Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft
File: QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft (raw, json)
Hash identifier: c9grWXI10IJmwyuw4W9lPgKOt8gPGb+Fd01n6eE+ubM=
Subject key identifier: D1:D5:7A:9B:AE:73:C1:86:19:65:A6:07:5F:9F:94:B1:DB:0C:AB:AD
Authority key identifier: 40:36:A6:4F:1A:06:6B:AB:B8:BE:B8:64:E6:95:FA:99:76:92:DD:48
Certificate issuer: /CN=4036a64f1a066babb8beb864e695fa997692dd48
Certificate serial: 0198D4724FB5C65B9955D34632B9E1196142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QDamTxoGa6u4vrhk5pX6mXaS3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft
Manifest number: 10A3
Signing time: Sat 23 Aug 2025 01:01:57 +0000
Manifest this update: Sat 23 Aug 2025 01:01:57 +0000
Manifest next update: Sun 24 Aug 2025 01:01:57 +0000
Files and hashes: 1: QDamTxoGa6u4vrhk5pX6mXaS3Ug.crl (hash: eczO/SGbAPTRZGmawx8U7CcsUaaiLN+EtOBNxR1l4IU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/QDamTxoGa6u4vrhk5pX6mXaS3Ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:4f:b5:c6:5b:99:55:d3:46:32:b9:e1:19:61:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4036a64f1a066babb8beb864e695fa997692dd48
Validity
Not Before: Aug 23 01:01:57 2025 GMT
Not After : Aug 24 01:01:57 2025 GMT
Subject: CN=d1d57a9bae73c1861965a6075f9f94b1db0cabad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8c:dd:c6:67:d8:62:fe:1c:c7:ca:89:c0:77:
77:2e:b6:56:b4:0b:a3:1c:2b:b9:02:df:45:ae:74:
75:85:b8:3e:17:cc:e9:9d:6f:5a:46:9c:95:88:b6:
21:47:c1:2a:c3:37:64:ea:7e:1e:5b:2a:50:b1:11:
25:8a:2a:65:5c:ff:5a:88:e4:e5:7c:38:72:e0:8f:
31:ff:55:3a:1f:cc:93:5c:58:e7:b8:9d:b8:7c:5b:
51:46:78:a5:b2:ac:51:92:34:89:c0:0c:3d:6d:03:
1b:da:ea:51:ad:13:98:37:74:80:12:ee:0b:38:53:
b8:18:f5:59:13:d5:30:2d:9b:01:ad:83:45:bb:ef:
cd:5e:37:5c:0e:91:b7:09:21:0e:cb:ed:4a:18:f8:
7b:f5:19:c9:63:d2:c1:e4:f8:99:48:17:da:54:4e:
e2:94:4d:1f:47:03:b3:92:05:5a:5b:a9:84:9e:c1:
89:02:66:37:f4:30:15:40:66:cd:61:e1:ca:5b:21:
1b:aa:75:19:5d:06:81:b8:14:06:ec:bc:17:b6:7b:
4e:fc:ca:6a:6f:45:63:5c:19:e4:91:f1:bc:07:74:
08:ec:d3:7e:5b:88:ff:bc:c0:4e:f0:78:82:31:37:
96:65:0d:52:d8:70:5d:5a:6f:75:da:b9:4e:41:a1:
79:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D5:7A:9B:AE:73:C1:86:19:65:A6:07:5F:9F:94:B1:DB:0C:AB:AD
X509v3 Authority Key Identifier:
keyid:40:36:A6:4F:1A:06:6B:AB:B8:BE:B8:64:E6:95:FA:99:76:92:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QDamTxoGa6u4vrhk5pX6mXaS3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/56d50d-17cf-4bdb-92f6-204721bd5f93/1/QDamTxoGa6u4vrhk5pX6mXaS3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:cc:08:bd:1a:7d:d2:1b:c0:82:a9:de:a0:fb:11:6d:54:73:
e8:74:99:2b:32:93:26:e3:7f:d4:2f:71:56:59:c1:a5:35:eb:
f5:85:0d:f4:52:ce:13:98:f6:2c:a8:92:72:c6:04:14:52:d4:
d5:b7:53:03:6a:d6:29:a1:53:e5:08:6f:d7:cc:3a:d4:ee:41:
0f:ac:ad:fb:55:08:8a:25:8d:74:42:e6:c0:a9:73:7b:f0:a9:
3d:03:7a:a2:ab:54:56:ff:df:ba:f2:a1:76:3f:8a:c3:a7:25:
e4:55:c1:55:ae:8e:d4:30:d2:a1:cb:3f:da:70:cb:a2:d8:f1:
3f:a3:b7:b1:9b:a7:c5:dc:89:51:64:82:1e:33:8e:59:ef:22:
e7:13:0b:d5:f1:8c:e5:b5:b4:ae:4a:14:0e:9a:be:b3:db:77:
6b:65:ce:79:b6:23:e6:58:17:da:49:f5:2b:5e:96:dc:28:68:
0b:e6:5c:81:d1:bb:6c:5c:ab:46:51:47:d3:f7:9c:79:53:b3:
58:33:1a:cc:c1:7a:c6:4b:18:0f:f3:95:2d:0e:29:eb:51:11:
90:f3:1d:7c:be:44:16:6c:aa:4b:e5:e9:35:df:bd:48:d5:e7:
48:64:f3:5f:24:58:3b:fa:3b:a6:96:fd:6e:4e:2d:ae:d8:d7:
56:38:da:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUck+1xluZVdNGMrnhGWFCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMzZhNjRmMWEwNjZiYWJiOGJlYjg2NGU2OTVmYTk5NzY5
MmRkNDgwHhcNMjUwODIzMDEwMTU3WhcNMjUwODI0MDEwMTU3WjAzMTEwLwYDVQQD
EyhkMWQ1N2E5YmFlNzNjMTg2MTk2NWE2MDc1ZjlmOTRiMWRiMGNhYmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYzdxmfYYv4cx8qJwHd3LrZWtAuj
HCu5At9FrnR1hbg+F8zpnW9aRpyViLYhR8Eqwzdk6n4eWypQsREliiplXP9aiOTl
fDhy4I8x/1U6H8yTXFjnuJ24fFtRRnilsqxRkjSJwAw9bQMb2upRrROYN3SAEu4L
OFO4GPVZE9UwLZsBrYNFu+/NXjdcDpG3CSEOy+1KGPh79RnJY9LB5PiZSBfaVE7i
lE0fRwOzkgVaW6mEnsGJAmY39DAVQGbNYeHKWyEbqnUZXQaBuBQG7LwXtntO/Mpq
b0VjXBnkkfG8B3QI7NN+W4j/vMBO8HiCMTeWZQ1S2HBdWm912rlOQaF59QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNHVepuuc8GGGWWmB1+flLHbDKutMB8GA1UdIwQY
MBaAFEA2pk8aBmuruL64ZOaV+pl2kt1IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUURhbVR4b0dhNnU0dnJoazVwWDZtWGFTM1VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS81NmQ1MGQtMTdjZi00YmRiLTkyZjYt
MjA0NzIxYmQ1ZjkzLzEvUURhbVR4b0dhNnU0dnJoazVwWDZtWGFTM1VnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS81NmQ1MGQtMTdjZi00YmRiLTkyZjYtMjA0NzIxYmQ1Zjkz
LzEvUURhbVR4b0dhNnU0dnJoazVwWDZtWGFTM1VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX8wIvRp9
0hvAgqneoPsRbVRz6HSZKzKTJuN/1C9xVlnBpTXr9YUN9FLOE5j2LKiScsYEFFLU
1bdTA2rWKaFT5Qhv18w61O5BD6yt+1UIiiWNdELmwKlze/CpPQN6oqtUVv/fuvKh
dj+Kw6cl5FXBVa6O1DDSocs/2nDLotjxP6O3sZunxdyJUWSCHjOOWe8i5xML1fGM
5bW0rkoUDpq+s9t3a2XOebYj5lgX2kn1K16W3ChoC+ZcgdG7bFyrRlFH0/eceVOz
WDMazMF6xksYD/OVLQ4p61ERkPMdfL5EFmyqS+XpNd+9SNXnSGTzXyRYO/o7ppb9
bk4trtjXVjjakw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:30 2025 by rpki-client