Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier: 7ur3hToiw/FNYJ+qrCdSBrFPid61TIqiGZo4FXRhkJ0=
Subject key identifier: 9B:92:4D:5A:5B:4D:4F:E8:42:6D:C2:7F:BB:69:28:3E:04:7B:F7:DB
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial: 019A56AED4BB8E2F37AF74B8B4C5EA2562BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number: 0CFD
Signing time: Thu 06 Nov 2025 01:01:29 +0000
Manifest this update: Thu 06 Nov 2025 01:01:29 +0000
Manifest next update: Fri 07 Nov 2025 01:01:29 +0000
Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: djuGD4PXfz5DPZmpCAKNGlsx5tNpevRsfP4dR+JLpe4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:ae:d4:bb:8e:2f:37:af:74:b8:b4:c5:ea:25:62:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Validity
Not Before: Nov 6 01:01:29 2025 GMT
Not After : Nov 7 01:01:29 2025 GMT
Subject: CN=9b924d5a5b4d4fe8426dc27fbb69283e047bf7db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:04:2a:3b:6b:99:18:de:96:27:f5:fe:05:f4:
94:1b:6a:fa:e1:3d:de:8f:9f:28:5d:5d:2b:16:b6:
f4:43:4d:da:78:43:40:91:33:28:df:1c:85:93:0d:
fe:51:21:2a:ca:ac:31:24:59:b2:87:7d:4c:1f:ff:
9a:8f:0c:81:d8:9f:df:76:29:2d:17:69:c3:f4:58:
99:51:df:8b:82:9d:ce:fa:c4:49:ee:29:7c:c8:5c:
af:53:45:bf:15:ea:36:b9:0b:88:be:b9:b3:bf:2f:
1d:01:7a:5f:48:a4:54:a4:47:ba:e2:d8:7f:a2:b5:
27:bf:ed:a5:43:9d:51:39:fb:b0:1c:42:70:a8:54:
31:b3:e8:cb:16:0c:81:b8:69:c3:00:74:31:34:29:
0a:db:0f:ef:fb:85:44:eb:85:df:e9:94:78:81:6e:
92:cf:84:c1:85:d1:31:3c:6f:04:05:9a:c3:c0:50:
e0:3e:7f:aa:93:c6:35:43:e8:8e:69:2c:5b:cf:2c:
88:ce:1b:38:e0:a4:18:7e:7e:ef:d5:f2:b8:e5:b0:
d9:57:3d:fe:45:ee:17:6f:f8:0b:65:98:8e:cf:20:
6f:5b:2f:08:51:7e:61:78:3b:58:e0:81:09:f8:13:
36:0b:4b:8c:aa:e9:f5:8e:2d:b7:26:f1:ab:0c:a5:
d4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:92:4D:5A:5B:4D:4F:E8:42:6D:C2:7F:BB:69:28:3E:04:7B:F7:DB
X509v3 Authority Key Identifier:
keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:8b:46:67:72:f1:66:98:2d:09:6b:73:39:e0:28:61:3d:4f:
c7:47:ab:0f:9e:36:4b:a4:4a:48:f5:a2:20:66:06:12:52:42:
08:ec:21:fb:43:2f:e2:fe:ac:e3:87:1f:51:2a:c3:1b:0c:df:
4c:51:53:e7:43:48:d4:99:a5:3a:46:c8:f0:d7:ff:95:b1:d3:
93:d6:ee:b6:e0:40:fd:31:2c:49:63:e9:24:9b:0c:79:e6:97:
10:83:17:a8:ab:bc:3d:83:15:42:ea:3a:d8:24:98:26:29:9a:
de:ef:d5:3f:df:12:2b:31:35:8f:41:e2:c6:71:1f:f9:2e:b5:
42:9a:44:fe:81:b1:a2:0b:1f:e5:f1:7a:b2:4e:d3:46:27:3a:
e2:2a:cc:7e:7c:c8:ea:c5:33:1c:fe:8d:4d:33:9b:d3:1e:90:
98:0f:26:db:05:82:d8:72:65:d6:ae:76:3d:3f:27:8b:64:ca:
0e:aa:c1:20:b7:8c:ae:05:1b:09:2b:3b:c5:24:cf:5e:d8:19:
26:8a:67:fe:18:47:f4:d7:59:9a:fa:6d:0b:f5:fc:19:68:28:
38:7b:b7:83:01:e9:31:bd:fa:76:38:8a:ae:ce:f7:03:83:bc:
c8:bb:84:6a:f6:49:a4:91:f3:04:5e:7a:d1:43:ec:c7:f5:bb:
56:be:57:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpWrtS7ji83r3S4tMXqJWK6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMmRhZDgyMDY5OWYxNTNhMzFhNjZlZDY3ODNhMWRlNGUw
ZjhjZjUwHhcNMjUxMTA2MDEwMTI5WhcNMjUxMTA3MDEwMTI5WjAzMTEwLwYDVQQD
Eyg5YjkyNGQ1YTViNGQ0ZmU4NDI2ZGMyN2ZiYjY5MjgzZTA0N2JmN2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAQqO2uZGN6WJ/X+BfSUG2r64T3e
j58oXV0rFrb0Q03aeENAkTMo3xyFkw3+USEqyqwxJFmyh31MH/+ajwyB2J/fdikt
F2nD9FiZUd+Lgp3O+sRJ7il8yFyvU0W/Feo2uQuIvrmzvy8dAXpfSKRUpEe64th/
orUnv+2lQ51ROfuwHEJwqFQxs+jLFgyBuGnDAHQxNCkK2w/v+4VE64Xf6ZR4gW6S
z4TBhdExPG8EBZrDwFDgPn+qk8Y1Q+iOaSxbzyyIzhs44KQYfn7v1fK45bDZVz3+
Re4Xb/gLZZiOzyBvWy8IUX5heDtY4IEJ+BM2C0uMqun1ji23JvGrDKXUkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJuSTVpbTU/oQm3Cf7tpKD4Ee/fbMB8GA1UdIwQY
MBaAFEEtrYIGmfFToxpm7WeDod5OD4z1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iYTk0ZjQtOGEyMC00ZDEwLTkyN2Yt
YTg4MmRhNmMwY2ZjLzEvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iYTk0ZjQtOGEyMC00ZDEwLTkyN2YtYTg4MmRhNmMwY2Zj
LzEvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACItGZ3Lx
ZpgtCWtzOeAoYT1Px0erD542S6RKSPWiIGYGElJCCOwh+0Mv4v6s44cfUSrDGwzf
TFFT50NI1JmlOkbI8Nf/lbHTk9butuBA/TEsSWPpJJsMeeaXEIMXqKu8PYMVQuo6
2CSYJima3u/VP98SKzE1j0HixnEf+S61QppE/oGxogsf5fF6sk7TRic64irMfnzI
6sUzHP6NTTOb0x6QmA8m2wWC2HJl1q52PT8ni2TKDqrBILeMrgUbCSs7xSTPXtgZ
Jopn/hhH9NdZmvptC/X8GWgoOHu3gwHpMb36djiKrs73A4O8yLuEavZJpJHzBF56
0UPsx/W7Vr5XFQ==
-----END CERTIFICATE-----
Generated at Thu Nov 6 06:07:37 2025 by rpki-client