Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: qDHhPLtfWoAt2hAIZy8bogVEyYPYG/GBCk2XymS7oEs=
Subject key identifier: 5B:26:5D:BE:F3:B5:04:3D:3D:D7:89:2D:85:F3:A4:AB:AF:55:06:C0
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 01989E5F018440078026CE7013AED6F60991
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1632
Signing time: Tue 12 Aug 2025 13:01:23 +0000
Manifest this update: Tue 12 Aug 2025 13:01:23 +0000
Manifest next update: Wed 13 Aug 2025 13:01:23 +0000
Files and hashes: 1: 1-QaESH-Y2QhPqcpSoi8t5RQnRzA.roa (hash: tm4k5KqgYtwGTZCVOd0pYNB6yIwBE4zoDNRsM5SfEu8=)
2: Ivy3m4Flvw_zoq8Hw6rIxjNbc60.roa (hash: r8eSfS6R14mAIVwo2SfhQBG0x09EdYm/K0sgoOKrdGE=)
3: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: yFKDnIEsUlKfrPGLY7WnKgjtLUGRiF2IuV+VLQOHp1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:5f:01:84:40:07:80:26:ce:70:13:ae:d6:f6:09:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Aug 12 13:01:23 2025 GMT
Not After : Aug 13 13:01:23 2025 GMT
Subject: CN=5b265dbef3b5043d3dd7892d85f3a4abaf5506c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:df:2b:02:0b:07:df:ee:2e:a9:1a:65:d5:c8:
c9:7c:ec:02:12:47:0f:86:60:d0:93:c0:d3:6c:25:
12:9e:c7:2b:59:3a:27:3c:93:ce:7a:51:55:45:39:
66:e7:3d:dc:8d:26:39:6e:c6:27:46:2e:39:53:1c:
7a:b1:26:0e:43:66:8c:ca:ec:bd:3d:c1:4e:a5:b2:
1d:d3:70:5c:01:25:aa:7b:07:2e:c5:83:51:17:b5:
28:68:22:15:b1:2d:51:ee:81:9f:ca:3a:14:06:57:
fc:73:c9:aa:81:21:fe:d8:7f:e1:f6:a3:4f:84:f9:
85:ca:59:79:3f:27:10:c9:59:44:01:c2:ea:ab:78:
0e:26:0a:b2:9f:de:cf:68:87:f7:b6:ee:2c:5c:d1:
6a:59:ef:bf:fd:77:f9:d5:24:87:c4:1b:7e:0e:cb:
f1:a4:d4:34:e7:86:f3:87:2b:db:fd:8e:02:df:aa:
7e:47:5c:1b:6f:24:4b:84:a1:cc:d6:8e:32:0b:fd:
ce:71:69:fb:ed:25:01:1e:71:e5:cb:80:50:d9:f6:
9b:85:ef:ca:85:75:7a:02:e4:a9:7f:7e:ab:e1:9e:
a6:85:d3:2f:4c:f8:ad:a4:55:70:31:6d:b7:67:ba:
2a:17:08:b3:31:ad:a1:0a:9f:58:0b:cc:81:f2:80:
59:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:26:5D:BE:F3:B5:04:3D:3D:D7:89:2D:85:F3:A4:AB:AF:55:06:C0
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:90:d0:41:99:71:35:de:77:73:11:8c:1d:55:79:c0:d6:1d:
c7:38:58:e1:83:a4:73:db:fc:b8:6c:83:03:29:9f:2d:17:99:
e0:a8:db:c1:11:96:07:ec:f8:0e:44:98:13:b2:f9:0b:d7:9a:
f7:0f:5e:7b:78:27:1b:55:f1:ae:ff:7c:d5:52:57:d7:1e:a0:
6a:de:38:78:35:fa:61:fc:5c:87:f4:9f:14:c8:fc:56:95:83:
9e:36:25:26:1e:35:6d:ca:2e:09:b5:07:27:3a:12:cc:94:76:
04:cd:87:b7:e7:a2:1e:3d:44:c6:02:ae:da:d1:0f:f2:61:98:
c0:92:c6:d1:d8:e7:b8:cd:7a:41:34:d4:bc:25:e7:69:52:08:
c4:31:62:ba:a5:3a:24:c2:c0:7e:8d:fa:67:8e:e1:9e:6b:27:
7f:88:ee:fe:b5:0e:46:b8:87:b0:1d:48:65:47:45:cd:83:53:
e7:20:24:c8:f8:31:40:92:c1:9b:62:72:43:42:4d:93:ee:74:
00:ba:77:e8:f3:82:27:b4:10:f7:da:b1:4d:ab:20:4a:21:79:
98:9b:83:24:11:f6:dd:e1:6e:19:77:5b:32:d1:1f:2a:7e:1e:
3d:36:80:be:a6:1b:92:63:cc:93:80:c4:21:78:13:80:4e:61:
b3:14:3a:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZieXwGEQAeAJs5wE67W9gmRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWJhZTk4OTg5OGQ5NDAyNDI0YWFkYWZiYjQ3YzNhNmQ0
YzI1YjMwHhcNMjUwODEyMTMwMTIzWhcNMjUwODEzMTMwMTIzWjAzMTEwLwYDVQQD
Eyg1YjI2NWRiZWYzYjUwNDNkM2RkNzg5MmQ4NWYzYTRhYmFmNTUwNmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2d8rAgsH3+4uqRpl1cjJfOwCEkcP
hmDQk8DTbCUSnscrWTonPJPOelFVRTlm5z3cjSY5bsYnRi45Uxx6sSYOQ2aMyuy9
PcFOpbId03BcASWqewcuxYNRF7UoaCIVsS1R7oGfyjoUBlf8c8mqgSH+2H/h9qNP
hPmFyll5PycQyVlEAcLqq3gOJgqyn97PaIf3tu4sXNFqWe+//Xf51SSHxBt+Dsvx
pNQ054bzhyvb/Y4C36p+R1wbbyRLhKHM1o4yC/3OcWn77SUBHnHly4BQ2fabhe/K
hXV6AuSpf36r4Z6mhdMvTPitpFVwMW23Z7oqFwizMa2hCp9YC8yB8oBZZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFsmXb7ztQQ9PdeJLYXzpKuvVQbAMB8GA1UdIwQY
MBaAFEIbrpiYmNlAJCSq2vu0fDptTCWzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUt
NjdlZmNiM2Q4NmZlLzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUtNjdlZmNiM2Q4NmZl
LzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwJDQQZlx
Nd53cxGMHVV5wNYdxzhY4YOkc9v8uGyDAymfLReZ4KjbwRGWB+z4DkSYE7L5C9ea
9w9ee3gnG1Xxrv981VJX1x6gat44eDX6Yfxch/SfFMj8VpWDnjYlJh41bcouCbUH
JzoSzJR2BM2Ht+eiHj1ExgKu2tEP8mGYwJLG0djnuM16QTTUvCXnaVIIxDFiuqU6
JMLAfo36Z47hnmsnf4ju/rUORriHsB1IZUdFzYNT5yAkyPgxQJLBm2JyQ0JNk+50
ALp36POCJ7QQ99qxTasgSiF5mJuDJBH23eFuGXdbMtEfKn4ePTaAvqYbkmPMk4DE
IXgTgE5hsxQ6JQ==
-----END CERTIFICATE-----
Generated at Tue Aug 12 18:54:07 2025 by rpki-client