Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
File: QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft (raw, json)
Hash identifier: +5C4rk1XMux4WqoVgHuSwoDbYkkVue2Hg+meBKHd+4c=
Subject key identifier: AB:14:1E:4F:9F:0F:E7:7D:89:B4:4C:64:A6:C6:46:20:E6:B2:4C:4D
Authority key identifier: 40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A
Certificate issuer: /CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a
Certificate serial: 0199FBEBF294C77EEE16EEAECCDE9F6ACD15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
Manifest number: 0AEF
Signing time: Sun 19 Oct 2025 10:02:48 +0000
Manifest this update: Sun 19 Oct 2025 10:02:48 +0000
Manifest next update: Mon 20 Oct 2025 10:02:48 +0000
Files and hashes: 1: QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl (hash: AvOGXL62MVq7f+LAw60v0oNGFVCoEgbzBG7FMqv+0EM=)
2: dmWwMKmVtBjrQ943YS9mH5Wi3ME.roa (hash: prLT1d+yXEMIyzM51qGGgQHR5qaRcSsmNt9aZioq8kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:f2:94:c7:7e:ee:16:ee:ae:cc:de:9f:6a:cd:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a
Validity
Not Before: Oct 19 10:02:48 2025 GMT
Not After : Oct 20 10:02:48 2025 GMT
Subject: CN=ab141e4f9f0fe77d89b44c64a6c64620e6b24c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4d:73:f5:51:5c:90:c6:81:5a:39:2d:30:a9:
0b:31:96:e0:e8:78:a7:c3:64:53:75:86:0d:3c:fc:
47:0e:e3:a6:85:18:57:71:d2:43:2d:3f:a8:ec:98:
22:3b:bf:89:da:df:c6:5a:4a:7c:51:cb:44:37:f1:
7d:74:23:6d:e5:30:a5:3a:c8:3e:fa:db:57:26:ec:
62:76:0e:cf:52:51:e5:a4:f0:11:f1:fb:a4:f9:15:
e3:a6:b8:c9:75:3c:f7:02:5f:50:f5:93:48:ba:6f:
1c:99:d0:5e:f1:9d:e6:35:3a:6b:97:4b:59:90:92:
81:b1:e2:db:68:29:a3:b3:5b:fa:a4:01:62:85:16:
cc:91:66:6e:1a:2a:2e:4a:bc:35:3d:8c:ba:f1:08:
d1:ea:51:43:98:16:b0:19:f1:17:cb:5b:54:c7:55:
62:f9:67:2a:0c:e3:28:87:12:ac:de:57:b6:96:ee:
07:c7:dd:50:c3:e2:5f:0b:a7:4d:f6:07:91:da:9b:
24:08:78:1a:13:72:52:91:ab:37:40:4b:89:25:34:
2d:72:6c:59:de:86:63:2c:2b:8b:a8:74:94:42:fe:
ca:31:37:c2:ff:92:0a:dc:3b:89:58:c7:16:89:c4:
31:ef:38:af:94:7a:0d:c0:bd:4b:5c:87:ee:f5:4c:
18:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:14:1E:4F:9F:0F:E7:7D:89:B4:4C:64:A6:C6:46:20:E6:B2:4C:4D
X509v3 Authority Key Identifier:
keyid:40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:69:a9:f6:ba:9c:d9:56:b8:fc:b8:b3:d3:3a:93:e8:da:34:
b3:93:16:7a:38:37:0b:61:1c:ce:10:b2:ed:18:60:e7:66:04:
0b:42:c4:f2:01:f9:a7:60:25:02:df:19:f2:2a:13:0a:13:e8:
52:5c:1c:62:a4:25:d2:e0:72:e9:58:d5:6b:3a:5e:09:b0:d0:
e1:34:07:35:f8:ff:cb:3f:45:8c:35:22:06:1e:77:e5:d1:13:
5d:b8:26:11:21:37:cc:d9:bf:0d:85:cd:78:9f:40:0e:a0:8e:
d3:47:c3:ec:d3:22:c4:11:92:43:30:46:e3:7f:16:99:6c:17:
33:a8:48:27:cb:a4:a2:ea:2d:95:5e:46:da:e8:6a:4d:b6:cb:
e7:0c:4e:70:be:28:4d:10:f1:4c:32:6f:6d:0b:3b:5c:80:64:
e7:b1:99:d7:52:91:f1:4c:fa:9a:43:d1:45:20:c0:88:d0:7b:
65:8f:28:9b:d9:64:28:f3:57:f0:26:bc:d5:54:cc:3c:8c:bd:
a4:58:cb:f3:17:7e:8c:4c:ab:d8:70:98:2f:52:66:9e:bf:53:
d0:1a:93:a1:5f:01:e5:a5:5a:8e:98:90:01:51:c4:06:e2:a6:
db:52:2b:04:42:27:ec:2b:6b:42:dc:d5:b1:60:b0:62:02:17:
59:a4:c8:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76/KUx37uFu6uzN6fas0VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwZDU1OTFhNzViZDY5M2U5ZDNiNzY2ODM0YmYwNzRmN2Ix
ZWVlM2EwHhcNMjUxMDE5MTAwMjQ4WhcNMjUxMDIwMTAwMjQ4WjAzMTEwLwYDVQQD
EyhhYjE0MWU0ZjlmMGZlNzdkODliNDRjNjRhNmM2NDYyMGU2YjI0YzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1U1z9VFckMaBWjktMKkLMZbg6Hin
w2RTdYYNPPxHDuOmhRhXcdJDLT+o7JgiO7+J2t/GWkp8UctEN/F9dCNt5TClOsg+
+ttXJuxidg7PUlHlpPAR8fuk+RXjprjJdTz3Al9Q9ZNIum8cmdBe8Z3mNTprl0tZ
kJKBseLbaCmjs1v6pAFihRbMkWZuGiouSrw1PYy68QjR6lFDmBawGfEXy1tUx1Vi
+WcqDOMohxKs3le2lu4Hx91Qw+JfC6dN9geR2pskCHgaE3JSkas3QEuJJTQtcmxZ
3oZjLCuLqHSUQv7KMTfC/5IK3DuJWMcWicQx7zivlHoNwL1LXIfu9UwYeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKsUHk+fD+d9ibRMZKbGRiDmskxNMB8GA1UdIwQY
MBaAFEDVWRp1vWk+nTt2aDS/B097Hu46MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU5WWkduVzlhVDZkTzNab05MOEhUM3NlN2pvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy85YzlmMjgtNGY0MS00NzJkLWE2M2Ut
YTEwYTNhNDk2M2ZiLzEvUU5WWkduVzlhVDZkTzNab05MOEhUM3NlN2pvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy85YzlmMjgtNGY0MS00NzJkLWE2M2UtYTEwYTNhNDk2M2Zi
LzEvUU5WWkduVzlhVDZkTzNab05MOEhUM3NlN2pvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqWmp9rqc
2Va4/Liz0zqT6No0s5MWejg3C2EczhCy7Rhg52YEC0LE8gH5p2AlAt8Z8ioTChPo
UlwcYqQl0uBy6VjVazpeCbDQ4TQHNfj/yz9FjDUiBh535dETXbgmESE3zNm/DYXN
eJ9ADqCO00fD7NMixBGSQzBG438WmWwXM6hIJ8ukouotlV5G2uhqTbbL5wxOcL4o
TRDxTDJvbQs7XIBk57GZ11KR8Uz6mkPRRSDAiNB7ZY8om9lkKPNX8Ca81VTMPIy9
pFjL8xd+jEyr2HCYL1Jmnr9T0BqToV8B5aVajpiQAVHEBuKm21IrBEIn7CtrQtzV
sWCwYgIXWaTIXA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:30 2025 by rpki-client