Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: n50p4hnB6nDCCdJU8h4g7a97JyqLemcFZvtOXkuoMAk=
Subject key identifier: 7B:49:8D:C4:91:5F:48:1C:3A:87:EF:3E:17:CE:0D:56:0A:E0:63:7B
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 0199FC59069F183BC2CE029F2CE48E532576
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0CD5
Signing time: Sun 19 Oct 2025 12:01:56 +0000
Manifest this update: Sun 19 Oct 2025 12:01:56 +0000
Manifest next update: Mon 20 Oct 2025 12:01:56 +0000
Files and hashes: 1: 0SSsSk3JYtZfVKoUdIXep-skUls.roa (hash: lo1rRlcKmSiP/o5fsPXMsNzyze1q/0lfZDjTXaH15HI=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: R0wKSd06ktsJSb5CRjRBj+l97LIEAPNxQ/H3TgLufvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:59:06:9f:18:3b:c2:ce:02:9f:2c:e4:8e:53:25:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Oct 19 12:01:56 2025 GMT
Not After : Oct 20 12:01:56 2025 GMT
Subject: CN=7b498dc4915f481c3a87ef3e17ce0d560ae0637b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ec:8a:76:db:88:38:02:6b:aa:6c:ea:e6:f6:
fd:ad:4c:d5:c4:6b:54:64:90:0b:ff:d8:bd:59:4a:
dd:9d:8f:6e:81:a4:84:f5:41:84:0f:30:59:21:b2:
bd:cf:5f:b0:c9:97:7d:9f:09:0f:21:ee:7b:df:4c:
c0:36:68:d1:f4:91:3b:53:f9:39:7b:4f:f7:a2:08:
96:90:d1:1a:7d:29:23:30:b6:c2:cb:de:f8:7d:85:
92:1b:ee:ef:d4:93:e2:11:d0:cb:23:19:94:26:34:
fd:49:70:bb:14:3c:f7:bb:63:7a:d1:e0:88:fc:a5:
90:dc:cc:d9:8c:48:af:4a:ac:d8:75:56:8f:43:f2:
b0:83:e9:53:7b:23:7f:95:42:a9:93:fb:e8:a3:96:
00:40:f7:cc:6a:6d:b3:0b:fc:14:6b:b5:d8:d9:01:
1e:f5:79:35:99:80:a1:6b:fa:80:0d:c5:6c:1e:25:
76:25:d1:c3:0c:0c:08:04:08:c4:1d:36:c6:d4:e2:
18:c8:fb:4b:ac:e9:bb:52:48:c8:3a:f0:24:89:1f:
cf:59:29:d5:20:e5:f2:58:d5:fb:01:84:1b:de:8b:
5d:e1:ab:08:f9:15:2e:5e:e1:71:bf:64:db:5b:41:
b8:2d:a1:48:fa:a0:85:57:b9:06:cc:1a:af:75:37:
71:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:49:8D:C4:91:5F:48:1C:3A:87:EF:3E:17:CE:0D:56:0A:E0:63:7B
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:16:79:72:42:ca:78:0b:7b:4c:c5:04:f2:84:16:2a:f4:b2:
ca:1f:7c:c9:d2:76:cb:86:08:f7:33:ea:8e:73:5e:d0:7a:d5:
18:4f:6a:ad:21:09:91:86:0f:a8:af:1a:f7:aa:a8:74:c0:40:
dd:8c:3d:4d:b1:38:cc:b4:a4:fb:87:79:61:87:e8:94:29:05:
c9:c1:30:50:d2:19:b3:5d:69:cf:50:54:5d:25:ca:a9:a3:09:
e0:79:59:27:43:67:fa:c2:f1:2e:74:2c:03:d6:4a:98:6c:99:
59:20:32:48:3d:b0:c4:ae:d3:b9:7c:cb:ce:5a:01:4c:c5:06:
c8:11:9a:84:3c:24:3a:6d:69:6c:d0:f5:dc:f3:14:a7:6b:f0:
bf:7a:90:57:62:f6:22:e6:ea:3d:9e:2a:d9:7f:76:c3:80:0e:
14:aa:77:5e:5b:73:39:2c:d6:c5:6d:08:e8:1a:75:89:47:d6:
26:5f:92:f1:0e:2a:22:10:cc:53:24:6a:21:3b:6f:89:6c:d7:
35:e0:61:3d:de:85:9c:05:a5:c6:42:48:73:3e:f7:da:82:79:
17:ef:d0:d7:91:81:1f:26:84:92:ff:92:85:b4:01:9d:ff:30:
c1:bb:6c:d2:20:fe:c3:66:3f:4f:73:77:86:f9:4e:9b:c6:ad:
40:9e:3d:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WQafGDvCzgKfLOSOUyV2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiODUyMGVjODNlMzBlYjc5MzhiODAwMmY0NzBmMGQxYzUw
NWM0NTEwHhcNMjUxMDE5MTIwMTU2WhcNMjUxMDIwMTIwMTU2WjAzMTEwLwYDVQQD
Eyg3YjQ5OGRjNDkxNWY0ODFjM2E4N2VmM2UxN2NlMGQ1NjBhZTA2MzdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+yKdtuIOAJrqmzq5vb9rUzVxGtU
ZJAL/9i9WUrdnY9ugaSE9UGEDzBZIbK9z1+wyZd9nwkPIe5730zANmjR9JE7U/k5
e0/3ogiWkNEafSkjMLbCy974fYWSG+7v1JPiEdDLIxmUJjT9SXC7FDz3u2N60eCI
/KWQ3MzZjEivSqzYdVaPQ/Kwg+lTeyN/lUKpk/voo5YAQPfMam2zC/wUa7XY2QEe
9Xk1mYCha/qADcVsHiV2JdHDDAwIBAjEHTbG1OIYyPtLrOm7UkjIOvAkiR/PWSnV
IOXyWNX7AYQb3otd4asI+RUuXuFxv2TbW0G4LaFI+qCFV7kGzBqvdTdxbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHtJjcSRX0gcOofvPhfODVYK4GN7MB8GA1UdIwQY
MBaAFKuFIOyD4w63k4uAAvRw8NHFBcRRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9mYWVhNjUtOTBiNC00NmRiLWJlZWYt
ODRiNDczYjllYmNkLzEvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9mYWVhNjUtOTBiNC00NmRiLWJlZWYtODRiNDczYjllYmNk
LzEvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAthZ5ckLK
eAt7TMUE8oQWKvSyyh98ydJ2y4YI9zPqjnNe0HrVGE9qrSEJkYYPqK8a96qodMBA
3Yw9TbE4zLSk+4d5YYfolCkFycEwUNIZs11pz1BUXSXKqaMJ4HlZJ0Nn+sLxLnQs
A9ZKmGyZWSAySD2wxK7TuXzLzloBTMUGyBGahDwkOm1pbND13PMUp2vwv3qQV2L2
IubqPZ4q2X92w4AOFKp3XltzOSzWxW0I6Bp1iUfWJl+S8Q4qIhDMUyRqITtviWzX
NeBhPd6FnAWlxkJIcz732oJ5F+/Q15GBHyaEkv+ShbQBnf8wwbts0iD+w2Y/T3N3
hvlOm8atQJ49/A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:35 2025 by rpki-client