Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/5f179a-7b86-4c79-9339-d1b648a4fd0e/1/QIS7AapYrpSxMg_UvkIT-TFOkFY.mft
File: QIS7AapYrpSxMg_UvkIT-TFOkFY.mft (raw, json)
Hash identifier: nNbJ6265gP/Gi5qKnT6Yi3g+/q6EzWrGFrPJRWEAalI=
Subject key identifier: DC:A7:43:3F:51:4B:9D:DB:C0:10:AB:26:3E:51:4A:8A:E7:45:CB:EA
Authority key identifier: 40:84:BB:01:AA:58:AE:94:B1:32:0F:D4:BE:42:13:F9:31:4E:90:56
Certificate issuer: /CN=4084bb01aa58ae94b1320fd4be4213f9314e9056
Certificate serial: 0198D7A8B767B39BDE51DF0624D49B86BAC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIS7AapYrpSxMg_UvkIT-TFOkFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/5f179a-7b86-4c79-9339-d1b648a4fd0e/1/QIS7AapYrpSxMg_UvkIT-TFOkFY.mft
Manifest number: 0639
Signing time: Sat 23 Aug 2025 16:00:15 +0000
Manifest this update: Sat 23 Aug 2025 16:00:15 +0000
Manifest next update: Sun 24 Aug 2025 16:00:15 +0000
Files and hashes: 1: QIS7AapYrpSxMg_UvkIT-TFOkFY.crl (hash: C/XxEfOhcE54gX6YNfuw988niMnQ22s2cjgLobF0sno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/5f179a-7b86-4c79-9339-d1b648a4fd0e/1/QIS7AapYrpSxMg_UvkIT-TFOkFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/5f179a-7b86-4c79-9339-d1b648a4fd0e/1/QIS7AapYrpSxMg_UvkIT-TFOkFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIS7AapYrpSxMg_UvkIT-TFOkFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:b7:67:b3:9b:de:51:df:06:24:d4:9b:86:ba:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4084bb01aa58ae94b1320fd4be4213f9314e9056
Validity
Not Before: Aug 23 16:00:15 2025 GMT
Not After : Aug 24 16:00:15 2025 GMT
Subject: CN=dca7433f514b9ddbc010ab263e514a8ae745cbea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:cc:ea:ab:00:e1:7e:d1:05:dc:aa:35:65:
dc:fb:bb:0e:6e:8f:1e:e7:13:ff:a6:db:8f:85:d0:
b9:57:97:23:d9:7a:18:0b:41:76:bd:f3:21:82:1d:
12:00:bd:1d:e1:29:a4:d6:a3:4b:0f:d2:88:c6:47:
93:21:9a:67:59:ec:80:cd:19:e2:9c:60:6a:a4:ee:
90:d5:bf:c0:34:22:49:b6:7f:2b:9d:f0:08:78:f0:
2b:43:ce:21:a9:6b:01:d8:68:b9:ef:7d:3a:16:cb:
c6:70:50:7e:36:9b:ea:fa:fc:bb:1b:d9:f9:ad:5d:
66:0e:f3:ee:2b:2e:5b:1e:0c:77:60:e7:32:b0:f8:
e2:f0:22:2e:72:31:0f:42:5b:5f:2b:4f:e5:ef:cb:
22:91:8f:ce:57:ce:f8:ce:62:58:07:51:63:ad:32:
01:a5:87:3b:43:4d:73:8b:6e:02:a4:10:0d:12:95:
fd:e1:bf:da:94:a2:dd:76:39:0e:ed:e3:0c:d0:ab:
a0:f6:c9:e0:5b:00:35:56:c3:54:ea:8e:b1:af:6d:
14:b5:2e:f2:36:66:00:21:c6:c1:4c:55:85:03:e2:
17:e6:3b:32:12:88:2f:7a:a7:ad:bb:64:27:ed:1d:
6f:b1:7c:2b:0c:6e:6c:40:68:42:48:1a:d2:ab:2c:
69:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A7:43:3F:51:4B:9D:DB:C0:10:AB:26:3E:51:4A:8A:E7:45:CB:EA
X509v3 Authority Key Identifier:
keyid:40:84:BB:01:AA:58:AE:94:B1:32:0F:D4:BE:42:13:F9:31:4E:90:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIS7AapYrpSxMg_UvkIT-TFOkFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5f179a-7b86-4c79-9339-d1b648a4fd0e/1/QIS7AapYrpSxMg_UvkIT-TFOkFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5f179a-7b86-4c79-9339-d1b648a4fd0e/1/QIS7AapYrpSxMg_UvkIT-TFOkFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:50:4d:81:86:23:9e:3c:40:23:f8:06:1f:b3:f9:d3:39:80:
ab:79:27:4a:50:ea:e4:be:50:39:33:df:20:bf:68:78:e0:43:
ee:e2:b7:b6:c4:33:ea:4e:13:c9:a0:7a:71:c2:f1:2c:27:4b:
4c:a4:a2:6a:bd:5f:75:48:a4:ad:c6:69:2a:5a:1e:3e:5e:ea:
0f:80:22:8a:8d:15:04:0b:63:77:07:1f:a8:d6:e2:50:98:e1:
e9:80:fa:3d:e5:72:e6:2f:71:22:24:d0:ab:9e:bf:88:99:9f:
ed:6f:7c:6b:20:a3:89:7a:ac:24:c8:aa:af:e3:9e:68:f8:60:
85:c6:05:2e:ca:3e:29:8a:6e:c6:e2:81:5c:a8:27:3f:a9:5a:
16:76:df:64:1a:c6:4a:19:82:a8:d5:20:2d:80:5e:5a:f4:ff:
5e:28:2f:b2:ed:66:37:ff:46:93:3b:46:a0:d9:9d:b0:54:d0:
4a:ab:ee:b5:3e:ee:48:c6:bc:df:44:dc:55:46:92:9e:49:24:
c3:f4:79:16:b6:0b:1f:25:06:9b:a5:c0:07:cf:e9:fe:78:69:
93:e9:c5:11:81:dc:56:f4:4e:a2:9d:94:3e:30:68:53:3c:86:
47:5b:bc:0b:5d:04:14:99:7a:47:96:d4:68:6a:c3:22:e3:7d:
17:20:4a:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqLdns5veUd8GJNSbhrrBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwODRiYjAxYWE1OGFlOTRiMTMyMGZkNGJlNDIxM2Y5MzE0
ZTkwNTYwHhcNMjUwODIzMTYwMDE1WhcNMjUwODI0MTYwMDE1WjAzMTEwLwYDVQQD
EyhkY2E3NDMzZjUxNGI5ZGRiYzAxMGFiMjYzZTUxNGE4YWU3NDVjYmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsfM6qsA4X7RBdyqNWXc+7sObo8e
5xP/ptuPhdC5V5cj2XoYC0F2vfMhgh0SAL0d4Smk1qNLD9KIxkeTIZpnWeyAzRni
nGBqpO6Q1b/ANCJJtn8rnfAIePArQ84hqWsB2Gi57306FsvGcFB+Npvq+vy7G9n5
rV1mDvPuKy5bHgx3YOcysPji8CIucjEPQltfK0/l78sikY/OV874zmJYB1FjrTIB
pYc7Q01zi24CpBANEpX94b/alKLddjkO7eMM0Kug9sngWwA1VsNU6o6xr20UtS7y
NmYAIcbBTFWFA+IX5jsyEogveqetu2Qn7R1vsXwrDG5sQGhCSBrSqyxpwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNynQz9RS53bwBCrJj5RSornRcvqMB8GA1UdIwQY
MBaAFECEuwGqWK6UsTIP1L5CE/kxTpBWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUlTN0FhcFlycFN4TWdfVXZrSVQtVEZPa0ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My81ZjE3OWEtN2I4Ni00Yzc5LTkzMzkt
ZDFiNjQ4YTRmZDBlLzEvUUlTN0FhcFlycFN4TWdfVXZrSVQtVEZPa0ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My81ZjE3OWEtN2I4Ni00Yzc5LTkzMzktZDFiNjQ4YTRmZDBl
LzEvUUlTN0FhcFlycFN4TWdfVXZrSVQtVEZPa0ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYlBNgYYj
njxAI/gGH7P50zmAq3knSlDq5L5QOTPfIL9oeOBD7uK3tsQz6k4TyaB6ccLxLCdL
TKSiar1fdUikrcZpKloePl7qD4Aiio0VBAtjdwcfqNbiUJjh6YD6PeVy5i9xIiTQ
q56/iJmf7W98ayCjiXqsJMiqr+OeaPhghcYFLso+KYpuxuKBXKgnP6laFnbfZBrG
ShmCqNUgLYBeWvT/Xigvsu1mN/9GkztGoNmdsFTQSqvutT7uSMa830TcVUaSnkkk
w/R5FrYLHyUGm6XAB8/p/nhpk+nFEYHcVvROop2UPjBoUzyGR1u8C10EFJl6R5bU
aGrDIuN9FyBKLw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 21:30:37 2025 by rpki-client