Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
File: q3rQAuSQheSApRIaeaJvztr_oZs.mft (raw, json)
Hash identifier: uT4mLF+NUlShP91+G297jz//N4J4Ye+p7m60hAhwN5Q=
Subject key identifier: 9D:4F:77:51:2D:C4:8E:7D:B4:9D:AB:14:68:1E:39:7E:0F:43:95:5F
Authority key identifier: AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B
Certificate issuer: /CN=ab7ad002e49085e480a5121a79a26fcedaffa19b
Certificate serial: 0198D6600E28C194EDAFEE258E1CD2281D6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
Manifest number: 1346
Signing time: Sat 23 Aug 2025 10:01:15 +0000
Manifest this update: Sat 23 Aug 2025 10:01:15 +0000
Manifest next update: Sun 24 Aug 2025 10:01:15 +0000
Files and hashes: 1: q3rQAuSQheSApRIaeaJvztr_oZs.crl (hash: Z3LtM8UBjGAeCcBzu9jf3zcMk3wARcIIujwgTmTjs9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:0e:28:c1:94:ed:af:ee:25:8e:1c:d2:28:1d:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7ad002e49085e480a5121a79a26fcedaffa19b
Validity
Not Before: Aug 23 10:01:15 2025 GMT
Not After : Aug 24 10:01:15 2025 GMT
Subject: CN=9d4f77512dc48e7db49dab14681e397e0f43955f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a6:89:9a:5a:d9:b5:15:0c:78:04:04:96:dc:
00:be:e0:3f:9b:32:0c:e1:fa:f7:d9:e8:e9:dd:67:
2e:cd:0b:93:38:d6:e0:47:92:c9:9e:b0:8e:ba:bf:
07:84:19:40:55:e9:68:02:c0:59:1f:61:c3:ad:85:
c8:7a:b2:d6:2b:78:bd:6e:75:db:e6:d1:89:e7:b0:
87:c0:77:33:13:b6:47:01:fa:85:17:7a:68:4a:46:
8a:e1:11:30:ab:72:70:7a:81:23:06:fd:a7:6e:e2:
c9:f2:42:15:e0:a2:19:52:eb:96:17:b3:f0:22:32:
ae:06:3f:06:98:95:bd:c8:d8:5e:27:aa:cf:d5:12:
54:92:33:86:ae:ab:76:e4:76:85:41:c4:b1:48:ac:
0e:2e:e2:66:b8:7d:eb:3e:ec:e4:67:7e:85:e5:a1:
0f:dc:94:b2:d1:64:0d:17:1f:95:3e:3f:66:2e:f7:
07:b6:46:cb:8c:9d:46:c2:84:80:d0:41:64:ff:1e:
9f:b7:f8:ec:ba:33:09:a5:8c:76:a7:c6:d6:9a:4d:
d6:68:9f:ca:23:1b:a6:a6:7d:92:0b:23:44:b7:ec:
3d:3a:bb:44:7e:d1:dd:7e:4d:c6:9e:c8:4e:8b:f2:
7c:62:4e:80:18:20:89:15:1a:fa:0b:fb:83:12:e0:
9a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:4F:77:51:2D:C4:8E:7D:B4:9D:AB:14:68:1E:39:7E:0F:43:95:5F
X509v3 Authority Key Identifier:
keyid:AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:50:40:31:6a:d2:55:6e:64:b1:93:13:af:01:d1:11:45:73:
e6:b7:2d:62:70:25:ae:2a:2b:1e:af:d6:c2:0f:3d:12:b9:a3:
31:36:34:b4:a1:65:72:d0:1f:90:fc:36:38:60:b3:11:71:d9:
d7:c0:83:19:49:12:cd:98:a3:b4:81:4f:64:24:61:7d:72:44:
61:d5:67:47:89:f7:40:52:13:cc:1a:6d:f4:0d:ee:ec:6d:8b:
96:75:02:43:3e:4e:5d:23:90:4b:90:48:48:9d:86:18:30:85:
b6:55:fb:32:2d:85:e5:05:d1:28:25:6a:ca:9b:f7:95:1b:60:
ae:94:ce:f2:da:3a:82:65:9e:49:b0:d9:3a:7c:e7:24:2e:66:
7f:85:63:ca:1f:c0:53:78:38:95:be:d4:08:d1:ac:62:f1:5a:
e0:9f:0b:89:0c:eb:02:c2:a5:fa:60:f7:f7:ea:e4:dd:5d:a7:
85:b2:c2:4d:d3:fb:68:d9:e8:d5:93:4c:e4:10:e9:45:bb:eb:
4a:dc:25:19:91:1d:55:68:fc:20:b3:0c:b5:a7:65:d5:fd:3a:
f1:cf:29:db:69:83:03:a4:a4:13:db:22:ba:dd:b7:4e:cb:1f:
25:76:8c:93:a8:38:2e:c6:d0:30:74:b0:cf:0f:24:e4:9e:cb:
84:db:4f:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYA4owZTtr+4ljhzSKB1vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiN2FkMDAyZTQ5MDg1ZTQ4MGE1MTIxYTc5YTI2ZmNlZGFm
ZmExOWIwHhcNMjUwODIzMTAwMTE1WhcNMjUwODI0MTAwMTE1WjAzMTEwLwYDVQQD
Eyg5ZDRmNzc1MTJkYzQ4ZTdkYjQ5ZGFiMTQ2ODFlMzk3ZTBmNDM5NTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6aJmlrZtRUMeAQEltwAvuA/mzIM
4fr32ejp3WcuzQuTONbgR5LJnrCOur8HhBlAVeloAsBZH2HDrYXIerLWK3i9bnXb
5tGJ57CHwHczE7ZHAfqFF3poSkaK4REwq3JweoEjBv2nbuLJ8kIV4KIZUuuWF7Pw
IjKuBj8GmJW9yNheJ6rP1RJUkjOGrqt25HaFQcSxSKwOLuJmuH3rPuzkZ36F5aEP
3JSy0WQNFx+VPj9mLvcHtkbLjJ1GwoSA0EFk/x6ft/jsujMJpYx2p8bWmk3WaJ/K
Ixumpn2SCyNEt+w9OrtEftHdfk3GnshOi/J8Yk6AGCCJFRr6C/uDEuCaqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ1Pd1EtxI59tJ2rFGgeOX4PQ5VfMB8GA1UdIwQY
MBaAFKt60ALkkIXkgKUSGnmib87a/6GbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yNGZiYjYtODZiYy00NmNiLTg4ZTUt
YjU4NzNiYThmZTQ3LzEvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8yNGZiYjYtODZiYy00NmNiLTg4ZTUtYjU4NzNiYThmZTQ3
LzEvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgFBAMWrS
VW5ksZMTrwHREUVz5rctYnAlriorHq/Wwg89ErmjMTY0tKFlctAfkPw2OGCzEXHZ
18CDGUkSzZijtIFPZCRhfXJEYdVnR4n3QFITzBpt9A3u7G2LlnUCQz5OXSOQS5BI
SJ2GGDCFtlX7Mi2F5QXRKCVqypv3lRtgrpTO8to6gmWeSbDZOnznJC5mf4Vjyh/A
U3g4lb7UCNGsYvFa4J8LiQzrAsKl+mD39+rk3V2nhbLCTdP7aNno1ZNM5BDpRbvr
StwlGZEdVWj8ILMMtadl1f068c8p22mDA6SkE9siut23TssfJXaMk6g4LsbQMHSw
zw8k5J7LhNtPxg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:21:07 2025 by rpki-client