Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json)
Hash identifier: dQbCk9gShNyTyQFSjGlqqlhySz2A5RbrTr+aoRPv/20=
Subject key identifier: E8:D2:89:DB:34:FB:26:7E:12:76:E0:3E:82:CA:84:D3:6C:81:1D:42
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 0199FDDA20AA174C3AC0E71CAC9A26DCF901
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
Manifest number: 16EA
Signing time: Sun 19 Oct 2025 19:02:34 +0000
Manifest this update: Sun 19 Oct 2025 19:02:34 +0000
Manifest next update: Mon 20 Oct 2025 19:02:34 +0000
Files and hashes: 1: 0UiMAD3K1Vd_o1ukey_EamOgfsg.roa (hash: /lgJM2bqi/sUpmdCb7crrQqVayvXqEJ8evDSByU3DJU=)
2: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: lqYVLNrZy3CBoYvlOLkW1znoHC8tJgxnd366uP7parc=)
3: aVnXSxl3A9imF58Ni6PA9o97Lt0.roa (hash: 1b03aGZyiDI4vZq8xAQwMk9wWsMeLl0pjrQrWqhenxw=)
4: misEsljA75nAA5oIsh_k4GVCg4w.roa (hash: p4BzWp3j9j27Wjuz+V0a+txHqIiOhQ+ybn3eqzzf6rU=)
5: ujK7196Gk_c3ddVaz2vNjb1yuKM.roa (hash: oPbTKsm4Ke6sVA27ztN+8OGkGTX5DqK9hqJSWTYFs3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:20:aa:17:4c:3a:c0:e7:1c:ac:9a:26:dc:f9:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Oct 19 19:02:34 2025 GMT
Not After : Oct 20 19:02:34 2025 GMT
Subject: CN=e8d289db34fb267e1276e03e82ca84d36c811d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b6:d6:ae:4a:a5:ec:a3:ac:9b:ea:6f:79:bc:
32:91:76:d9:8c:a9:4d:c1:8c:25:8e:f3:8e:30:a7:
35:ef:6b:41:3d:17:ca:d9:b3:fa:0f:2c:bf:34:b7:
e2:ae:78:c0:24:6a:59:77:2a:70:3d:2a:e2:3f:6e:
e6:aa:69:f6:e4:8a:ca:ea:32:25:22:1c:75:79:63:
fb:ef:af:72:9c:6c:d4:17:47:66:21:fd:12:d2:d8:
99:4a:42:23:00:84:23:59:86:5a:22:9e:9f:e7:6b:
09:22:9d:c6:84:6d:43:cc:ac:1f:f8:ca:34:40:ab:
01:97:cf:3c:4a:ec:63:81:c7:17:43:b1:bd:4b:b8:
ee:eb:fa:44:dc:8c:ed:9f:6c:5e:68:05:44:9c:ee:
be:8d:5d:26:b4:8a:e2:86:49:e8:a5:7d:6b:63:d1:
ec:8a:b2:f3:f5:92:8f:2c:5f:63:b0:f5:ec:be:7d:
90:4e:9e:a7:49:71:cc:d2:43:d4:6c:18:d2:80:13:
ba:a5:57:ba:55:b1:1c:df:4e:30:73:fc:f7:1f:10:
f6:ea:fe:94:eb:04:d1:04:3a:a2:db:99:63:dd:47:
04:ae:fc:16:6e:de:d4:bd:5d:a8:31:03:9c:7e:63:
f7:b3:00:71:e0:a2:0f:01:c1:25:fb:61:af:fe:a3:
9e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D2:89:DB:34:FB:26:7E:12:76:E0:3E:82:CA:84:D3:6C:81:1D:42
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:47:fc:e9:d1:4f:4c:5e:1a:72:ed:7a:62:a3:a9:15:77:09:
ce:1d:b0:56:79:87:73:d5:20:4b:fe:25:49:70:59:56:c5:4d:
e6:9b:c9:97:11:ce:0d:e4:75:22:b2:42:9e:19:ae:94:eb:d1:
48:2d:2e:4b:9e:e7:3f:ed:0a:ca:0e:f1:4b:96:73:24:57:49:
ca:94:65:b9:0b:00:83:10:33:1e:2d:92:fc:75:3f:8e:9c:5e:
48:6c:ae:02:ef:8a:ee:7c:86:f3:31:16:1d:c6:66:37:62:96:
c5:e7:b5:8f:24:f6:e1:34:9e:8d:e9:68:37:7c:b5:f6:54:0a:
2c:b0:3b:ef:a5:82:cc:0a:70:23:d4:4a:ce:81:34:c9:a8:78:
fd:f2:72:20:75:7a:c2:e2:12:1b:e9:8f:0d:f6:2d:2c:5b:06:
12:3f:de:a9:de:61:1d:1c:c5:8b:66:e2:8d:d5:be:b9:40:ef:
ad:92:53:a0:f9:82:f8:9e:e6:56:b5:59:26:e6:6d:7f:6a:b2:
0c:70:88:2c:d6:d6:b5:53:30:5e:55:35:ea:59:74:f1:be:9c:
20:b3:74:db:3f:af:15:cd:47:e3:48:cc:05:52:c0:6a:55:aa:
02:d2:65:5c:60:53:77:b4:53:b0:88:9f:ae:f8:9f:b3:b5:b8:
c9:26:8d:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92iCqF0w6wOccrJom3PkBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwZTM5NTNjNWNiNDUyZjE1OWY4ZTE1MDVmYzcwMmU4ODM2
NTdlNzIwHhcNMjUxMDE5MTkwMjM0WhcNMjUxMDIwMTkwMjM0WjAzMTEwLwYDVQQD
EyhlOGQyODlkYjM0ZmIyNjdlMTI3NmUwM2U4MmNhODRkMzZjODExZDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbbWrkql7KOsm+pvebwykXbZjKlN
wYwljvOOMKc172tBPRfK2bP6Dyy/NLfirnjAJGpZdypwPSriP27mqmn25IrK6jIl
Ihx1eWP7769ynGzUF0dmIf0S0tiZSkIjAIQjWYZaIp6f52sJIp3GhG1DzKwf+Mo0
QKsBl888SuxjgccXQ7G9S7ju6/pE3Iztn2xeaAVEnO6+jV0mtIrihknopX1rY9Hs
irLz9ZKPLF9jsPXsvn2QTp6nSXHM0kPUbBjSgBO6pVe6VbEc304wc/z3HxD26v6U
6wTRBDqi25lj3UcErvwWbt7UvV2oMQOcfmP3swBx4KIPAcEl+2Gv/qOeFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOjSids0+yZ+EnbgPoLKhNNsgR1CMB8GA1UdIwQY
MBaAFEDjlTxctFLxWfjhUF/HAuiDZX5yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEt
ZmE1YWYzOGRlYjVlLzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEtZmE1YWYzOGRlYjVl
LzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfEf86dFP
TF4acu16YqOpFXcJzh2wVnmHc9UgS/4lSXBZVsVN5pvJlxHODeR1IrJCnhmulOvR
SC0uS57nP+0Kyg7xS5ZzJFdJypRluQsAgxAzHi2S/HU/jpxeSGyuAu+K7nyG8zEW
HcZmN2KWxee1jyT24TSejeloN3y19lQKLLA776WCzApwI9RKzoE0yah4/fJyIHV6
wuISG+mPDfYtLFsGEj/eqd5hHRzFi2bijdW+uUDvrZJToPmC+J7mVrVZJuZtf2qy
DHCILNbWtVMwXlU16ll08b6cILN02z+vFc1H40jMBVLAalWqAtJlXGBTd7RTsIif
rvifs7W4ySaN+w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:25:45 2025 by rpki-client