Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: Uol7HqZ+E0aKxs5EQ/ASEMpa5oHT83lnBXXBF3C40J0=
Subject key identifier: 87:15:07:9F:8F:BC:B3:25:E3:FB:75:FE:08:B2:44:68:5C:18:F7:5E
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 019879AF54FBE5B66EF29E4D940C78F03602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 161A
Signing time: Tue 05 Aug 2025 10:03:10 +0000
Manifest this update: Tue 05 Aug 2025 10:03:10 +0000
Manifest next update: Wed 06 Aug 2025 10:03:10 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: 9Xj1d9na2nyYZL/xc+OOAj1gM7kQ/1y5f2JWRA3MsTE=)
2: nqDbjTD7-4bF8APAmv3q39AmNtk.roa (hash: zWbRV6cXuufmhpJUA1tayT8JP8s9Ez0NcmTuvgMXFF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 10:03:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:af:54:fb:e5:b6:6e:f2:9e:4d:94:0c:78:f0:36:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Aug 5 10:03:10 2025 GMT
Not After : Aug 6 10:03:10 2025 GMT
Subject: CN=8715079f8fbcb325e3fb75fe08b244685c18f75e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8c:55:ae:31:24:ed:23:d2:fb:65:a7:78:93:
18:8f:92:41:22:1a:8a:e6:57:ac:ea:27:71:c9:e4:
59:e9:e1:ca:62:e8:52:95:af:bc:9e:e1:56:61:b1:
a5:6e:d8:fc:a4:28:01:a7:90:31:e1:a0:a9:94:67:
af:5a:ab:7e:f5:e6:f2:a7:43:66:30:80:a8:4c:3c:
76:c3:2c:83:19:5c:9c:ff:0e:cb:8a:18:ee:ae:8b:
f7:2f:c8:76:f2:ce:03:8f:73:31:54:43:41:84:5d:
bf:b9:76:09:8e:d1:40:4a:2e:f0:75:bb:fc:40:b2:
47:73:1b:79:df:4a:44:2e:74:c3:72:c9:9d:34:52:
aa:55:90:36:f7:c3:0d:5e:e7:ce:0e:66:f2:ad:ad:
39:f7:41:6b:6c:c2:d8:d0:82:8b:0f:14:e4:b7:e9:
d0:3b:d7:43:97:08:ac:34:3a:71:aa:83:42:6a:5f:
26:e9:ab:15:8d:98:80:fb:89:8f:67:d5:a3:11:53:
1d:02:4c:87:f2:5e:d9:3a:ca:b1:72:5b:eb:aa:9e:
b2:fc:bb:ba:ee:4c:a0:71:56:f0:65:4e:10:7a:b8:
0c:fd:fc:df:50:25:a1:61:a2:e3:75:20:d7:4b:4c:
83:c5:5c:89:24:95:01:fa:bb:7d:78:50:06:59:15:
68:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:15:07:9F:8F:BC:B3:25:E3:FB:75:FE:08:B2:44:68:5C:18:F7:5E
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:d6:8f:a6:79:ca:62:b1:ae:18:be:81:77:3f:4d:3e:a4:cd:
79:0d:89:cc:c6:2e:0b:25:08:b1:f6:ad:42:82:cb:4e:cc:a6:
52:da:35:68:ef:6a:d6:fe:34:7a:12:88:bb:22:0c:1b:7e:3c:
6f:04:88:56:d3:9a:6a:9f:d6:cc:26:56:9b:82:13:52:f9:ef:
55:50:54:7b:af:d1:56:8f:55:96:b5:56:97:92:ec:c1:03:10:
1a:97:c0:28:51:74:63:7e:5c:1a:09:c4:68:34:86:2b:e2:07:
e7:bc:f7:e7:87:2d:f3:1e:d0:15:98:e6:ce:a4:59:38:0d:2c:
69:a8:bd:c7:3b:ad:7b:05:fa:2a:12:b8:8f:b6:11:14:1a:d5:
3d:1d:3b:7e:fa:ba:32:be:b3:d8:fd:6e:f1:81:d5:30:76:e8:
5b:94:b3:0f:c9:63:a3:f4:e3:40:2b:37:77:8e:f3:57:bd:5d:
76:b2:db:45:d9:09:b2:01:1b:d6:41:69:11:ef:30:c2:ba:74:
68:12:b2:45:91:59:ff:fb:7d:8f:54:20:18:4c:71:b7:f6:b5:
07:7d:01:58:d6:0b:6e:e2:87:95:89:c2:69:b0:70:ac:d9:fa:
58:58:c6:20:03:a8:f5:a8:13:12:ee:d7:93:fc:11:d7:72:16:
99:83:a6:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh5r1T75bZu8p5NlAx48DYCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyYzA5NTkwMTE2MjdkZGQwZDA1N2Q3MzFlOGZhNWE1MTAy
OTY1OTIwHhcNMjUwODA1MTAwMzEwWhcNMjUwODA2MTAwMzEwWjAzMTEwLwYDVQQD
Eyg4NzE1MDc5ZjhmYmNiMzI1ZTNmYjc1ZmUwOGIyNDQ2ODVjMThmNzVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIxVrjEk7SPS+2WneJMYj5JBIhqK
5les6idxyeRZ6eHKYuhSla+8nuFWYbGlbtj8pCgBp5Ax4aCplGevWqt+9ebyp0Nm
MICoTDx2wyyDGVyc/w7Lihjurov3L8h28s4Dj3MxVENBhF2/uXYJjtFASi7wdbv8
QLJHcxt530pELnTDcsmdNFKqVZA298MNXufODmbyra0590FrbMLY0IKLDxTkt+nQ
O9dDlwisNDpxqoNCal8m6asVjZiA+4mPZ9WjEVMdAkyH8l7ZOsqxclvrqp6y/Lu6
7kygcVbwZU4QergM/fzfUCWhYaLjdSDXS0yDxVyJJJUB+rt9eFAGWRVoCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIcVB5+PvLMl4/t1/giyRGhcGPdeMB8GA1UdIwQY
MBaAFELAlZARYn3dDQV9cx6PpaUQKWWSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iYTEyY2QtMmU3ZS00MGRjLWFlODgt
MjQ4YjU5YzM2OTZiLzEvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iYTEyY2QtMmU3ZS00MGRjLWFlODgtMjQ4YjU5YzM2OTZi
LzEvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKdaPpnnK
YrGuGL6Bdz9NPqTNeQ2JzMYuCyUIsfatQoLLTsymUto1aO9q1v40ehKIuyIMG348
bwSIVtOaap/WzCZWm4ITUvnvVVBUe6/RVo9VlrVWl5LswQMQGpfAKFF0Y35cGgnE
aDSGK+IH57z354ct8x7QFZjmzqRZOA0saai9xzutewX6KhK4j7YRFBrVPR07fvq6
Mr6z2P1u8YHVMHboW5SzD8ljo/TjQCs3d47zV71ddrLbRdkJsgEb1kFpEe8wwrp0
aBKyRZFZ//t9j1QgGExxt/a1B30BWNYLbuKHlYnCabBwrNn6WFjGIAOo9agTEu7X
k/wR13IWmYOmdg==
-----END CERTIFICATE-----
Generated at Tue Aug 5 17:09:17 2025 by rpki-client