Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
File: QclkksAECK1U1zDA62KeOgtQ2A8.mft (raw, json)
Hash identifier: XcHO7erAF5PFSNVyVZ6GcZBO8GjVKFx/Gcot/dQF8aA=
Subject key identifier: FC:81:72:F1:5D:64:36:FC:DB:FB:03:86:8F:E8:22:2F:6B:2E:8F:C8
Authority key identifier: 41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
Certificate issuer: /CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Certificate serial: 0199FBEB23F88796C9745CDD36BB515CD3D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
Manifest number: 036C
Signing time: Sun 19 Oct 2025 10:01:55 +0000
Manifest this update: Sun 19 Oct 2025 10:01:55 +0000
Manifest next update: Mon 20 Oct 2025 10:01:55 +0000
Files and hashes: 1: EpeCh_PHvVwvR1jtfMGPQVrMsrQ.roa (hash: XKVWPCeZYhwf3z1v0hUSbNv7x/hm4cVMh5YcJnXqtvg=)
2: QclkksAECK1U1zDA62KeOgtQ2A8.crl (hash: lOypNpIPeyfxZ1fEJ09TwvPZPFOzue+ZJw6vnu/szQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:23:f8:87:96:c9:74:5c:dd:36:bb:51:5c:d3:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Validity
Not Before: Oct 19 10:01:55 2025 GMT
Not After : Oct 20 10:01:55 2025 GMT
Subject: CN=fc8172f15d6436fcdbfb03868fe8222f6b2e8fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b4:77:74:61:45:55:a8:ce:4f:7d:8b:1c:8a:
b4:cb:27:26:79:cc:4f:28:40:e8:7d:0d:32:dd:fc:
18:fe:5e:bb:08:89:ff:bb:60:92:3e:87:14:10:42:
46:51:0a:5b:42:95:45:1a:87:b0:42:39:a8:6b:be:
21:ef:b2:46:a2:26:41:df:55:bf:5c:80:98:0f:49:
80:a3:8c:6a:35:58:65:e2:6d:9f:d8:34:97:cb:d8:
ea:5f:4d:3b:a0:12:82:2a:bb:c5:67:e5:fd:9f:35:
5d:05:ed:ff:db:a3:87:5b:e1:ca:31:94:b6:06:f6:
56:7f:39:54:f4:fa:55:cd:96:b9:00:26:86:e4:88:
4b:ed:05:4e:76:99:fa:8a:b3:38:ed:e4:f4:0c:34:
1e:93:49:69:9e:7e:91:f9:e2:8e:fc:19:b4:68:54:
2c:30:c7:29:c0:d8:ca:37:1d:8a:30:f8:d8:db:cf:
8e:5e:c9:22:b6:3b:0e:94:25:9c:c6:a3:ea:35:ff:
6e:4f:b3:0a:80:b9:7a:2e:fe:a3:68:d8:77:75:78:
02:07:9d:18:3c:77:fe:fb:2d:15:f2:5f:99:19:55:
c5:63:31:22:18:51:28:d4:5d:fa:c1:d4:ff:91:20:
59:6b:3a:06:ec:57:55:9c:ab:e3:ee:08:93:45:c6:
8f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:81:72:F1:5D:64:36:FC:DB:FB:03:86:8F:E8:22:2F:6B:2E:8F:C8
X509v3 Authority Key Identifier:
keyid:41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:b6:2a:f5:d3:8e:8e:09:50:1c:44:c6:ed:e5:6c:15:ed:7d:
9b:9a:03:88:e5:0b:53:b8:72:59:77:78:c9:13:02:50:bd:de:
0c:ca:df:0a:0f:a6:ff:12:ed:8b:47:4f:8a:ad:77:79:5c:95:
27:ea:04:69:dd:36:c7:11:06:56:1d:ec:c6:96:c9:a9:ef:8e:
ff:67:6a:8a:bf:75:03:f4:a7:7e:aa:e7:f2:1b:13:44:59:8a:
a8:01:0d:2f:24:02:a8:31:8e:9e:5f:6f:aa:d4:96:6d:2b:76:
a1:d7:b0:ab:e5:88:b5:3e:eb:ca:92:e3:59:44:cb:05:03:e0:
49:1a:1e:de:92:28:60:49:fe:11:15:41:df:b5:bb:9b:49:32:
da:77:db:77:97:fc:a4:14:0f:bd:74:bf:be:67:21:49:4e:a9:
df:e5:c7:4c:89:c6:3c:9a:2f:21:e5:82:72:3b:53:2c:de:d8:
19:9c:98:6a:9f:b0:92:eb:76:96:aa:59:2a:5e:d5:ed:2b:ee:
dc:75:a2:ad:e9:a5:83:c1:cf:1e:56:cb:c8:27:7a:6b:87:cb:
4c:15:31:55:ad:56:31:97:38:a7:8f:ea:53:d2:a9:02:4a:d8:
bc:2c:89:d4:eb:0b:d3:ee:14:c8:94:20:b5:21:61:86:1e:4f:
59:a0:7d:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76yP4h5bJdFzdNrtRXNPUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxYzk2NDkyYzAwNDA4YWQ1NGQ3MzBjMGViNjI5ZTNhMGI1
MGQ4MGYwHhcNMjUxMDE5MTAwMTU1WhcNMjUxMDIwMTAwMTU1WjAzMTEwLwYDVQQD
EyhmYzgxNzJmMTVkNjQzNmZjZGJmYjAzODY4ZmU4MjIyZjZiMmU4ZmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLR3dGFFVajOT32LHIq0yycmecxP
KEDofQ0y3fwY/l67CIn/u2CSPocUEEJGUQpbQpVFGoewQjmoa74h77JGoiZB31W/
XICYD0mAo4xqNVhl4m2f2DSXy9jqX007oBKCKrvFZ+X9nzVdBe3/26OHW+HKMZS2
BvZWfzlU9PpVzZa5ACaG5IhL7QVOdpn6irM47eT0DDQek0lpnn6R+eKO/Bm0aFQs
MMcpwNjKNx2KMPjY28+OXskitjsOlCWcxqPqNf9uT7MKgLl6Lv6jaNh3dXgCB50Y
PHf++y0V8l+ZGVXFYzEiGFEo1F36wdT/kSBZazoG7FdVnKvj7giTRcaPSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPyBcvFdZDb82/sDho/oIi9rLo/IMB8GA1UdIwQY
MBaAFEHJZJLABAitVNcwwOtinjoLUNgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8xOWQwOTAtMTAzYi00M2RiLWIwNzQt
YTRlMzdjODY3YjA5LzEvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8xOWQwOTAtMTAzYi00M2RiLWIwNzQtYTRlMzdjODY3YjA5
LzEvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArLYq9dOO
jglQHETG7eVsFe19m5oDiOULU7hyWXd4yRMCUL3eDMrfCg+m/xLti0dPiq13eVyV
J+oEad02xxEGVh3sxpbJqe+O/2dqir91A/Snfqrn8hsTRFmKqAENLyQCqDGOnl9v
qtSWbSt2odewq+WItT7rypLjWUTLBQPgSRoe3pIoYEn+ERVB37W7m0ky2nfbd5f8
pBQPvXS/vmchSU6p3+XHTInGPJovIeWCcjtTLN7YGZyYap+wkut2lqpZKl7V7Svu
3HWiremlg8HPHlbLyCd6a4fLTBUxVa1WMZc4p4/qU9KpAkrYvCyJ1OsL0+4UyJQg
tSFhhh5PWaB9gg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:35:12 2025 by rpki-client