Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json)
Hash identifier: QxvjNSmXdNy9AB433iHqzEvcYuWgw/NVbeM93SMOHeA=
Subject key identifier: CD:CA:E0:12:DB:AB:55:6A:21:81:E6:FE:A6:54:ED:95:7C:4D:B1:51
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 0198D473616F20244D616FC42F1C65AD2967
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
Manifest number: 1650
Signing time: Sat 23 Aug 2025 01:03:07 +0000
Manifest this update: Sat 23 Aug 2025 01:03:07 +0000
Manifest next update: Sun 24 Aug 2025 01:03:07 +0000
Files and hashes: 1: 0UiMAD3K1Vd_o1ukey_EamOgfsg.roa (hash: /lgJM2bqi/sUpmdCb7crrQqVayvXqEJ8evDSByU3DJU=)
2: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: DO1GTxpK4CZchyMwE0eaibNiwHk65FBjK4wmSTo/CA8=)
3: aVnXSxl3A9imF58Ni6PA9o97Lt0.roa (hash: 1b03aGZyiDI4vZq8xAQwMk9wWsMeLl0pjrQrWqhenxw=)
4: misEsljA75nAA5oIsh_k4GVCg4w.roa (hash: p4BzWp3j9j27Wjuz+V0a+txHqIiOhQ+ybn3eqzzf6rU=)
5: ujK7196Gk_c3ddVaz2vNjb1yuKM.roa (hash: oPbTKsm4Ke6sVA27ztN+8OGkGTX5DqK9hqJSWTYFs3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:61:6f:20:24:4d:61:6f:c4:2f:1c:65:ad:29:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Aug 23 01:03:07 2025 GMT
Not After : Aug 24 01:03:07 2025 GMT
Subject: CN=cdcae012dbab556a2181e6fea654ed957c4db151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fd:17:9a:b7:9b:51:a0:ed:b9:9f:5c:2a:e2:
5f:94:4b:81:30:7a:af:9d:43:9f:be:4e:f8:c6:0e:
81:d0:67:e6:27:a1:9f:c7:76:b9:bd:d5:67:17:39:
10:10:07:14:33:81:ce:26:ed:e0:b3:01:c4:0b:94:
4d:0a:cc:f8:ae:43:a8:05:61:dc:f4:7c:66:62:69:
b3:df:9e:fd:56:aa:6c:f3:b4:55:8a:09:7e:91:61:
c0:09:78:b3:d0:e5:b4:04:97:36:96:dc:98:11:ad:
34:75:4b:b3:a6:9c:d2:58:8d:c8:cb:ae:b8:b0:f6:
02:c0:6a:aa:a6:e7:ab:8c:34:7d:59:66:b4:68:a2:
d9:5e:b6:d1:2a:26:68:64:19:2d:ef:0d:5b:c9:2a:
26:ca:29:6d:b2:fb:44:9f:3d:9d:5f:80:3b:ed:f1:
78:75:de:ee:76:7f:b2:09:45:77:19:61:79:c3:e8:
86:8d:8d:f5:4c:f2:12:96:53:de:59:5b:03:7a:3b:
37:4b:09:29:c7:01:96:06:14:08:1d:59:74:6c:1a:
a6:0e:ca:da:88:3e:18:d4:a1:e6:74:21:4d:ae:7e:
4a:7b:67:8d:c9:78:b2:60:03:42:b0:cf:bd:35:12:
b4:4c:1d:5e:89:dc:02:d6:be:e8:3b:c4:d2:46:4d:
3a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:CA:E0:12:DB:AB:55:6A:21:81:E6:FE:A6:54:ED:95:7C:4D:B1:51
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:46:77:94:d4:ac:d7:18:94:69:92:99:81:0d:cf:23:13:87:
7e:25:8d:2d:4b:49:2d:32:41:04:94:e0:0e:90:c9:92:5c:d5:
5e:2d:50:61:a9:c3:68:4a:94:73:2f:fe:de:67:2f:46:d2:6f:
ef:20:f1:24:d9:3e:ab:72:5f:ac:49:eb:81:28:57:5d:1c:9b:
82:56:88:18:61:bc:ea:31:11:15:27:ac:0c:a2:81:dd:b8:8a:
1b:b5:65:66:a3:40:a5:f3:98:2d:e3:5b:33:00:41:e5:82:3f:
ed:f3:59:26:82:c7:2d:56:0c:ed:19:f9:4c:44:e2:b3:ef:75:
f6:96:1a:f9:0e:2a:e5:af:09:67:6f:ed:b9:89:79:e3:35:ed:
3f:00:52:f6:e3:88:4b:29:3f:e7:1f:8a:e5:37:5b:d2:9f:ee:
e0:26:6b:87:c7:c0:7e:f4:42:29:ef:e5:8d:e4:e5:d2:9f:32:
5f:49:d2:39:bd:01:db:69:8f:1e:e6:5a:76:3a:8a:a4:f2:00:
de:dc:1b:58:7b:c8:c1:cc:43:82:b4:23:b4:b7:39:31:b4:91:
67:5b:12:2e:38:a8:e8:49:62:fb:7d:61:18:f4:f9:40:ba:bf:
d1:aa:47:cf:0d:e7:7d:d7:f7:f8:bf:2e:24:35:f4:5b:50:a1:
21:9e:03:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc2FvICRNYW/ELxxlrSlnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwZTM5NTNjNWNiNDUyZjE1OWY4ZTE1MDVmYzcwMmU4ODM2
NTdlNzIwHhcNMjUwODIzMDEwMzA3WhcNMjUwODI0MDEwMzA3WjAzMTEwLwYDVQQD
EyhjZGNhZTAxMmRiYWI1NTZhMjE4MWU2ZmVhNjU0ZWQ5NTdjNGRiMTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxf0XmrebUaDtuZ9cKuJflEuBMHqv
nUOfvk74xg6B0GfmJ6Gfx3a5vdVnFzkQEAcUM4HOJu3gswHEC5RNCsz4rkOoBWHc
9HxmYmmz3579Vqps87RVigl+kWHACXiz0OW0BJc2ltyYEa00dUuzppzSWI3Iy664
sPYCwGqqpuerjDR9WWa0aKLZXrbRKiZoZBkt7w1bySomyiltsvtEnz2dX4A77fF4
dd7udn+yCUV3GWF5w+iGjY31TPISllPeWVsDejs3SwkpxwGWBhQIHVl0bBqmDsra
iD4Y1KHmdCFNrn5Ke2eNyXiyYANCsM+9NRK0TB1eidwC1r7oO8TSRk06IQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM3K4BLbq1VqIYHm/qZU7ZV8TbFRMB8GA1UdIwQY
MBaAFEDjlTxctFLxWfjhUF/HAuiDZX5yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEt
ZmE1YWYzOGRlYjVlLzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEtZmE1YWYzOGRlYjVl
LzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAikZ3lNSs
1xiUaZKZgQ3PIxOHfiWNLUtJLTJBBJTgDpDJklzVXi1QYanDaEqUcy/+3mcvRtJv
7yDxJNk+q3JfrEnrgShXXRybglaIGGG86jERFSesDKKB3biKG7VlZqNApfOYLeNb
MwBB5YI/7fNZJoLHLVYM7Rn5TETis+919pYa+Q4q5a8JZ2/tuYl54zXtPwBS9uOI
Syk/5x+K5Tdb0p/u4CZrh8fAfvRCKe/ljeTl0p8yX0nSOb0B22mPHuZadjqKpPIA
3twbWHvIwcxDgrQjtLc5MbSRZ1sSLjio6Eli+31hGPT5QLq/0apHzw3nfdf3+L8u
JDX0W1ChIZ4DsQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:40:46 2025 by rpki-client