Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json)
Hash identifier: GdoEIEqxkLeiSN20fFrxW7XDpCnIxa8MLzQOBPQIVKU=
Subject key identifier: FB:FF:74:1A:DA:66:29:C6:1D:1F:6B:57:04:36:A8:27:26:2C:38:FE
Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Certificate serial: 0198D4DFD983EA92C62324E2D4C80226C2C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 03:01:36 +0000
Manifest this update: Sat 23 Aug 2025 03:01:36 +0000
Manifest next update: Sun 24 Aug 2025 03:01:36 +0000
Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: d++KR2D7FGncZVUR9O9DvbPlStr6V6HRIokgfzjT6ZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:d9:83:ea:92:c6:23:24:e2:d4:c8:02:26:c2:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Validity
Not Before: Aug 23 03:01:36 2025 GMT
Not After : Aug 24 03:01:36 2025 GMT
Subject: CN=fbff741ada6629c61d1f6b570436a827262c38fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:eb:c0:ea:42:50:62:ed:53:ad:50:6c:c3:09:
5a:8f:73:bb:34:20:e1:ba:48:e4:81:16:dc:ea:6a:
82:85:2d:42:56:3e:3e:3a:14:28:a4:bc:2a:fa:b1:
32:97:83:61:53:cb:bb:73:23:99:54:b3:b2:d3:80:
d5:a7:3f:16:f3:cd:9f:e3:a0:88:04:52:0c:f2:04:
a9:90:18:42:fd:8f:62:92:b6:ba:c8:9f:45:f8:33:
cd:70:8e:c4:de:3e:fa:4a:0e:0c:a2:34:7a:d2:84:
82:c3:03:5c:98:dd:a8:ef:9a:25:b6:36:17:53:60:
65:ba:a2:b0:6c:a7:83:4e:cb:aa:8c:d0:97:38:60:
2c:02:7e:5e:30:78:5c:db:68:f4:ed:09:9f:74:a2:
15:38:23:49:89:54:4e:7c:f4:e0:9b:8d:d7:d9:9c:
08:0a:14:97:7f:9e:04:7a:74:54:8f:fe:c4:a4:55:
2c:2a:d2:fb:bd:5a:98:44:06:67:0e:9f:20:85:f1:
b3:be:87:18:24:94:98:f4:c1:c2:13:54:7f:98:f7:
54:cd:d8:89:ac:56:d0:92:1f:8a:6c:a5:6c:09:f3:
45:82:fe:7d:54:a3:27:18:40:d1:7f:89:fe:38:b5:
61:c1:3f:77:20:9b:44:e3:c8:d9:6d:38:18:aa:60:
e0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:FF:74:1A:DA:66:29:C6:1D:1F:6B:57:04:36:A8:27:26:2C:38:FE
X509v3 Authority Key Identifier:
keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:ca:60:54:c3:4a:b8:21:f7:b7:76:2c:80:c7:f7:77:cc:f1:
08:4f:99:ca:ed:c2:b4:c9:7e:76:77:31:4a:cf:7d:fa:f5:6b:
60:76:a3:32:69:d0:db:22:cc:4e:f5:98:8e:ce:8b:77:a9:70:
1f:70:a0:26:d6:91:33:a0:75:b5:4a:a0:fc:d8:a9:2a:a9:a7:
ae:0d:4e:93:d4:e2:ac:1c:15:06:01:6f:53:15:a6:11:88:f6:
56:50:2c:c4:2e:dd:bd:5e:08:9a:0f:79:36:e6:85:eb:e7:b8:
e3:13:1e:83:a9:6d:2e:ca:f0:e2:1c:59:b5:65:45:c4:8e:ad:
91:23:0b:bb:33:f8:55:84:2b:ca:39:43:7f:81:13:fb:b8:98:
62:a0:8e:95:9a:73:fd:0e:9c:f7:df:98:18:ee:23:70:d3:37:
44:f5:35:41:e6:e4:be:45:bd:f2:79:22:ce:1e:ac:5d:ee:79:
0f:5f:d6:d2:6a:cb:bc:e6:95:ea:39:5b:70:f3:26:fb:57:bd:
a7:c1:99:b9:ed:41:70:ab:21:b1:82:77:59:c1:4f:fe:61:12:
1e:30:f7:7c:45:a0:c0:51:a0:52:c6:71:ed:0f:7c:4a:5f:d4:
53:b7:9d:47:67:33:a4:24:06:ce:ec:6b:ff:43:3c:b1:93:5b:
12:8c:fc:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU39mD6pLGIyTi1MgCJsLCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhZjM1MDYyMWNjMDFlOGExZWQzNzI4MWRmMzJiMDk3MWNi
ZGU1NTcwHhcNMjUwODIzMDMwMTM2WhcNMjUwODI0MDMwMTM2WjAzMTEwLwYDVQQD
EyhmYmZmNzQxYWRhNjYyOWM2MWQxZjZiNTcwNDM2YTgyNzI2MmMzOGZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyevA6kJQYu1TrVBswwlaj3O7NCDh
ukjkgRbc6mqChS1CVj4+OhQopLwq+rEyl4NhU8u7cyOZVLOy04DVpz8W882f46CI
BFIM8gSpkBhC/Y9ikra6yJ9F+DPNcI7E3j76Sg4MojR60oSCwwNcmN2o75oltjYX
U2BluqKwbKeDTsuqjNCXOGAsAn5eMHhc22j07QmfdKIVOCNJiVROfPTgm43X2ZwI
ChSXf54EenRUj/7EpFUsKtL7vVqYRAZnDp8ghfGzvocYJJSY9MHCE1R/mPdUzdiJ
rFbQkh+KbKVsCfNFgv59VKMnGEDRf4n+OLVhwT93IJtE48jZbTgYqmDgSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPv/dBraZinGHR9rVwQ2qCcmLDj+MB8GA1UdIwQY
MBaAFKrzUGIcwB6KHtNygd8ysJccveVXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTkt
NzVhOGIwOTc0ZTIwLzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTktNzVhOGIwOTc0ZTIw
LzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcspgVMNK
uCH3t3YsgMf3d8zxCE+Zyu3CtMl+dncxSs99+vVrYHajMmnQ2yLMTvWYjs6Ld6lw
H3CgJtaRM6B1tUqg/NipKqmnrg1Ok9TirBwVBgFvUxWmEYj2VlAsxC7dvV4Img95
NuaF6+e44xMeg6ltLsrw4hxZtWVFxI6tkSMLuzP4VYQryjlDf4ET+7iYYqCOlZpz
/Q6c99+YGO4jcNM3RPU1QebkvkW98nkizh6sXe55D1/W0mrLvOaV6jlbcPMm+1e9
p8GZue1BcKshsYJ3WcFP/mESHjD3fEWgwFGgUsZx7Q98Sl/UU7edR2czpCQGzuxr
/0M8sZNbEoz8Jw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:10:54 2025 by rpki-client