Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json)
Hash identifier: /X92dJmwScZ3BUkpLRNLtlRLxLyP5qmMcuYWGXHj3gQ=
Subject key identifier: 1A:6C:6D:F1:D9:96:63:8C:C3:34:D6:A6:E6:50:76:A3:C7:80:CB:4F
Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Certificate serial: 019874BDF0998EB2C5558EC7C4E73530A67E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
Manifest number: 1617
Signing time: Mon 04 Aug 2025 11:01:01 +0000
Manifest this update: Mon 04 Aug 2025 11:01:01 +0000
Manifest next update: Tue 05 Aug 2025 11:01:01 +0000
Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=)
2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: yNXubNb1QD6so/BuXlai3jFRHtORph/nvgNjVw80z9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:bd:f0:99:8e:b2:c5:55:8e:c7:c4:e7:35:30:a6:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Validity
Not Before: Aug 4 11:01:01 2025 GMT
Not After : Aug 5 11:01:01 2025 GMT
Subject: CN=1a6c6df1d996638cc334d6a6e65076a3c780cb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:46:6c:3b:d3:0f:91:d7:70:72:e7:56:2d:85:
df:4a:59:9f:69:20:20:64:42:6d:0e:c7:2f:4c:38:
6c:10:b0:56:12:fe:dd:b4:74:5d:9b:d8:89:c2:f0:
2d:9c:27:97:33:b0:23:39:d8:0b:ec:f6:06:4a:98:
b3:b5:62:93:a7:f3:d1:fe:70:8c:21:d5:4a:7c:76:
1f:2d:5e:10:2f:55:0c:df:2f:99:76:61:72:bc:22:
e2:ac:df:69:de:6b:c7:6d:4d:1d:00:2c:23:dd:70:
8d:16:c8:24:7c:ef:2a:d8:23:cf:83:1e:f3:ba:5a:
d2:62:bc:2c:8a:be:79:78:51:b0:fc:f6:6f:d8:9d:
ab:96:2e:60:f9:12:a9:1d:84:c8:fd:76:96:fa:1f:
33:d5:00:3d:e5:40:2b:4e:e6:d3:15:1d:89:af:03:
24:24:44:f3:03:4c:a8:cb:9b:f9:bb:5e:c6:6b:4d:
94:d3:9b:e9:98:c0:f4:a9:84:4c:dc:40:52:ba:f1:
d2:47:40:50:8a:9e:d7:d9:68:d7:98:3a:ac:7a:b2:
7d:a5:3e:e1:6a:9f:30:b6:f2:d8:24:30:2d:66:53:
1b:74:1e:9a:07:37:a6:20:f4:81:73:77:fd:7d:41:
29:d5:71:11:e0:e1:1f:f9:a8:cf:50:99:92:0f:33:
17:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:6C:6D:F1:D9:96:63:8C:C3:34:D6:A6:E6:50:76:A3:C7:80:CB:4F
X509v3 Authority Key Identifier:
keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:0d:53:3e:2f:20:8b:10:7a:ae:fe:30:9f:06:43:ad:b0:ec:
f6:04:68:85:91:30:83:61:fe:3f:50:d4:db:3b:b3:eb:ac:2d:
95:21:1c:3e:d1:fd:50:4b:08:f7:cb:cc:7c:a7:90:93:b4:29:
08:38:73:6a:6c:ef:91:a1:42:89:cb:6f:52:d3:51:b6:86:3a:
04:7d:d9:30:80:f3:4b:b0:be:7d:9b:70:db:50:06:57:bd:d1:
8e:11:61:d4:c3:d3:45:98:9c:2b:4a:23:60:db:33:93:c5:a5:
95:b5:6c:0c:49:43:9c:b0:75:05:c3:ed:4e:0d:a7:13:11:c3:
8d:b4:89:c6:84:62:25:ab:33:07:3c:4f:94:14:98:b2:56:b4:
90:9e:f6:ae:56:93:0b:b7:db:fb:06:6d:41:27:bf:4e:ec:b8:
6d:57:17:08:6d:91:ff:20:32:70:67:e4:a2:20:ec:6b:70:ba:
ad:bf:93:a3:ba:e0:57:b7:8d:f8:3f:f7:72:e4:bc:99:e0:c2:
f1:50:19:a5:00:19:2d:8c:f5:ad:c8:d6:4f:e7:75:b5:4c:11:
d0:68:03:1c:c8:f0:63:a1:2f:b2:8a:6a:8a:78:9e:e2:a2:0e:
0b:b7:b0:f1:b1:ef:a7:ec:67:a8:ff:b7:f5:c0:2d:c6:12:1b:
64:ef:3a:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0vfCZjrLFVY7HxOc1MKZ+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMjViNTcwZjQ2ZGU1YzZlOGIyYjY0ZWQwOTBhZDEzODVk
YWI3MzEwHhcNMjUwODA0MTEwMTAxWhcNMjUwODA1MTEwMTAxWjAzMTEwLwYDVQQD
EygxYTZjNmRmMWQ5OTY2MzhjYzMzNGQ2YTZlNjUwNzZhM2M3ODBjYjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2EZsO9MPkddwcudWLYXfSlmfaSAg
ZEJtDscvTDhsELBWEv7dtHRdm9iJwvAtnCeXM7AjOdgL7PYGSpiztWKTp/PR/nCM
IdVKfHYfLV4QL1UM3y+ZdmFyvCLirN9p3mvHbU0dACwj3XCNFsgkfO8q2CPPgx7z
ulrSYrwsir55eFGw/PZv2J2rli5g+RKpHYTI/XaW+h8z1QA95UArTubTFR2JrwMk
JETzA0yoy5v5u17Ga02U05vpmMD0qYRM3EBSuvHSR0BQip7X2WjXmDqserJ9pT7h
ap8wtvLYJDAtZlMbdB6aBzemIPSBc3f9fUEp1XER4OEf+ajPUJmSDzMXKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBpsbfHZlmOMwzTWpuZQdqPHgMtPMB8GA1UdIwQY
MBaAFEIltXD0beXG6LK2TtCQrROF2rcxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9jMzRjOTktMThjOC00MWEyLTg3NGIt
MzkwYjg1Mzk0YmViLzEvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9jMzRjOTktMThjOC00MWEyLTg3NGItMzkwYjg1Mzk0YmVi
LzEvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABg1TPi8g
ixB6rv4wnwZDrbDs9gRohZEwg2H+P1DU2zuz66wtlSEcPtH9UEsI98vMfKeQk7Qp
CDhzamzvkaFCictvUtNRtoY6BH3ZMIDzS7C+fZtw21AGV73RjhFh1MPTRZicK0oj
YNszk8WllbVsDElDnLB1BcPtTg2nExHDjbSJxoRiJaszBzxPlBSYsla0kJ72rlaT
C7fb+wZtQSe/Tuy4bVcXCG2R/yAycGfkoiDsa3C6rb+To7rgV7eN+D/3cuS8meDC
8VAZpQAZLYz1rcjWT+d1tUwR0GgDHMjwY6Evsopqinie4qIOC7ew8bHvp+xnqP+3
9cAtxhIbZO86Fg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 18:33:55 2025 by rpki-client