Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json)
Hash identifier: TTUT1u0CXUoMdy02Xy5UKhV0xi5XeNPK46nzyWwmKWU=
Subject key identifier: 1B:11:8F:C3:29:08:38:CC:70:DD:23:A5:F2:E6:D4:0C:65:6B:FA:83
Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Certificate serial: 0199FCC64829ED465BD93CA5A53613C640D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 14:01:17 +0000
Manifest this update: Sun 19 Oct 2025 14:01:17 +0000
Manifest next update: Mon 20 Oct 2025 14:01:17 +0000
Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=)
2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: s0G7kK9j/dy1ay6cFXUuQ0PFUTAli/ut6ONdIGezjg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:48:29:ed:46:5b:d9:3c:a5:a5:36:13:c6:40:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Validity
Not Before: Oct 19 14:01:17 2025 GMT
Not After : Oct 20 14:01:17 2025 GMT
Subject: CN=1b118fc3290838cc70dd23a5f2e6d40c656bfa83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cd:b0:92:df:b2:03:65:e6:53:03:68:a8:ce:
a8:59:66:64:12:a2:4e:54:5b:ad:45:1c:58:9e:ab:
b1:13:97:52:02:f1:0d:20:c5:5d:99:87:85:c9:22:
2b:f3:c5:75:dd:1a:43:31:6f:9e:e7:95:d5:a9:99:
f3:7a:fe:02:a6:c6:f7:49:b1:a2:c8:6a:97:5f:f6:
c4:e9:c2:0e:ae:7b:2e:ad:fb:fa:a3:92:b6:40:1a:
bb:a7:15:d7:da:62:ac:df:ca:d1:83:70:d6:0a:6f:
40:32:97:3d:fc:28:16:85:82:c0:41:c1:a4:50:50:
42:44:73:3c:a2:ca:2e:a0:a9:7a:aa:0f:ba:25:24:
d7:ea:06:d7:f2:17:67:62:e1:f7:2a:bb:11:18:66:
5c:a5:78:05:0d:cc:1c:86:a3:a7:e9:58:87:b3:06:
0b:de:5c:b4:ff:af:ac:67:68:4a:9d:21:92:f7:ba:
34:8f:80:97:99:c6:b7:ee:cb:3c:05:61:d0:93:ea:
a5:5a:88:e4:29:5b:38:12:f0:a3:b3:4f:b9:d6:a5:
11:fc:c9:43:24:cb:ed:70:5b:80:f8:39:98:46:bc:
3a:8a:b5:3c:62:c7:43:93:3f:4c:5a:68:4a:61:32:
9a:f9:1e:39:52:ef:67:a3:47:66:1e:b1:67:57:fa:
07:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:11:8F:C3:29:08:38:CC:70:DD:23:A5:F2:E6:D4:0C:65:6B:FA:83
X509v3 Authority Key Identifier:
keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:ab:92:10:c6:61:a8:fe:be:48:0c:01:7d:2e:50:ce:79:75:
0e:e8:ce:c2:ce:55:bf:c0:ae:b0:b9:f5:58:e8:78:f8:47:79:
7a:8a:d0:06:a4:2f:85:8c:76:cc:72:69:17:d0:a3:a5:6a:e4:
8e:55:c2:ba:19:97:90:76:f8:99:69:06:f3:fc:b6:68:84:5f:
79:d7:86:5e:c0:f9:d1:cb:9f:bc:1c:29:ee:4c:7b:4f:34:f2:
df:cc:9f:c4:9b:ee:96:da:48:eb:0a:f3:14:43:56:f6:1c:7e:
e5:03:14:89:2d:e2:bb:a4:a8:55:07:65:70:84:3d:9b:58:c6:
27:6a:12:23:79:ac:a9:48:39:f3:2d:29:a0:19:a1:30:13:df:
c4:ba:1a:58:31:55:f9:bf:0a:84:28:d9:12:df:39:bc:e3:c1:
43:bb:6c:e5:50:a2:10:09:3d:f3:d3:8c:71:f8:15:a3:87:b9:
be:cd:23:5b:02:27:2b:45:88:c2:d7:93:f1:58:c6:d2:17:12:
f9:89:c1:2a:7e:b7:a2:1d:b0:f5:3a:fa:a6:48:7d:01:a4:ad:
3e:37:5f:e9:74:fb:76:81:00:1a:45:62:b9:1f:38:08:07:17:
9b:65:6e:b3:43:9b:45:fd:eb:a9:2b:ea:d4:00:36:5b:c6:a0:
01:35:bd:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xkgp7UZb2TylpTYTxkDYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMjViNTcwZjQ2ZGU1YzZlOGIyYjY0ZWQwOTBhZDEzODVk
YWI3MzEwHhcNMjUxMDE5MTQwMTE3WhcNMjUxMDIwMTQwMTE3WjAzMTEwLwYDVQQD
EygxYjExOGZjMzI5MDgzOGNjNzBkZDIzYTVmMmU2ZDQwYzY1NmJmYTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwc2wkt+yA2XmUwNoqM6oWWZkEqJO
VFutRRxYnquxE5dSAvENIMVdmYeFySIr88V13RpDMW+e55XVqZnzev4Cpsb3SbGi
yGqXX/bE6cIOrnsurfv6o5K2QBq7pxXX2mKs38rRg3DWCm9AMpc9/CgWhYLAQcGk
UFBCRHM8osouoKl6qg+6JSTX6gbX8hdnYuH3KrsRGGZcpXgFDcwchqOn6ViHswYL
3ly0/6+sZ2hKnSGS97o0j4CXmca37ss8BWHQk+qlWojkKVs4EvCjs0+51qUR/MlD
JMvtcFuA+DmYRrw6irU8YsdDkz9MWmhKYTKa+R45Uu9no0dmHrFnV/oHjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBsRj8MpCDjMcN0jpfLm1Axla/qDMB8GA1UdIwQY
MBaAFEIltXD0beXG6LK2TtCQrROF2rcxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9jMzRjOTktMThjOC00MWEyLTg3NGIt
MzkwYjg1Mzk0YmViLzEvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9jMzRjOTktMThjOC00MWEyLTg3NGItMzkwYjg1Mzk0YmVi
LzEvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEKuSEMZh
qP6+SAwBfS5Qznl1DujOws5Vv8CusLn1WOh4+Ed5eorQBqQvhYx2zHJpF9CjpWrk
jlXCuhmXkHb4mWkG8/y2aIRfedeGXsD50cufvBwp7kx7TzTy38yfxJvultpI6wrz
FENW9hx+5QMUiS3iu6SoVQdlcIQ9m1jGJ2oSI3msqUg58y0poBmhMBPfxLoaWDFV
+b8KhCjZEt85vOPBQ7ts5VCiEAk989OMcfgVo4e5vs0jWwInK0WIwteT8VjG0hcS
+YnBKn63oh2w9Tr6pkh9AaStPjdf6XT7doEAGkViuR84CAcXm2Vus0ObRf3rqSvq
1AA2W8agATW9aw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:33:16 2025 by rpki-client