Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
File: Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft (raw, json)
Hash identifier: yCwyC1l7H1ihonciXDvLIipl3Hx0CrjBiY6Ie6ea+uA=
Subject key identifier: 61:70:53:82:33:67:9C:C3:16:24:FD:1C:0E:BC:E3:5A:97:F7:10:BB
Authority key identifier: 43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
Certificate issuer: /CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Certificate serial: 0198D998D2DFB455E42E69F3A9F56DD09832
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
Manifest number: 0AD8
Signing time: Sun 24 Aug 2025 01:02:07 +0000
Manifest this update: Sun 24 Aug 2025 01:02:07 +0000
Manifest next update: Mon 25 Aug 2025 01:02:07 +0000
Files and hashes: 1: Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl (hash: Vj8OtM9fnqW3JsfFjiEQATxYjwcPFvYfXG2p4vOvBSE=)
2: rqFwpW6hygA3WlEvpR2r2eLIqwU.roa (hash: hJKMm6stZaqD+/5F5Zq5RhHhs3I7m3K3YzZ93XXb5tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:98:d2:df:b4:55:e4:2e:69:f3:a9:f5:6d:d0:98:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Validity
Not Before: Aug 24 01:02:07 2025 GMT
Not After : Aug 25 01:02:07 2025 GMT
Subject: CN=6170538233679cc31624fd1c0ebce35a97f710bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:be:e6:8e:ee:40:7c:bd:6f:d6:91:ee:d8:3a:
15:e2:e0:b8:d1:8b:3a:ab:c1:0d:0a:8d:61:a8:d2:
12:8b:fa:ad:b2:cb:e6:be:2f:13:af:67:0a:d9:9f:
99:ff:30:26:41:ae:cb:8a:bf:00:7a:8a:aa:63:5a:
ba:f1:a4:76:7d:e8:f0:ad:10:b6:f0:c2:f4:dc:d7:
b8:79:ac:89:1c:56:da:32:3e:a0:c3:96:8f:f4:60:
2a:b5:03:28:f3:f0:75:34:00:82:c1:ae:59:fd:0f:
0d:cc:21:5d:6d:6a:e8:5a:48:8e:d4:40:67:2b:e3:
48:e4:01:73:c6:77:ff:3f:7b:2f:4c:b0:eb:3b:f6:
1f:cb:9d:61:b8:a7:88:98:cb:e2:fc:e1:34:82:b9:
d8:68:fc:fb:21:16:90:1b:f4:d9:cd:0b:4e:57:b1:
9d:0a:35:9a:37:34:44:da:f4:11:bd:61:9c:38:ed:
83:02:33:4b:d7:00:0a:00:4e:93:50:a6:01:09:2e:
00:87:ae:0e:41:d5:92:3e:a9:cb:67:a8:76:fb:99:
cf:ff:59:87:19:6f:db:16:d3:b9:a1:af:ac:e0:fc:
33:0f:ef:55:6c:d9:e4:ce:6c:db:c6:9a:8b:e8:55:
7a:02:96:1a:d5:ad:30:0c:a6:01:68:53:fd:7b:64:
8d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:70:53:82:33:67:9C:C3:16:24:FD:1C:0E:BC:E3:5A:97:F7:10:BB
X509v3 Authority Key Identifier:
keyid:43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:54:19:e2:d3:fd:d1:38:51:0c:77:18:d0:b9:7c:b5:7b:c4:
9d:27:0f:89:a0:02:5e:7c:29:da:0f:d7:26:44:af:33:d1:22:
82:1f:01:77:38:32:fc:04:8d:08:c5:4e:73:85:f4:1f:c4:d4:
cb:28:96:17:62:8f:8d:6b:07:2c:3a:7c:04:3d:88:89:2c:ab:
36:9a:e7:7e:d0:91:29:0c:71:68:49:d0:86:f4:7c:42:97:6a:
79:e1:67:ec:30:f3:0a:89:97:29:01:cb:2d:3c:d0:59:7e:dd:
2b:33:e7:67:0b:13:77:36:b6:a5:ea:2d:b5:6d:73:9c:cc:46:
16:5c:0b:01:da:b7:8f:85:de:90:01:96:e6:1f:14:77:57:48:
26:e3:10:1a:ef:8d:f9:1e:4e:8a:29:9a:bb:69:01:ce:3c:74:
a8:f7:d6:c0:5d:d2:19:32:09:00:86:1e:16:a6:37:d6:c1:ee:
0e:66:62:0a:83:d8:26:3b:09:28:f2:0b:c1:e5:6b:ea:a7:35:
33:2e:90:38:06:d2:5e:f8:0f:fc:a3:c3:14:a3:d6:91:5c:16:
bd:8f:79:8c:75:9a:c1:23:20:7d:20:39:91:6a:83:36:78:ed:
ef:2d:4f:da:dc:5d:ef:fb:99:c3:80:f4:39:e9:ea:fa:85:75:
38:1e:7f:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjZmNLftFXkLmnzqfVt0JgyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzOWFjMzg4NzgxMjdjZWNkYzRjODNlYTY5ZWVlMWY0ZTEx
OGJjZmYwHhcNMjUwODI0MDEwMjA3WhcNMjUwODI1MDEwMjA3WjAzMTEwLwYDVQQD
Eyg2MTcwNTM4MjMzNjc5Y2MzMTYyNGZkMWMwZWJjZTM1YTk3ZjcxMGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL7mju5AfL1v1pHu2DoV4uC40Ys6
q8ENCo1hqNISi/qtssvmvi8Tr2cK2Z+Z/zAmQa7Lir8AeoqqY1q68aR2fejwrRC2
8ML03Ne4eayJHFbaMj6gw5aP9GAqtQMo8/B1NACCwa5Z/Q8NzCFdbWroWkiO1EBn
K+NI5AFzxnf/P3svTLDrO/Yfy51huKeImMvi/OE0grnYaPz7IRaQG/TZzQtOV7Gd
CjWaNzRE2vQRvWGcOO2DAjNL1wAKAE6TUKYBCS4Ah64OQdWSPqnLZ6h2+5nP/1mH
GW/bFtO5oa+s4PwzD+9VbNnkzmzbxpqL6FV6ApYa1a0wDKYBaFP9e2SN4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGFwU4IzZ5zDFiT9HA6841qX9xC7MB8GA1UdIwQY
MBaAFEOaw4h4Enzs3EyD6mnu4fThGLz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yNjYwOWYtMjcwMC00OTQ5LThkYmUt
YmFlMWY3N2JhNzU4LzEvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yNjYwOWYtMjcwMC00OTQ5LThkYmUtYmFlMWY3N2JhNzU4
LzEvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHlQZ4tP9
0ThRDHcY0Ll8tXvEnScPiaACXnwp2g/XJkSvM9Eigh8Bdzgy/ASNCMVOc4X0H8TU
yyiWF2KPjWsHLDp8BD2IiSyrNprnftCRKQxxaEnQhvR8QpdqeeFn7DDzComXKQHL
LTzQWX7dKzPnZwsTdza2peottW1znMxGFlwLAdq3j4XekAGW5h8Ud1dIJuMQGu+N
+R5Oiimau2kBzjx0qPfWwF3SGTIJAIYeFqY31sHuDmZiCoPYJjsJKPILweVr6qc1
My6QOAbSXvgP/KPDFKPWkVwWvY95jHWawSMgfSA5kWqDNnjt7y1P2txd7/uZw4D0
Oenq+oV1OB5/Tg==
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:44:31 2025 by rpki-client