Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
File: QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json)
Hash identifier: gB03I+15tMLkoQhe6imDXbK6XPnj/cRfjdXfKVIwGlc=
Subject key identifier: 3D:90:DC:FC:97:A7:57:93:EB:D8:31:6E:6F:47:BE:21:5A:FE:13:84
Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Certificate serial: 0199FB7CFCF717132BD3F7E3CC8936071410
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
Manifest number: 06AF
Signing time: Sun 19 Oct 2025 08:01:36 +0000
Manifest this update: Sun 19 Oct 2025 08:01:36 +0000
Manifest next update: Mon 20 Oct 2025 08:01:36 +0000
Files and hashes: 1: 8ydd8JZX5EAnrnnw2HV2rHK_3p4.roa (hash: j4GR32txclZSQHedOrcHnmy9IerE3851xb5yxFpNcdg=)
2: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: a3OB+A4jpiObfu4Ps1b0a/Wl1PgP9+7KQsfjHYcRVUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:fc:f7:17:13:2b:d3:f7:e3:cc:89:36:07:14:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Validity
Not Before: Oct 19 08:01:36 2025 GMT
Not After : Oct 20 08:01:36 2025 GMT
Subject: CN=3d90dcfc97a75793ebd8316e6f47be215afe1384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e5:2a:46:83:40:d5:2c:d5:cc:1e:4b:ee:7a:
7b:3b:a5:55:10:65:f5:da:11:15:67:7d:72:9d:17:
fa:ed:c3:26:14:b0:cc:44:00:bf:7b:0a:d3:4d:1f:
5e:71:4f:8d:51:23:5b:19:83:7c:c2:9f:f9:f1:46:
4d:37:90:a9:c5:be:4c:64:1a:02:60:2d:ad:77:3a:
72:85:91:a7:0f:b1:1b:12:b3:d0:85:26:3e:97:c3:
3b:29:06:e5:27:a4:5a:38:fa:f1:84:4a:af:57:a3:
75:e9:62:8f:42:3d:87:65:f9:8a:6c:33:58:d7:e1:
0f:81:f2:4d:cb:4e:cb:49:a0:d7:43:91:42:9e:52:
89:75:d9:fa:80:41:80:0e:82:9c:f2:4a:bd:71:97:
d7:bd:69:4c:d5:8e:85:f5:0b:63:12:fe:c2:3a:cb:
34:89:1d:1b:ef:48:31:7f:df:ed:22:1e:ef:75:2a:
7b:84:0a:20:f8:ee:45:9c:2d:b0:8c:39:3a:69:d4:
41:ec:69:7a:f1:b2:ac:c9:fc:88:e1:25:02:38:ec:
88:94:77:15:c3:81:95:cf:95:1d:c3:f6:6a:d4:5e:
e3:51:03:b3:08:46:a3:24:d0:73:c5:13:7c:7f:d5:
c2:4f:1f:cb:d7:4a:37:12:4a:14:d0:b5:6b:c0:c7:
22:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:90:DC:FC:97:A7:57:93:EB:D8:31:6E:6F:47:BE:21:5A:FE:13:84
X509v3 Authority Key Identifier:
keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d4:47:a9:f9:d2:5c:c0:ea:61:ca:58:bc:42:a5:0a:a4:5c:
ca:62:8f:93:59:0e:16:db:1e:61:7a:86:1d:c8:eb:f4:65:41:
14:fa:38:73:9a:70:c0:57:80:ce:31:b6:45:40:86:fc:22:18:
c4:9d:55:4b:b9:04:e8:65:c8:01:f2:7a:cd:b4:e8:5a:37:bc:
e7:a4:c7:ae:20:4a:41:c4:f6:28:9d:41:82:7a:f6:84:8e:6e:
25:ad:42:60:42:ae:0d:5b:89:f7:e2:83:90:da:25:36:b5:65:
77:c0:06:99:f8:1c:2d:01:aa:1e:71:07:24:7a:2f:c0:6d:18:
a8:15:bc:73:05:0b:4e:52:c8:6c:63:c1:c2:a7:f8:db:a2:50:
27:e7:6a:1d:cc:fb:63:82:12:ef:51:3e:92:b4:88:53:f4:aa:
d0:48:77:f3:e7:5b:fd:22:b6:c6:7d:57:57:a5:f0:57:25:a2:
69:5b:cc:12:b8:b8:71:0e:51:64:8e:0a:0c:79:b1:e1:7c:c0:
42:77:0f:4d:b7:c1:2f:7d:cb:b5:c6:0b:d5:95:ef:b0:ed:40:
c0:ad:18:7d:c6:bf:62:81:88:4b:74:d7:54:13:2e:87:f8:26:
8e:51:4e:48:8a:73:0f:a0:1f:7a:7d:0c:21:2a:fc:51:0a:5a:
01:81:ac:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fPz3FxMr0/fjzIk2BxQQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMzdiNmRhYTIwYjVlMDYxODYyYjZmYjk5ZTIzNmFjMmMy
ZTM0ZjgwHhcNMjUxMDE5MDgwMTM2WhcNMjUxMDIwMDgwMTM2WjAzMTEwLwYDVQQD
EygzZDkwZGNmYzk3YTc1NzkzZWJkODMxNmU2ZjQ3YmUyMTVhZmUxMzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OUqRoNA1SzVzB5L7np7O6VVEGX1
2hEVZ31ynRf67cMmFLDMRAC/ewrTTR9ecU+NUSNbGYN8wp/58UZNN5Cpxb5MZBoC
YC2tdzpyhZGnD7EbErPQhSY+l8M7KQblJ6RaOPrxhEqvV6N16WKPQj2HZfmKbDNY
1+EPgfJNy07LSaDXQ5FCnlKJddn6gEGADoKc8kq9cZfXvWlM1Y6F9QtjEv7COss0
iR0b70gxf9/tIh7vdSp7hAog+O5FnC2wjDk6adRB7Gl68bKsyfyI4SUCOOyIlHcV
w4GVz5Udw/Zq1F7jUQOzCEajJNBzxRN8f9XCTx/L10o3EkoU0LVrwMci/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD2Q3PyXp1eT69gxbm9HviFa/hOEMB8GA1UdIwQY
MBaAFEE3ttqiC14GGGK2+5niNqwsLjT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMt
MGIwMmE0NzMyNDc5LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMtMGIwMmE0NzMyNDc5
LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASNRHqfnS
XMDqYcpYvEKlCqRcymKPk1kOFtseYXqGHcjr9GVBFPo4c5pwwFeAzjG2RUCG/CIY
xJ1VS7kE6GXIAfJ6zbToWje856THriBKQcT2KJ1Bgnr2hI5uJa1CYEKuDVuJ9+KD
kNolNrVld8AGmfgcLQGqHnEHJHovwG0YqBW8cwULTlLIbGPBwqf426JQJ+dqHcz7
Y4IS71E+krSIU/Sq0Eh38+db/SK2xn1XV6XwVyWiaVvMEri4cQ5RZI4KDHmx4XzA
QncPTbfBL33LtcYL1ZXvsO1AwK0Yfca/YoGIS3TXVBMuh/gmjlFOSIpzD6Afen0M
ISr8UQpaAYGslw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:31:22 2025 by rpki-client