Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: D9r3yigMku5HEqeSh9S2r8kXThMN89onQaIbRPUNd48=
Subject key identifier: 0A:AE:5A:45:95:AF:12:87:78:7B:E1:CC:02:CC:C1:6A:28:80:78:97
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 0198D5BC3936201E35115E312D85D998AC2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0C66
Signing time: Sat 23 Aug 2025 07:02:19 +0000
Manifest this update: Sat 23 Aug 2025 07:02:19 +0000
Manifest next update: Sun 24 Aug 2025 07:02:19 +0000
Files and hashes: 1: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: x5SOf1UaFPhlV/gwbPIIPCOCjmfNx/QoRIO6xqLGwFs=)
2: u25_l7rqpA4jc9Mn9X_nn6jE1D8.roa (hash: XxkiW8kKfa52GpQHHiGBtUNZJLczRvJy5PTfiodYsrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:39:36:20:1e:35:11:5e:31:2d:85:d9:98:ac:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Aug 23 07:02:19 2025 GMT
Not After : Aug 24 07:02:19 2025 GMT
Subject: CN=0aae5a4595af1287787be1cc02ccc16a28807897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:42:91:7d:f8:51:de:07:dc:e3:2b:84:cd:71:
cf:41:4c:53:e6:a3:cd:75:55:4c:b4:aa:21:66:9e:
4c:8f:ff:c5:a5:f3:a1:b8:26:c5:5b:9d:85:9d:01:
90:16:72:2f:6d:5d:bf:b3:2e:05:d5:90:e0:5c:ac:
15:fa:06:89:1e:21:68:3d:c0:56:53:0e:f4:df:92:
46:cc:0c:c7:d1:62:85:e6:a1:8e:81:4e:25:bb:49:
2d:6e:59:0f:56:bc:51:9e:f4:e5:34:2c:e9:8e:a2:
7d:3d:cd:7a:37:11:ea:fa:6a:cc:21:08:ca:6b:ef:
0f:4e:23:9b:06:12:13:10:17:6c:c4:d3:06:aa:90:
80:38:16:3a:da:52:0e:f3:c9:ff:9b:2b:7f:f2:25:
dc:27:49:20:cb:4a:01:1a:c1:25:68:6b:3d:68:56:
de:87:c4:8b:be:28:00:b6:6d:47:ff:9c:2f:09:7a:
80:8b:50:56:66:40:2e:be:67:be:1e:bb:fc:4f:5f:
a7:1c:bd:ae:a3:3b:66:06:81:42:2f:38:43:34:e8:
54:15:2f:95:c9:c6:33:f2:00:85:7f:1a:4c:9b:30:
47:1f:74:a1:96:85:00:15:95:ca:d3:d1:73:4e:d2:
3e:46:c4:d2:c0:02:ab:4c:f7:6d:77:00:fb:71:51:
03:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:AE:5A:45:95:AF:12:87:78:7B:E1:CC:02:CC:C1:6A:28:80:78:97
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:e2:37:bb:21:ee:f1:49:94:b0:c8:90:ae:35:fe:35:a3:43:
d7:95:e8:ce:22:0c:fc:86:09:c5:a5:40:c2:d8:d8:4a:ff:7d:
9e:be:87:73:63:d1:76:b6:ae:57:3f:d4:43:2e:1c:f6:51:76:
6a:07:ee:8f:09:16:73:55:7d:13:88:5d:41:ed:77:19:51:02:
ba:bc:3b:05:ac:b5:fe:0c:2a:ab:63:6a:ba:84:99:2f:50:0d:
25:23:0b:49:8e:9c:70:3a:a4:03:21:45:ac:02:27:89:af:83:
18:b5:13:82:23:48:db:1e:25:2f:2c:31:ce:7d:9f:36:03:3c:
f3:48:db:a7:04:2d:78:64:f2:a7:dc:2d:cf:8b:1d:31:4e:a8:
bc:d5:a9:e6:3b:0f:a0:ef:b7:b2:3f:cc:5b:c9:e3:c6:c3:0b:
38:81:d7:69:82:08:71:3c:6e:9f:a7:6a:bd:13:aa:0b:b8:67:
d8:93:79:4b:03:be:a0:b2:b7:6c:92:b5:a6:6f:f7:27:2d:32:
8b:07:9d:bd:71:8d:5b:87:1e:c5:16:5a:0e:42:2f:58:56:00:
0b:e5:49:e4:16:98:60:ab:fa:2b:2d:d4:c7:ee:be:fa:22:40:
a3:b1:5c:b6:9f:fc:a6:6b:ab:5d:88:bb:c2:0f:29:4a:c1:51:
4f:4c:df:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVvDk2IB41EV4xLYXZmKwqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNjVhZjY5N2RmMWY2Y2RhZjRjYmJkNjZkZTNkNDNiZWQ4
NjllOTAwHhcNMjUwODIzMDcwMjE5WhcNMjUwODI0MDcwMjE5WjAzMTEwLwYDVQQD
EygwYWFlNWE0NTk1YWYxMjg3Nzg3YmUxY2MwMmNjYzE2YTI4ODA3ODk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10KRffhR3gfc4yuEzXHPQUxT5qPN
dVVMtKohZp5Mj//FpfOhuCbFW52FnQGQFnIvbV2/sy4F1ZDgXKwV+gaJHiFoPcBW
Uw7035JGzAzH0WKF5qGOgU4lu0ktblkPVrxRnvTlNCzpjqJ9Pc16NxHq+mrMIQjK
a+8PTiObBhITEBdsxNMGqpCAOBY62lIO88n/myt/8iXcJ0kgy0oBGsElaGs9aFbe
h8SLvigAtm1H/5wvCXqAi1BWZkAuvme+Hrv8T1+nHL2uoztmBoFCLzhDNOhUFS+V
ycYz8gCFfxpMmzBHH3ShloUAFZXK09FzTtI+RsTSwAKrTPdtdwD7cVEDEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAquWkWVrxKHeHvhzALMwWoogHiXMB8GA1UdIwQY
MBaAFKplr2l98fbNr0y71m3j1Dvthp6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8wNDAxOWMtYWQxNy00MjhkLWIzYTIt
MWJlMTNiYThkNDU2LzEvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8wNDAxOWMtYWQxNy00MjhkLWIzYTItMWJlMTNiYThkNDU2
LzEvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkeI3uyHu
8UmUsMiQrjX+NaND15XoziIM/IYJxaVAwtjYSv99nr6Hc2PRdrauVz/UQy4c9lF2
agfujwkWc1V9E4hdQe13GVECurw7Bay1/gwqq2NquoSZL1ANJSMLSY6ccDqkAyFF
rAInia+DGLUTgiNI2x4lLywxzn2fNgM880jbpwQteGTyp9wtz4sdMU6ovNWp5jsP
oO+3sj/MW8njxsMLOIHXaYIIcTxun6dqvROqC7hn2JN5SwO+oLK3bJK1pm/3Jy0y
iwedvXGNW4cexRZaDkIvWFYAC+VJ5BaYYKv6Ky3Ux+6++iJAo7Fctp/8pmurXYi7
wg8pSsFRT0zf6Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:55 2025 by rpki-client