Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: L+ymIf3ITYmPjGwOMIDIWFc8fwbOes4Lajn4SEcw8PU=
Subject key identifier: 48:7D:83:B8:31:8C:21:BC:4E:62:97:43:5E:E0:51:66:16:99:E0:C9
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 0199FC8F2BADEA852C098C7DFA1A579DDB76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0ED6
Signing time: Sun 19 Oct 2025 13:01:05 +0000
Manifest this update: Sun 19 Oct 2025 13:01:05 +0000
Manifest next update: Mon 20 Oct 2025 13:01:05 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: KASs0S9/ryeJ1bgo+rjDCsWYinfMklgBxICOw3gt6Wc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:2b:ad:ea:85:2c:09:8c:7d:fa:1a:57:9d:db:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Oct 19 13:01:05 2025 GMT
Not After : Oct 20 13:01:05 2025 GMT
Subject: CN=487d83b8318c21bc4e6297435ee051661699e0c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2b:2d:a0:bb:09:a0:b8:7c:fc:6b:73:bc:55:
6d:94:b1:54:d6:84:a2:2a:96:55:05:d8:94:cf:5f:
fc:f1:2b:a1:99:61:77:62:ff:fd:00:51:dd:dd:35:
26:06:a1:4b:80:d6:63:23:44:67:be:0b:96:0f:2b:
f9:60:50:c0:bf:06:2d:70:10:b9:01:13:a6:ec:ba:
58:01:d0:c4:39:56:dd:a5:dc:ec:f1:37:e4:38:8e:
a7:3c:ae:4b:2c:67:94:0f:e7:34:4d:55:bd:65:94:
55:26:25:07:5a:a6:85:40:05:89:ef:f0:1f:54:b9:
bb:3e:c0:2b:3b:a0:42:21:3a:33:cf:08:98:57:7b:
63:57:32:61:d8:0d:eb:2b:b3:05:ed:df:81:dd:9a:
f7:76:c1:30:c7:a3:01:f1:09:6b:64:f9:ca:d3:2a:
21:eb:27:52:a7:bf:a9:3b:b7:2a:ee:98:78:11:f9:
ca:f4:af:96:e6:0f:f5:af:11:c2:e5:89:a1:da:81:
76:45:2d:a7:e2:68:83:b6:c3:80:65:8d:e5:26:b4:
ec:51:32:67:cd:e0:a5:d3:0f:95:60:96:df:b9:9d:
b2:bf:e0:ae:85:47:1f:b8:bc:df:53:d0:ed:18:0a:
19:2e:ba:68:bd:1f:c0:a5:bf:46:c4:20:dc:7f:e8:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7D:83:B8:31:8C:21:BC:4E:62:97:43:5E:E0:51:66:16:99:E0:C9
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f7:22:ce:6a:c6:64:26:3d:3a:f4:c0:75:37:d0:86:6d:3c:
07:0b:39:23:fd:bb:30:f5:e7:40:73:49:38:6e:ae:46:e0:81:
c6:f6:d7:bf:06:5a:f2:21:99:2e:f8:71:25:30:1b:93:10:11:
19:1f:29:5f:45:1e:f2:86:08:08:c4:e5:80:37:ea:e8:1c:ee:
99:ba:53:12:7f:36:69:c0:66:60:a9:2a:64:3c:57:af:51:fa:
b7:9f:bb:47:c2:d2:32:27:03:2f:96:48:f9:3d:a4:11:27:b3:
5e:4f:c7:20:25:6b:06:e6:e3:92:b1:fa:44:3b:c9:e6:00:66:
70:fa:32:09:6d:a2:be:37:de:e5:79:e0:26:ee:70:12:20:54:
ae:98:02:13:d3:28:5a:19:28:1f:18:94:06:3b:91:0e:b9:b1:
c4:79:69:fe:8d:1a:93:d0:83:5b:5d:ee:79:62:88:13:31:be:
d0:b7:0d:ca:8c:bc:df:e7:09:35:97:14:8c:5b:6f:30:51:cc:
85:a2:66:01:8c:8e:07:a3:ed:fb:79:d9:eb:3d:45:1d:37:0e:
2e:2d:74:a2:6e:5f:0f:81:1c:44:26:6f:d3:4b:24:68:ee:39:
07:4b:36:c2:e5:5c:fd:1a:db:66:d8:b8:be:32:3c:a9:e0:1c:
ed:82:c8:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8jyut6oUsCYx9+hpXndt2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNjg0ZTUwZTMzZjNhMDAxNWM4Zjg5OWM4OGJjYjEzN2Jj
ZmI1ZjkwHhcNMjUxMDE5MTMwMTA1WhcNMjUxMDIwMTMwMTA1WjAzMTEwLwYDVQQD
Eyg0ODdkODNiODMxOGMyMWJjNGU2Mjk3NDM1ZWUwNTE2NjE2OTllMGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCstoLsJoLh8/GtzvFVtlLFU1oSi
KpZVBdiUz1/88SuhmWF3Yv/9AFHd3TUmBqFLgNZjI0RnvguWDyv5YFDAvwYtcBC5
AROm7LpYAdDEOVbdpdzs8TfkOI6nPK5LLGeUD+c0TVW9ZZRVJiUHWqaFQAWJ7/Af
VLm7PsArO6BCITozzwiYV3tjVzJh2A3rK7MF7d+B3Zr3dsEwx6MB8QlrZPnK0yoh
6ydSp7+pO7cq7ph4EfnK9K+W5g/1rxHC5Ymh2oF2RS2n4miDtsOAZY3lJrTsUTJn
zeCl0w+VYJbfuZ2yv+CuhUcfuLzfU9DtGAoZLrpovR/Apb9GxCDcf+hpkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEh9g7gxjCG8TmKXQ17gUWYWmeDJMB8GA1UdIwQY
MBaAFKtoTlDjPzoAFcj4mciLyxN7z7X5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjIt
ODBlNWQ1M2VkYjQxLzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjItODBlNWQ1M2VkYjQx
LzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEfcizmrG
ZCY9OvTAdTfQhm08Bws5I/27MPXnQHNJOG6uRuCBxvbXvwZa8iGZLvhxJTAbkxAR
GR8pX0Ue8oYICMTlgDfq6BzumbpTEn82acBmYKkqZDxXr1H6t5+7R8LSMicDL5ZI
+T2kESezXk/HICVrBubjkrH6RDvJ5gBmcPoyCW2ivjfe5XngJu5wEiBUrpgCE9Mo
WhkoHxiUBjuRDrmxxHlp/o0ak9CDW13ueWKIEzG+0LcNyoy83+cJNZcUjFtvMFHM
haJmAYyOB6Pt+3nZ6z1FHTcOLi10om5fD4EcRCZv00skaO45B0s2wuVc/RrbZti4
vjI8qeAc7YLIOQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:41 2025 by rpki-client