Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
File: bqGhD32UTazB3sBBqqVZ1SK_uus.mft (raw, json)
Hash identifier: gsDVUMRWt00+2iYAdESjEww4HlxCpF3Wxb0h+esyZFY=
Subject key identifier: 07:9A:61:0B:2F:F0:F2:9D:B4:77:16:92:B2:D9:0C:A9:E7:14:89:E5
Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Certificate serial: 0199FDD93EE84BC42F5731E7925DF165ECCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
Manifest number: 1459
Signing time: Sun 19 Oct 2025 19:01:36 +0000
Manifest this update: Sun 19 Oct 2025 19:01:36 +0000
Manifest next update: Mon 20 Oct 2025 19:01:36 +0000
Files and hashes: 1: M9NbgULzUbUgy5QfFA80DfDkYIo.roa (hash: 9jvwTaiwGzjoN6t2OLikrXjXwIhCTFgXlEI2alktc+E=)
2: bqGhD32UTazB3sBBqqVZ1SK_uus.crl (hash: WhxGwuJZ5QjoFHKVt5+pv+UfwvQYr3JthoQUW3ZTcwc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:3e:e8:4b:c4:2f:57:31:e7:92:5d:f1:65:ec:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Validity
Not Before: Oct 19 19:01:36 2025 GMT
Not After : Oct 20 19:01:36 2025 GMT
Subject: CN=079a610b2ff0f29db4771692b2d90ca9e71489e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2d:7a:bb:e9:1f:0b:18:8f:d0:28:4c:34:c1:
fe:3e:29:95:f9:39:e5:ac:05:26:8b:97:b9:c6:69:
a1:b9:7c:8e:b4:65:c0:5d:07:33:ed:8a:55:03:2f:
78:6e:fc:8c:3b:47:c7:a3:a6:0c:30:aa:bf:67:6b:
36:c6:6a:60:a5:6e:57:0a:00:13:8a:9d:ab:5e:02:
a3:a8:eb:0d:69:f0:a7:ba:9c:03:bb:1f:d5:94:12:
08:dd:8c:3f:57:b8:39:e1:1e:b0:22:21:de:36:91:
11:72:ea:59:f2:18:e0:51:84:6d:6b:f0:0c:65:e8:
bc:db:5a:fb:58:e0:90:95:41:c0:3a:6c:e2:60:b3:
72:9d:da:4d:6e:55:b6:9b:76:c8:6f:d6:90:9c:f9:
96:f7:10:de:a7:fa:45:3a:ae:99:87:d2:54:2f:fc:
92:e2:15:8d:66:66:0f:e6:f2:b0:98:ab:3c:78:7a:
6e:4b:d3:7c:ff:a1:3b:88:02:d1:8c:ec:21:eb:71:
68:4c:c1:06:ce:36:66:5f:f2:e8:2a:18:01:6a:df:
37:71:58:fc:27:88:a4:35:83:e9:88:a3:6a:c2:6f:
7f:58:41:8c:2e:b1:57:fe:34:bf:02:ff:15:a2:be:
25:54:dd:8b:70:9d:89:d6:28:44:38:99:ae:9a:6a:
d3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9A:61:0B:2F:F0:F2:9D:B4:77:16:92:B2:D9:0C:A9:E7:14:89:E5
X509v3 Authority Key Identifier:
keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:73:2d:fa:87:33:39:1f:41:3f:f6:89:e0:15:dc:66:b1:13:
60:6d:59:e9:74:41:84:4b:dc:2c:08:c2:05:2a:b8:04:7c:3f:
49:de:45:ca:78:05:60:f3:fd:9e:d8:fc:22:f7:a2:53:76:dc:
10:8f:0f:db:c8:54:9b:c5:22:16:f7:1c:be:40:5c:48:86:cc:
ac:e5:89:b7:0e:b7:3e:7b:c4:74:00:23:c8:bc:b3:f4:53:e2:
bf:da:5d:9f:b4:32:dd:99:c1:eb:54:69:97:8d:65:20:e5:01:
75:77:40:fa:a2:bd:82:22:ca:3c:fc:14:57:44:24:c9:45:ac:
a6:6e:b1:db:2c:d4:7f:95:5b:9a:fd:a1:c6:f6:f2:5b:da:06:
a3:4f:29:c7:ea:74:ce:42:40:d3:60:a4:53:e7:4a:5f:5e:84:
58:88:3a:b7:24:58:dd:c7:a9:27:d1:29:52:b2:e2:12:bd:da:
2b:7e:18:a0:9c:2a:3e:6f:48:fd:0b:1c:26:60:f5:43:7e:75:
f7:07:48:52:ad:e3:66:13:db:86:43:7f:95:21:e6:1f:f0:10:
41:1b:02:7b:c0:0a:fe:39:65:f3:12:e3:90:88:94:4b:9b:35:
a2:97:bd:df:0b:04:8b:22:39:f8:19:a7:7f:22:7a:b1:cf:4f:
af:10:e7:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92T7oS8QvVzHnkl3xZezKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYTFhMTBmN2Q5NDRkYWNjMWRlYzA0MWFhYTU1OWQ1MjJi
ZmJhZWIwHhcNMjUxMDE5MTkwMTM2WhcNMjUxMDIwMTkwMTM2WjAzMTEwLwYDVQQD
EygwNzlhNjEwYjJmZjBmMjlkYjQ3NzE2OTJiMmQ5MGNhOWU3MTQ4OWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3y16u+kfCxiP0ChMNMH+PimV+Tnl
rAUmi5e5xmmhuXyOtGXAXQcz7YpVAy94bvyMO0fHo6YMMKq/Z2s2xmpgpW5XCgAT
ip2rXgKjqOsNafCnupwDux/VlBII3Yw/V7g54R6wIiHeNpERcupZ8hjgUYRta/AM
Zei821r7WOCQlUHAOmziYLNyndpNblW2m3bIb9aQnPmW9xDep/pFOq6Zh9JUL/yS
4hWNZmYP5vKwmKs8eHpuS9N8/6E7iALRjOwh63FoTMEGzjZmX/LoKhgBat83cVj8
J4ikNYPpiKNqwm9/WEGMLrFX/jS/Av8Vor4lVN2LcJ2J1ihEOJmummrTkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAeaYQsv8PKdtHcWkrLZDKnnFInlMB8GA1UdIwQY
MBaAFG6hoQ99lE2swd7AQaqlWdUiv7rrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC84NWUxMDQtNWU1Mi00MDQ4LWIxYjEt
YzUwOTY4Y2RhODZmLzEvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC84NWUxMDQtNWU1Mi00MDQ4LWIxYjEtYzUwOTY4Y2RhODZm
LzEvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF3Mt+ocz
OR9BP/aJ4BXcZrETYG1Z6XRBhEvcLAjCBSq4BHw/Sd5FyngFYPP9ntj8IveiU3bc
EI8P28hUm8UiFvccvkBcSIbMrOWJtw63PnvEdAAjyLyz9FPiv9pdn7Qy3ZnB61Rp
l41lIOUBdXdA+qK9giLKPPwUV0QkyUWspm6x2yzUf5Vbmv2hxvbyW9oGo08px+p0
zkJA02CkU+dKX16EWIg6tyRY3cepJ9EpUrLiEr3aK34YoJwqPm9I/QscJmD1Q351
9wdIUq3jZhPbhkN/lSHmH/AQQRsCe8AK/jll8xLjkIiUS5s1ope93wsEiyI5+Bmn
fyJ6sc9PrxDnrA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:02:19 2025 by rpki-client