Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: li2q1qb9AdWkYG5Dft9PHswiJl7g4NhhZrbyyw1nAD0=
Subject key identifier: 81:07:61:56:E3:24:6E:F6:9B:80:CE:22:36:78:94:2D:FC:14:25:9C
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 0199FE7D9B3F313385D057C3C2150C342ACE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 13E2
Signing time: Sun 19 Oct 2025 22:01:08 +0000
Manifest this update: Sun 19 Oct 2025 22:01:08 +0000
Manifest next update: Mon 20 Oct 2025 22:01:08 +0000
Files and hashes: 1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: I6KQx+lFD3sexew0D0MQDrhoPr4qNUGrj0L3XxsuQ3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:9b:3f:31:33:85:d0:57:c3:c2:15:0c:34:2a:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Oct 19 22:01:08 2025 GMT
Not After : Oct 20 22:01:08 2025 GMT
Subject: CN=81076156e3246ef69b80ce223678942dfc14259c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:76:b2:d8:3d:d6:6b:57:f0:fb:91:d5:69:9d:
55:bc:9c:ef:b3:0b:84:33:10:fd:3c:d6:89:93:eb:
86:50:5a:ac:22:13:cc:f9:13:0c:cd:43:2d:45:83:
75:ec:fe:f3:c0:e1:d0:3a:2c:99:6e:87:b9:f7:b0:
fa:60:48:0b:03:4d:12:16:6a:1b:e0:38:bb:dc:6b:
28:68:9b:40:92:95:61:eb:78:d5:c4:cf:ab:5b:55:
1b:74:91:a7:11:f2:cc:67:eb:bb:8f:fa:98:87:7c:
2d:04:1b:6b:23:5a:ec:27:0e:a6:ca:99:fc:e4:d6:
54:32:2f:d8:db:3e:4d:ac:3f:35:b2:e9:79:24:14:
68:98:04:7b:44:02:89:ce:1f:e8:a4:a5:b4:67:0f:
b2:15:5c:58:2a:b9:43:44:29:9a:2d:8b:80:a1:a0:
61:ae:4e:28:cc:3b:0b:89:59:24:e9:47:41:36:da:
f0:f8:93:fa:d6:68:8a:58:ec:07:05:a5:11:f4:37:
1f:93:75:94:5b:12:90:6a:56:82:40:e6:02:bc:9e:
1e:a5:5c:c3:66:48:70:23:af:4f:04:1a:c7:b9:04:
52:03:66:52:0c:4c:de:2d:4b:75:20:7b:c0:46:bb:
9b:11:f5:9c:a0:3e:65:cf:3e:fb:f3:b8:a5:5b:8c:
94:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:07:61:56:E3:24:6E:F6:9B:80:CE:22:36:78:94:2D:FC:14:25:9C
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:33:0b:04:d2:80:13:e1:2a:cc:4e:ca:36:b1:20:f2:9d:68:
63:05:75:0e:46:56:ab:3b:1a:5d:85:6a:41:5c:af:f6:c7:22:
cc:a0:15:79:0e:8c:f2:1a:08:14:cf:68:d2:59:c7:a8:73:89:
84:6a:f3:2f:02:b8:26:f8:87:35:92:03:28:43:17:fe:dc:bb:
22:87:f0:14:2e:9e:27:5a:d3:55:be:17:9e:0e:be:ab:77:87:
50:80:f2:51:48:ab:69:21:de:22:04:e0:f4:e5:5a:7e:8e:a0:
ff:ed:90:0e:28:a0:3a:d1:27:02:82:a0:86:d2:42:ab:11:42:
80:a7:f6:d3:ff:34:74:89:35:5b:f9:5a:24:5e:1b:20:dc:d0:
bf:19:0c:e6:51:d2:55:2b:e8:3b:14:93:44:c8:d0:f8:ba:87:
e7:a0:ea:5d:f5:2c:2d:c5:af:28:20:9f:92:65:a4:4a:21:6e:
d4:87:f8:ae:90:66:d5:e7:c3:17:2a:a7:af:21:85:7c:6c:bc:
7b:ac:d7:e3:87:e3:78:02:80:65:b0:73:e8:87:73:62:dc:ba:
06:8d:08:0c:f6:79:99:0f:3d:6a:18:fa:f9:a6:93:c6:7d:de:
d9:1d:bb:b7:ad:d1:a1:69:f8:0e:f9:d6:a8:8d:28:da:ed:f3:
b5:89:51:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+fZs/MTOF0FfDwhUMNCrOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwN2QyZGMxMGMwMmY1ZWMyNGY2OTBmOWY2NjA1NTU0ODY1
NjJlNTkwHhcNMjUxMDE5MjIwMTA4WhcNMjUxMDIwMjIwMTA4WjAzMTEwLwYDVQQD
Eyg4MTA3NjE1NmUzMjQ2ZWY2OWI4MGNlMjIzNjc4OTQyZGZjMTQyNTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXay2D3Wa1fw+5HVaZ1VvJzvswuE
MxD9PNaJk+uGUFqsIhPM+RMMzUMtRYN17P7zwOHQOiyZboe597D6YEgLA00SFmob
4Di73GsoaJtAkpVh63jVxM+rW1UbdJGnEfLMZ+u7j/qYh3wtBBtrI1rsJw6mypn8
5NZUMi/Y2z5NrD81sul5JBRomAR7RAKJzh/opKW0Zw+yFVxYKrlDRCmaLYuAoaBh
rk4ozDsLiVkk6UdBNtrw+JP61miKWOwHBaUR9Dcfk3WUWxKQalaCQOYCvJ4epVzD
ZkhwI69PBBrHuQRSA2ZSDEzeLUt1IHvARrubEfWcoD5lzz7787ilW4yUKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIEHYVbjJG72m4DOIjZ4lC38FCWcMB8GA1UdIwQY
MBaAFEB9LcEMAvXsJPaQ+fZgVVSGVi5ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9hNmZjYzktZDI1MS00MmRjLWFkMDIt
OTY3YzIyODVlYTYyLzEvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC9hNmZjYzktZDI1MS00MmRjLWFkMDItOTY3YzIyODVlYTYy
LzEvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoDMLBNKA
E+EqzE7KNrEg8p1oYwV1DkZWqzsaXYVqQVyv9scizKAVeQ6M8hoIFM9o0lnHqHOJ
hGrzLwK4JviHNZIDKEMX/ty7IofwFC6eJ1rTVb4Xng6+q3eHUIDyUUiraSHeIgTg
9OVafo6g/+2QDiigOtEnAoKghtJCqxFCgKf20/80dIk1W/laJF4bINzQvxkM5lHS
VSvoOxSTRMjQ+LqH56DqXfUsLcWvKCCfkmWkSiFu1If4rpBm1efDFyqnryGFfGy8
e6zX44fjeAKAZbBz6IdzYty6Bo0IDPZ5mQ89ahj6+aaTxn3e2R27t63RoWn4DvnW
qI0o2u3ztYlRMw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:54:42 2025 by rpki-client