Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
File: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft (raw, json)
Hash identifier: qC6hg+p0uK3ZZ+1fbb/6HJVEalCv9/uddkN/6tOnGF8=
Subject key identifier: FD:07:02:CC:0A:E1:CE:E0:8D:3A:15:9D:52:B5:69:12:F2:0D:A2:90
Authority key identifier: 41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
Certificate issuer: /CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Certificate serial: 0198D4E024553B1CCB73BA8993F84891A594
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 03:01:55 +0000
Manifest this update: Sat 23 Aug 2025 03:01:55 +0000
Manifest next update: Sun 24 Aug 2025 03:01:55 +0000
Files and hashes: 1: NrBghBDxVUP3b8K-s4QfPajtoEw.roa (hash: PXmrD91Lu77kd9R7RmMEPIR9q62nZX3KSQVZITYjO7o=)
2: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl (hash: NNc44OzkYsIhRMt2E2Vg/JoiRIYMmA4/fPSfGfGHr9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:24:55:3b:1c:cb:73:ba:89:93:f8:48:91:a5:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Validity
Not Before: Aug 23 03:01:55 2025 GMT
Not After : Aug 24 03:01:55 2025 GMT
Subject: CN=fd0702cc0ae1cee08d3a159d52b56912f20da290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:33:90:be:7f:f4:4d:4b:ff:3d:32:1a:6d:6a:
50:18:e1:0c:82:c1:31:78:db:1e:99:04:ee:4c:1f:
ba:a8:72:63:9f:48:2f:a2:e5:88:b1:aa:05:ee:90:
b7:33:3f:4f:24:a0:69:5f:ff:a8:3a:44:a7:38:b9:
6e:87:3d:22:bc:6b:05:16:5d:4f:81:fb:dd:d1:d1:
b6:e9:5d:6c:85:c4:02:d3:ff:22:68:33:52:24:ed:
5c:f3:2f:5a:92:cb:cd:c1:52:db:c2:88:c9:75:a7:
92:dd:da:76:62:6d:a1:38:50:db:ce:6a:61:e5:5d:
1e:c0:c2:c7:30:5a:e2:6e:f0:7a:8e:e2:b3:16:1c:
83:ad:75:16:85:be:fd:c8:59:09:c4:c4:6f:b8:32:
10:34:f9:5e:31:8d:2f:e9:cd:31:20:b3:63:05:9c:
bd:0b:49:ab:dc:c4:68:99:7a:36:55:ba:2a:19:2f:
a6:88:d7:21:f5:cd:86:00:52:8b:01:e3:99:86:01:
40:08:b6:51:19:9c:1d:13:d6:22:39:ab:7f:ff:fb:
53:bc:34:ad:ec:37:22:90:67:73:80:5d:fb:35:fc:
e5:87:91:a1:9e:6f:f7:a4:a8:57:80:e8:ba:a4:a4:
8d:dc:94:67:dc:1d:9d:0b:69:c2:64:02:c5:0b:1a:
ce:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:07:02:CC:0A:E1:CE:E0:8D:3A:15:9D:52:B5:69:12:F2:0D:A2:90
X509v3 Authority Key Identifier:
keyid:41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:8a:36:c3:67:b1:6a:a5:bc:a6:ae:83:34:5f:5b:45:87:d2:
20:40:5d:c8:6b:fa:de:6c:2b:1b:35:cf:c4:df:2d:f1:de:b3:
90:5f:24:64:a6:0b:a0:b3:d2:f3:8a:2e:55:59:c8:18:d6:7b:
ac:1a:5b:56:a5:c1:cb:be:b3:93:41:34:17:44:4a:4d:dd:4d:
26:c5:e9:53:be:85:be:16:06:00:9b:fd:f2:a5:6b:2b:61:01:
a6:49:00:c9:19:38:2e:cf:88:75:4e:a3:fe:fb:db:90:40:32:
f8:d7:f3:a2:d9:35:a5:50:e4:b3:39:fb:d4:80:a1:0b:f1:1f:
ba:8f:da:d3:a2:05:e0:75:51:6a:07:73:14:3f:5e:4a:2b:5e:
70:db:49:3d:85:d0:28:0b:d6:f1:a5:45:a1:44:69:06:60:f2:
ca:14:db:4a:6a:ae:e4:12:d3:34:55:24:24:3f:fa:b1:95:9e:
93:1f:d2:f7:d2:08:5b:0b:fa:eb:1a:72:05:02:55:eb:6c:4d:
92:36:98:5c:e6:98:26:ea:ae:56:80:f5:f6:b7:d8:ab:56:57:
1c:91:99:be:0f:ab:41:4d:8b:aa:57:54:38:77:96:55:83:14:
91:33:0f:f1:57:58:b8:85:2a:43:46:9f:93:57:29:91:f3:f9:
95:9a:de:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4CRVOxzLc7qJk/hIkaWUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxOGRmODY4ZjdkOWU5OGQ0ZmQ0MWU2ZGE1OTdhMjgzYzkx
NDFiNDQwHhcNMjUwODIzMDMwMTU1WhcNMjUwODI0MDMwMTU1WjAzMTEwLwYDVQQD
EyhmZDA3MDJjYzBhZTFjZWUwOGQzYTE1OWQ1MmI1NjkxMmYyMGRhMjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjOQvn/0TUv/PTIabWpQGOEMgsEx
eNsemQTuTB+6qHJjn0gvouWIsaoF7pC3Mz9PJKBpX/+oOkSnOLluhz0ivGsFFl1P
gfvd0dG26V1shcQC0/8iaDNSJO1c8y9aksvNwVLbwojJdaeS3dp2Ym2hOFDbzmph
5V0ewMLHMFribvB6juKzFhyDrXUWhb79yFkJxMRvuDIQNPleMY0v6c0xILNjBZy9
C0mr3MRomXo2VboqGS+miNch9c2GAFKLAeOZhgFACLZRGZwdE9YiOat///tTvDSt
7DcikGdzgF37Nfzlh5Ghnm/3pKhXgOi6pKSN3JRn3B2dC2nCZALFCxrOBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP0HAswK4c7gjToVnVK1aRLyDaKQMB8GA1UdIwQY
MBaAFEGN+Gj32emNT9QebaWXooPJFBtEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jNmY4NmQtZjc5NS00MTlmLWFkMzEt
ZWU5YzM0NTJjYmFmLzEvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9jNmY4NmQtZjc5NS00MTlmLWFkMzEtZWU5YzM0NTJjYmFm
LzEvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUYo2w2ex
aqW8pq6DNF9bRYfSIEBdyGv63mwrGzXPxN8t8d6zkF8kZKYLoLPS84ouVVnIGNZ7
rBpbVqXBy76zk0E0F0RKTd1NJsXpU76FvhYGAJv98qVrK2EBpkkAyRk4Ls+IdU6j
/vvbkEAy+Nfzotk1pVDkszn71IChC/Efuo/a06IF4HVRagdzFD9eSitecNtJPYXQ
KAvW8aVFoURpBmDyyhTbSmqu5BLTNFUkJD/6sZWekx/S99IIWwv66xpyBQJV62xN
kjaYXOaYJuquVoD19rfYq1ZXHJGZvg+rQU2LqldUOHeWVYMUkTMP8VdYuIUqQ0af
k1cpkfP5lZrebw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:19:27 2025 by rpki-client