Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json)
Hash identifier: 8yctwei7h2b7WEGR1YVW6G+6Z60gftI6XIDZU+RCt0k=
Subject key identifier: 41:EA:40:39:23:93:B8:B1:AA:1E:47:6F:96:25:8E:6A:88:37:AA:38
Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Certificate serial: 019A503E1A39FCC33ADBEC60591340A58EF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
Manifest number: 0621
Signing time: Tue 04 Nov 2025 19:00:38 +0000
Manifest this update: Tue 04 Nov 2025 19:00:38 +0000
Manifest next update: Wed 05 Nov 2025 19:00:38 +0000
Files and hashes: 1: 4PjPPpWKgAtzAAOasr7gIk0JbPI.roa (hash: yiKX1aQ5yWrVl7HwLmjfK1M9G+FpWFiXbyU5qVlLbDY=)
2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: bG9e540VI9hXKEvLW/DBl8W5mLZJaOMolzxzjG7cnJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3e:1a:39:fc:c3:3a:db:ec:60:59:13:40:a5:8e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Validity
Not Before: Nov 4 19:00:38 2025 GMT
Not After : Nov 5 19:00:38 2025 GMT
Subject: CN=41ea40392393b8b1aa1e476f96258e6a8837aa38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:27:55:b8:c9:af:5b:8d:b5:bd:e6:1c:87:93:
e9:12:31:c9:cb:11:0c:fc:0a:07:a9:53:02:b3:81:
f7:8c:05:97:37:5f:01:a1:bc:7a:71:39:50:9d:e1:
5e:bb:af:5b:63:90:b0:6d:e3:f8:90:f7:6a:77:dc:
70:2d:c9:b0:66:c9:0d:3c:dc:87:10:e7:7c:1a:5e:
20:de:a6:13:b1:5d:70:26:1f:e8:70:6d:2d:0c:3e:
84:10:0c:01:3a:3f:88:6a:a7:c6:ed:1b:db:1b:33:
e8:de:56:1a:2e:59:81:e8:80:76:b3:5e:f2:ec:c6:
8e:e1:e6:21:63:4c:fc:fb:ee:42:f8:b9:23:a6:27:
26:35:48:6c:85:23:ef:1c:d0:cf:d5:83:d3:e1:15:
a3:a9:1b:93:9d:85:b3:a7:ef:df:15:5f:2b:7c:b9:
aa:0d:fa:b4:07:ca:d1:4e:57:d3:19:fb:ed:10:a3:
12:be:15:cc:78:37:74:bf:95:41:4a:ff:87:49:19:
4d:e2:62:7e:be:ad:6d:8a:1c:f3:4a:79:cc:93:12:
db:e8:ac:12:4b:37:dd:59:10:10:b9:f0:17:15:e5:
39:5d:58:79:a3:6f:71:61:ab:44:5a:4c:a4:4c:f6:
b8:e1:7d:a7:d5:45:57:75:22:e9:88:e0:43:cb:92:
72:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:EA:40:39:23:93:B8:B1:AA:1E:47:6F:96:25:8E:6A:88:37:AA:38
X509v3 Authority Key Identifier:
keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:9f:1c:f8:3c:5a:f6:42:fe:55:0a:c3:9f:31:ab:ba:70:40:
84:99:90:8c:f7:15:ca:46:fb:1a:69:42:45:eb:8e:ac:16:92:
d8:3c:15:25:fc:95:55:8b:7d:d2:4f:d3:5b:f3:c4:03:cf:9e:
54:6c:aa:df:a7:26:f2:6d:5d:20:43:cf:5d:c9:8c:5b:05:b1:
37:46:15:67:35:45:85:cd:63:68:0c:cb:4a:f0:da:2d:cd:25:
c0:3e:73:54:a9:c6:9b:ad:bb:2b:71:1f:dc:af:37:bd:00:98:
38:67:cf:13:72:76:4c:05:66:3b:91:56:92:da:bd:80:8e:03:
57:e6:3b:58:a9:7f:e8:0c:41:59:f2:0d:30:f7:41:ea:69:99:
a6:89:23:c3:fe:25:8a:3b:e5:bb:c1:8b:4f:e1:d4:53:a0:48:
5d:a8:58:39:e5:67:9e:89:23:3f:2f:60:32:27:87:ee:c8:81:
3b:e2:fb:69:04:8d:0a:b3:1a:38:de:6d:1b:76:24:96:48:1c:
fa:d3:19:17:12:a3:5a:e4:7d:66:41:2f:14:08:fc:6c:24:02:
8a:02:4f:6f:b3:35:3d:b2:7f:93:3d:47:d3:98:f9:22:c7:04:
cd:cf:c0:70:26:14:f5:fa:e9:5a:f9:8c:fd:c0:07:c5:c2:49:
2a:e0:e4:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQPho5/MM62+xgWRNApY74MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0
NmIwY2UwHhcNMjUxMTA0MTkwMDM4WhcNMjUxMTA1MTkwMDM4WjAzMTEwLwYDVQQD
Eyg0MWVhNDAzOTIzOTNiOGIxYWExZTQ3NmY5NjI1OGU2YTg4MzdhYTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiidVuMmvW421veYch5PpEjHJyxEM
/AoHqVMCs4H3jAWXN18Bobx6cTlQneFeu69bY5CwbeP4kPdqd9xwLcmwZskNPNyH
EOd8Gl4g3qYTsV1wJh/ocG0tDD6EEAwBOj+IaqfG7RvbGzPo3lYaLlmB6IB2s17y
7MaO4eYhY0z8++5C+LkjpicmNUhshSPvHNDP1YPT4RWjqRuTnYWzp+/fFV8rfLmq
Dfq0B8rRTlfTGfvtEKMSvhXMeDd0v5VBSv+HSRlN4mJ+vq1tihzzSnnMkxLb6KwS
SzfdWRAQufAXFeU5XVh5o29xYatEWkykTPa44X2n1UVXdSLpiOBDy5JycwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEHqQDkjk7ixqh5Hb5YljmqIN6o4MB8GA1UdIwQY
MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt
MzhkOGE3OGE0ODYyLzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy
LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdp8c+Dxa
9kL+VQrDnzGrunBAhJmQjPcVykb7GmlCReuOrBaS2DwVJfyVVYt90k/TW/PEA8+e
VGyq36cm8m1dIEPPXcmMWwWxN0YVZzVFhc1jaAzLSvDaLc0lwD5zVKnGm627K3Ef
3K83vQCYOGfPE3J2TAVmO5FWktq9gI4DV+Y7WKl/6AxBWfINMPdB6mmZpokjw/4l
ijvlu8GLT+HUU6BIXahYOeVnnokjPy9gMieH7siBO+L7aQSNCrMaON5tG3Yklkgc
+tMZFxKjWuR9ZkEvFAj8bCQCigJPb7M1PbJ/kz1H05j5IscEzc/AcCYU9frpWvmM
/cAHxcJJKuDkPA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:22:16 2025 by rpki-client