Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: PsA/6EbGyiqCj4HUKtQylqWgeuZtppZR9+2E1ZEc5gI=
Subject key identifier: D7:64:5E:80:59:41:6B:DD:34:A1:41:B7:F8:BA:0A:15:7A:2E:01:6F
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 0198D706012E2133D4A0AA65571C275A261C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0E3E
Signing time: Sat 23 Aug 2025 13:02:31 +0000
Manifest this update: Sat 23 Aug 2025 13:02:31 +0000
Manifest next update: Sun 24 Aug 2025 13:02:31 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: UXBOwTexXt6f06NjOPcllpQilmrlShgHPmwGvLJXIQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:01:2e:21:33:d4:a0:aa:65:57:1c:27:5a:26:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Aug 23 13:02:31 2025 GMT
Not After : Aug 24 13:02:31 2025 GMT
Subject: CN=d7645e8059416bdd34a141b7f8ba0a157a2e016f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:50:cf:6e:00:af:00:98:a9:ab:82:c8:ea:c8:
09:83:93:bd:ab:0f:0e:a0:a2:e5:8a:e9:b1:ae:0a:
42:a2:c5:aa:48:32:3c:6f:6c:4a:a8:2c:9c:b2:24:
9f:7e:8d:33:0b:4d:e0:e8:e2:24:96:cb:6b:f5:8f:
4c:21:a6:9e:22:88:ce:1b:af:8f:a3:33:38:68:9c:
93:f1:aa:5f:c0:cf:bc:79:12:d7:5d:ad:50:35:cf:
d3:00:32:3b:17:2c:e4:8c:f0:ca:a2:31:6d:a3:75:
2d:de:4a:95:b0:85:25:87:29:e9:c8:0a:7b:09:0f:
b0:bc:a6:e4:ce:69:a9:cb:18:57:53:cf:f8:8d:32:
66:f5:ea:8a:11:15:07:e7:dc:89:1e:16:75:38:ee:
c5:c5:b7:29:0b:ae:7a:f4:32:00:b6:ee:b3:4e:28:
ee:1f:8e:49:11:7c:88:dd:7b:3c:13:c5:be:01:bb:
2f:7a:56:05:64:fb:93:20:d4:66:0a:d5:9d:6f:0a:
f8:b7:dd:7a:bb:a0:28:69:08:70:61:70:a2:de:4b:
3b:b4:a6:16:cb:56:f7:e2:9d:6d:10:b8:5e:d0:ca:
92:e4:e2:79:6e:b7:24:1d:10:f1:80:ce:bf:83:5b:
66:f6:7b:e3:51:db:2b:87:e1:65:df:9f:43:e1:e9:
52:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:64:5E:80:59:41:6B:DD:34:A1:41:B7:F8:BA:0A:15:7A:2E:01:6F
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:db:8e:68:45:56:58:2e:3c:55:a0:3e:c7:2a:90:c0:eb:7d:
8d:b0:64:ee:97:fd:9b:c1:79:1a:d0:5f:6c:0c:c5:ce:68:f2:
e7:40:7b:9b:db:0e:87:6e:fd:74:16:e4:40:72:f2:09:a6:62:
2c:68:b0:fe:c6:ba:b0:45:15:b5:44:1b:61:3e:1f:bc:45:61:
b2:2f:0f:c1:70:78:e9:b8:d9:f7:3a:50:23:88:26:91:cd:ec:
22:ed:4b:7a:aa:70:9d:2b:c5:db:03:21:16:8c:99:32:fe:9f:
99:6b:d2:57:47:eb:ee:1b:49:9f:2a:52:b1:1c:f0:88:20:a8:
76:65:f4:6c:a6:cf:ff:42:fa:19:f0:ff:f1:06:b5:62:a5:d2:
78:25:f5:94:ab:d9:71:fd:e1:11:43:6a:84:bc:08:e1:8b:5b:
2f:27:6a:c5:27:30:34:91:68:a5:b0:0d:58:c7:fa:f1:18:7c:
fa:d8:2f:0e:89:7e:02:5a:ce:3f:f3:af:ba:2f:3c:85:7a:10:
60:f0:02:05:e2:63:96:99:94:89:7a:60:c8:21:f4:6e:23:ea:
cc:01:bb:88:bc:d3:15:fb:c9:74:6e:ce:d5:6b:dd:4d:65:ae:
9b:b8:62:33:d9:8d:67:45:83:8a:fd:09:b4:19:85:09:62:a3:
15:48:6f:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBgEuITPUoKplVxwnWiYcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNjg0ZTUwZTMzZjNhMDAxNWM4Zjg5OWM4OGJjYjEzN2Jj
ZmI1ZjkwHhcNMjUwODIzMTMwMjMxWhcNMjUwODI0MTMwMjMxWjAzMTEwLwYDVQQD
EyhkNzY0NWU4MDU5NDE2YmRkMzRhMTQxYjdmOGJhMGExNTdhMmUwMTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1DPbgCvAJipq4LI6sgJg5O9qw8O
oKLliumxrgpCosWqSDI8b2xKqCycsiSffo0zC03g6OIklstr9Y9MIaaeIojOG6+P
ozM4aJyT8apfwM+8eRLXXa1QNc/TADI7FyzkjPDKojFto3Ut3kqVsIUlhynpyAp7
CQ+wvKbkzmmpyxhXU8/4jTJm9eqKERUH59yJHhZ1OO7FxbcpC6569DIAtu6zTiju
H45JEXyI3Xs8E8W+AbsvelYFZPuTINRmCtWdbwr4t916u6AoaQhwYXCi3ks7tKYW
y1b34p1tELhe0MqS5OJ5brckHRDxgM6/g1tm9nvjUdsrh+Fl359D4elS5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNdkXoBZQWvdNKFBt/i6ChV6LgFvMB8GA1UdIwQY
MBaAFKtoTlDjPzoAFcj4mciLyxN7z7X5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjIt
ODBlNWQ1M2VkYjQxLzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjItODBlNWQ1M2VkYjQx
LzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXduOaEVW
WC48VaA+xyqQwOt9jbBk7pf9m8F5GtBfbAzFzmjy50B7m9sOh279dBbkQHLyCaZi
LGiw/sa6sEUVtUQbYT4fvEVhsi8PwXB46bjZ9zpQI4gmkc3sIu1LeqpwnSvF2wMh
FoyZMv6fmWvSV0fr7htJnypSsRzwiCCodmX0bKbP/0L6GfD/8Qa1YqXSeCX1lKvZ
cf3hEUNqhLwI4YtbLydqxScwNJFopbANWMf68Rh8+tgvDol+AlrOP/Ovui88hXoQ
YPACBeJjlpmUiXpgyCH0biPqzAG7iLzTFfvJdG7O1WvdTWWum7hiM9mNZ0WDiv0J
tBmFCWKjFUhvZg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:45:52 2025 by rpki-client