Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: VW4oKKDXBhteS+kExI5008ATsU4xUfk3PihR5PFwO44=
Subject key identifier: 65:B2:EA:C0:31:0B:BD:E0:7C:98:23:CE:8B:79:14:11:25:78:F1:24
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 0199FC2167988DB6099035B687B960A1DCF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 11:01:11 +0000
Manifest this update: Sun 19 Oct 2025 11:01:11 +0000
Manifest next update: Mon 20 Oct 2025 11:01:11 +0000
Files and hashes: 1: Diq6O5ga68_B8MEC7x3IDqn6lbc.roa (hash: r+Ep1MU6KZ691K575NCgrIa7fSiICzMjhV/0OlU71vU=)
2: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: 2w8T/Gj605OG8e0xS1op7+UajrDJs3KfNSXZsP29oAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:67:98:8d:b6:09:90:35:b6:87:b9:60:a1:dc:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Oct 19 11:01:11 2025 GMT
Not After : Oct 20 11:01:11 2025 GMT
Subject: CN=65b2eac0310bbde07c9823ce8b7914112578f124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:55:4d:9d:b2:ed:75:a5:9d:ae:96:cb:ff:4e:
f4:a7:1c:b1:21:0e:86:30:e8:14:e8:8f:a4:01:25:
59:cc:15:f7:38:23:d8:0c:63:0c:25:49:2d:c0:15:
cc:c3:8c:51:04:37:14:ea:92:45:06:55:fc:47:b7:
fb:e6:16:e8:17:ce:fe:81:b6:28:e0:5c:f3:7b:bd:
0b:73:4e:19:54:5a:c3:36:1c:f6:1f:19:af:f4:55:
72:41:c5:b6:a5:a3:f8:3f:4a:d2:9a:44:b8:86:a7:
a1:b8:78:dc:f1:e7:2b:97:92:25:a5:c7:43:dc:be:
d6:52:a5:cd:0b:ce:39:da:5c:91:3e:54:55:ef:1b:
a0:37:73:d0:98:a8:ec:57:e1:f2:8a:3e:1e:e1:3f:
a0:12:22:0a:9f:d8:d8:2a:66:6e:53:de:77:b5:44:
bd:75:c1:b3:e6:8a:ab:9d:46:58:ad:f1:ea:f2:ac:
e5:3f:10:20:1a:1a:fe:47:c6:6a:c3:3c:08:f3:1e:
19:8e:82:3a:c8:63:6f:bf:52:cd:d0:6a:3d:18:fb:
ff:2c:86:01:ad:63:2e:c8:24:ea:56:70:9d:53:09:
8e:e8:f7:45:93:6a:8f:94:2f:0d:66:5d:b7:4b:be:
bb:60:29:e4:dd:94:2a:fd:6c:6e:21:51:f5:3c:67:
a3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B2:EA:C0:31:0B:BD:E0:7C:98:23:CE:8B:79:14:11:25:78:F1:24
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:ac:17:ec:fa:61:5f:4a:e9:50:77:4a:4c:cd:c0:43:1b:b7:
be:f8:16:b2:cf:39:1a:82:71:ea:0c:3f:1f:ae:30:58:58:92:
d2:a6:a3:47:b7:93:a9:c8:ee:06:6e:a3:82:e1:d1:19:41:1f:
f2:f7:f4:38:01:c5:14:58:8d:90:da:ac:6e:b1:ea:c5:5e:88:
43:20:35:db:fa:f8:88:35:02:f7:41:95:f9:dd:53:36:18:df:
2d:21:cc:4e:83:7c:89:65:11:16:fe:24:3c:ac:47:69:9b:7b:
64:9b:4d:51:fd:99:e8:39:b7:14:17:66:cc:cb:37:ac:31:0f:
3e:7e:4d:ae:78:af:a7:34:10:1e:5f:a4:4d:f3:9e:af:ed:ee:
d7:83:e2:70:1e:93:ac:f7:e4:f5:a4:94:78:c2:2e:a1:91:d4:
01:d4:00:02:ca:26:69:95:be:f2:5b:28:8c:ee:80:ab:a1:61:
5a:5b:e0:bb:1c:bc:27:b2:33:92:66:e7:42:cb:1a:8a:23:8e:
69:64:e0:d5:1d:8d:2f:cb:76:4b:1c:5a:d4:c4:50:3a:74:8d:
72:81:2f:f6:d4:5f:90:9b:c3:47:07:5c:7a:94:d4:fd:51:fd:
ab:bb:a4:77:38:39:b6:44:e6:c8:fe:84:1d:44:9e:17:d2:8f:
ad:39:fd:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IWeYjbYJkDW2h7lgodzzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNDUzNjRlNDlkYzNhMTViZWZmMjY5YzNhMzJiM2MwNTQx
YzhiNjYwHhcNMjUxMDE5MTEwMTExWhcNMjUxMDIwMTEwMTExWjAzMTEwLwYDVQQD
Eyg2NWIyZWFjMDMxMGJiZGUwN2M5ODIzY2U4Yjc5MTQxMTI1NzhmMTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1VNnbLtdaWdrpbL/070pxyxIQ6G
MOgU6I+kASVZzBX3OCPYDGMMJUktwBXMw4xRBDcU6pJFBlX8R7f75hboF87+gbYo
4Fzze70Lc04ZVFrDNhz2Hxmv9FVyQcW2paP4P0rSmkS4hqehuHjc8ecrl5IlpcdD
3L7WUqXNC8452lyRPlRV7xugN3PQmKjsV+Hyij4e4T+gEiIKn9jYKmZuU953tUS9
dcGz5oqrnUZYrfHq8qzlPxAgGhr+R8ZqwzwI8x4ZjoI6yGNvv1LN0Go9GPv/LIYB
rWMuyCTqVnCdUwmO6PdFk2qPlC8NZl23S767YCnk3ZQq/WxuIVH1PGej4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGWy6sAxC73gfJgjzot5FBElePEkMB8GA1UdIwQY
MBaAFKtFNk5J3DoVvv8mnDoys8BUHItmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTct
ZjhiZDI1MDQ1NGViLzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTctZjhiZDI1MDQ1NGVi
LzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQqwX7Pph
X0rpUHdKTM3AQxu3vvgWss85GoJx6gw/H64wWFiS0qajR7eTqcjuBm6jguHRGUEf
8vf0OAHFFFiNkNqsbrHqxV6IQyA12/r4iDUC90GV+d1TNhjfLSHMToN8iWURFv4k
PKxHaZt7ZJtNUf2Z6Dm3FBdmzMs3rDEPPn5NrnivpzQQHl+kTfOer+3u14PicB6T
rPfk9aSUeMIuoZHUAdQAAsomaZW+8lsojO6Aq6FhWlvguxy8J7IzkmbnQssaiiOO
aWTg1R2NL8t2Sxxa1MRQOnSNcoEv9tRfkJvDRwdcepTU/VH9q7ukdzg5tkTmyP6E
HUSeF9KPrTn94g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:24:25 2025 by rpki-client