Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: J5QkiV7nWamKNGzSnjRq5LjAh3QhOJ4DxYBFgRP+W7o=
Subject key identifier: 89:86:20:A2:28:E7:E6:FD:A9:61:50:72:55:70:DC:CD:80:66:80:D9
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 019881D57AD020F13906E402418B0865DDB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0C11
Signing time: Thu 07 Aug 2025 00:01:48 +0000
Manifest this update: Thu 07 Aug 2025 00:01:48 +0000
Manifest next update: Fri 08 Aug 2025 00:01:48 +0000
Files and hashes: 1: 0SSsSk3JYtZfVKoUdIXep-skUls.roa (hash: lo1rRlcKmSiP/o5fsPXMsNzyze1q/0lfZDjTXaH15HI=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: m6u3Ivj/nTUervvcSFLPB0CkxekvDT+UQQkXLu1d9Yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d5:7a:d0:20:f1:39:06:e4:02:41:8b:08:65:dd:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Aug 7 00:01:48 2025 GMT
Not After : Aug 8 00:01:48 2025 GMT
Subject: CN=898620a228e7e6fda96150725570dccd806680d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9f:71:39:13:4d:c0:1f:d7:f3:d1:9c:f4:3f:
31:2a:8f:c1:41:dc:a6:71:e5:e0:bd:20:26:b7:28:
a0:24:64:fe:24:80:30:4a:12:81:8a:17:cb:18:60:
ba:81:34:ac:de:a7:87:7a:51:7e:4c:8c:15:fa:59:
63:82:df:aa:84:ce:5b:96:e9:d3:bf:f5:b2:f0:62:
df:b9:41:bd:8d:a8:8e:e8:77:69:47:ed:a0:44:ec:
87:e2:66:32:33:10:a5:05:c3:e6:04:e7:2e:5a:41:
cb:77:37:7e:cd:73:e7:c9:aa:aa:da:71:da:d2:39:
f9:f0:53:50:dc:52:b7:f6:b1:0e:3d:b0:8b:b9:84:
57:a5:e2:cb:51:57:05:98:2f:6d:b2:b2:78:03:1d:
5c:90:5c:e7:95:ce:0d:62:92:f4:c5:a5:7e:8c:93:
1f:0c:a2:d8:54:db:cc:83:e7:35:9e:3a:e6:ee:b6:
a0:33:19:ed:76:3f:29:e6:27:23:52:66:c2:04:8c:
34:92:de:7e:d1:ed:74:0e:e0:33:03:7a:79:21:81:
53:bf:d7:e3:b1:cc:f2:c4:f7:df:9e:80:25:dc:0e:
4b:ee:36:4c:21:ba:79:bc:c8:c5:0b:ab:92:6d:28:
ed:0e:72:12:81:b1:6d:9d:17:16:58:0f:1a:d8:88:
b5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:86:20:A2:28:E7:E6:FD:A9:61:50:72:55:70:DC:CD:80:66:80:D9
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:63:f3:2a:b3:15:cf:c8:fe:75:b5:8b:80:a9:98:49:46:d9:
93:3b:96:4f:33:ac:37:3b:23:87:c3:f9:b0:66:c6:44:98:d8:
65:d3:83:aa:5e:01:6c:b7:b2:ba:6f:3c:f7:26:d5:06:22:d8:
be:d9:84:a5:34:79:65:81:63:c1:00:3f:cd:f8:09:9a:18:c1:
26:26:a7:16:d9:f7:a6:e2:03:c2:49:a8:a1:2e:42:67:25:15:
96:09:0d:15:d0:95:da:e1:fe:c9:bb:ab:3a:4c:61:c2:2d:0e:
e0:08:09:48:38:3f:8b:8c:0e:98:33:66:bd:d3:aa:ab:13:24:
cb:14:1b:ba:ea:98:2d:4c:e0:f2:8f:df:6a:31:16:61:3a:93:
4a:be:4a:85:c4:e4:8a:5e:cc:ad:b5:c0:65:c5:36:c8:1f:aa:
35:4f:20:5d:51:26:7c:87:19:71:4d:fb:00:b4:c7:bf:8e:61:
bf:97:61:f2:86:b2:e5:4b:3a:44:4e:1c:e0:a5:4d:09:32:9c:
f7:43:ff:25:76:5b:9f:b1:9d:8d:55:6b:60:3e:1f:99:99:7d:
31:42:12:0c:8f:bd:5e:ea:7d:64:28:c9:4f:e1:40:8b:ec:25:
05:37:ba:0c:91:c4:c9:c2:3b:12:33:86:57:ea:e8:78:e2:a7:
18:15:42:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiB1XrQIPE5BuQCQYsIZd23MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiODUyMGVjODNlMzBlYjc5MzhiODAwMmY0NzBmMGQxYzUw
NWM0NTEwHhcNMjUwODA3MDAwMTQ4WhcNMjUwODA4MDAwMTQ4WjAzMTEwLwYDVQQD
Eyg4OTg2MjBhMjI4ZTdlNmZkYTk2MTUwNzI1NTcwZGNjZDgwNjY4MGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp59xORNNwB/X89Gc9D8xKo/BQdym
ceXgvSAmtyigJGT+JIAwShKBihfLGGC6gTSs3qeHelF+TIwV+lljgt+qhM5blunT
v/Wy8GLfuUG9jaiO6HdpR+2gROyH4mYyMxClBcPmBOcuWkHLdzd+zXPnyaqq2nHa
0jn58FNQ3FK39rEOPbCLuYRXpeLLUVcFmC9tsrJ4Ax1ckFznlc4NYpL0xaV+jJMf
DKLYVNvMg+c1njrm7ragMxntdj8p5icjUmbCBIw0kt5+0e10DuAzA3p5IYFTv9fj
sczyxPffnoAl3A5L7jZMIbp5vMjFC6uSbSjtDnISgbFtnRcWWA8a2Ii1bwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFImGIKIo5+b9qWFQclVw3M2AZoDZMB8GA1UdIwQY
MBaAFKuFIOyD4w63k4uAAvRw8NHFBcRRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9mYWVhNjUtOTBiNC00NmRiLWJlZWYt
ODRiNDczYjllYmNkLzEvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9mYWVhNjUtOTBiNC00NmRiLWJlZWYtODRiNDczYjllYmNk
LzEvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH2PzKrMV
z8j+dbWLgKmYSUbZkzuWTzOsNzsjh8P5sGbGRJjYZdODql4BbLeyum889ybVBiLY
vtmEpTR5ZYFjwQA/zfgJmhjBJianFtn3puIDwkmooS5CZyUVlgkNFdCV2uH+ybur
Okxhwi0O4AgJSDg/i4wOmDNmvdOqqxMkyxQbuuqYLUzg8o/fajEWYTqTSr5KhcTk
il7MrbXAZcU2yB+qNU8gXVEmfIcZcU37ALTHv45hv5dh8oay5Us6RE4c4KVNCTKc
90P/JXZbn7GdjVVrYD4fmZl9MUISDI+9Xup9ZCjJT+FAi+wlBTe6DJHEycI7EjOG
V+roeOKnGBVCaQ==
-----END CERTIFICATE-----
Generated at Thu Aug 7 04:03:44 2025 by rpki-client