7d:15:
4d:cf:c8:dc:35:c3:66:45:36:eb:3a:7c:bc:d9:61:
b0:ec:11:04:e1:34:74:74:0c:43:5c:3f:24:62:3e:
e9:e7:b0:2e:16:3e:ab:f2:54:ce:1a:67:bf:70:b8:
67:95:38:5d:9e:c5:02:77:2a:53:0c:31:2f:8f:a9:
f4:f0:18:f5:66:8b:9f:a0:65:1a:96:33:df:f1:6c:
d2:0a:3c:7a:cf:74:3c:52:26:e5:e8:2d:ab:4b:2a:
96:e3:df:65:b9:15:c3:2b:72:86:1e:bb:2a:93:2a:
90:9b:62:5a:0e:7e:4c:d7:35:13:16:4a:4f:43:46:
88:07:84:39:65:a3:6c:e5:c0:fe:71:c9:b7:3e:3f:
52:2b:96:b9:86:f0:0a:3e:bf:b0:7b:6c:9f:c8:d5:
c7:90:f9:d5:f7:77:ec:83:61:ff:5d:5c:ad:e1:fd:
cc:23:23:e2:73:71:87:f8:ae:e2:55:26:ff:82:48:
99:21:5c:a2:b5:ac:21:7c:d8:b2:89:7e:2a:29:f8:
1a:86:6c:de:31:6d:fe:96:0b:69:85:d5:0e:7b:b5:
f7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:7D:93:93:33:00:8D:7D:05:43:84:E8:FD:F6:9E:5A:6B:27:D8:50
X509v3 Authority Key Identifier:
keyid:41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:a0:b0:39:42:51:58:ab:5f:67:e5:13:9a:9b:21:f7:b7:ac:
ed:41:55:0f:60:9c:a2:a8:6f:dd:2c:4c:9a:5a:4e:4d:0c:34:
d1:cd:8a:a9:2f:de:2b:f4:cc:b2:29:a8:49:10:6b:8e:e1:63:
25:78:65:4b:2d:6d:4c:35:88:fd:76:6f:5b:49:03:6c:0e:80:
22:53:07:7e:be:4d:d3:ef:bb:a8:68:b6:17:aa:5c:52:c3:57:
c9:40:b7:b0:25:c3:42:1f:4f:e8:09:54:fa:35:5b:ec:fa:d9:
f7:97:94:8c:d5:aa:44:e4:34:8e:71:53:e9:ac:7a:85:98:64:
8e:78:4c:19:35:e8:2c:97:0c:83:ca:1a:2b:73:af:27:65:6b:
79:98:02:37:58:5b:dd:e5:62:0a:92:d2:97:be:4c:dd:ef:b9:
21:74:cf:32:63:6c:35:a9:e9:b8:94:4e:3a:27:c1:b7:7b:13:
9a:f4:54:e1:4d:27:64:20:22:0c:96:52:43:a5:45:53:62:c1:
60:24:c6:9a:be:a3:be:db:f3:96:6e:15:55:03:93:61:68:23:
fa:05:ac:d0:89:e9:74:61:a0:0b:23:9c:71:a7:eb:f7:1f:8e:
13:8f:70:05:eb:0e:0f:24:cf:47:5e:81:cc:83:6f:04:ed:82:
6d:4e:ec:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiPIpDX3t9Eb3mLwe6BChH3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxNjkwZTIzOTBlOTBiYmQ4ZGU0MDIxOGFkMjIxZTA5M2Jj
Y2VjYmYwHhcNMjUwODA5MTQwMTAzWhcNMjUwODEwMTQwMTAzWjAzMTEwLwYDVQQD
EyhhMTdkOTM5MzMzMDA4ZDdkMDU0Mzg0ZThmZGY2OWU1YTZiMjdkODUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nNwhVVBSO/gLig3wDqb/PNK/7bZ
4HdYlBVzAuXiXFG8TP1ZC0ALFSomfRVNz8jcNcNmRTbrOny82WGw7BEE4TR0dAxD
XD8kYj7p57AuFj6r8lTOGme/cLhnlThdnsUCdypTDDEvj6n08Bj1ZoufoGUaljPf
8WzSCjx6z3Q8Uibl6C2rSyqW499luRXDK3KGHrsqkyqQm2JaDn5M1zUTFkpPQ0aI
B4Q5ZaNs5cD+ccm3Pj9SK5a5hvAKPr+we2yfyNXHkPnV93fsg2H/XVyt4f3MIyPi
c3GH+K7iVSb/gkiZIVyitawhfNiyiX4qKfgahmzeMW3+lgtphdUOe7X3TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKF9k5MzAI19BUOE6P32nlprJ9hQMB8GA1UdIwQY
MBaAFEFpDiOQ6Qu9jeQCGK0iHgk7zOy/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVdrT0k1RHBDNzJONUFJWXJTSWVDVHZNN0w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8yODg0YWEtMGNjYi00OWYyLTkwYzUt
MzM4NWQ5YmYxZDgwLzEvUVdrT0k1RHBDNzJONUFJWXJTSWVDVHZNN0w4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC8yODg0YWEtMGNjYi00OWYyLTkwYzUtMzM4NWQ5YmYxZDgw
LzEvUVdrT0k1RHBDNzJONUFJWXJTSWVDVHZNN0w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmaCwOUJR
WKtfZ+UTmpsh97es7UFVD2Ccoqhv3SxMmlpOTQw00c2KqS/eK/TMsimoSRBrjuFj
JXhlSy1tTDWI/XZvW0kDbA6AIlMHfr5N0++7qGi2F6pcUsNXyUC3sCXDQh9P6AlU
+jVb7PrZ95eUjNWqROQ0jnFT6ax6hZhkjnhMGTXoLJcMg8oaK3OvJ2VreZgCN1hb
3eViCpLSl75M3e+5IXTPMmNsNanpuJROOifBt3sTmvRU4U0nZCAiDJZSQ6VFU2LB
YCTGmr6jvtvzlm4VVQOTYWgj+gWs0InpdGGgCyOccafr9x+OE49wBesODyTPR16B
zINvBO2CbU7sew==
-----END CERTIFICATE-----
Generated at Sat Aug 9 20:40:50 2025 by rpki-client