Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
File: QucVYSpqaXFPXj8uTLxI_OhKb1I.mft (raw, json)
Hash identifier: JIMsk6+yNG70yzfVUbRZbKGV7lFxhHWXo9U2HPgT8Is=
Subject key identifier: A7:E7:A2:01:D0:EE:E7:30:B1:09:E8:EA:2E:5B:E7:0D:87:64:C5:31
Authority key identifier: 42:E7:15:61:2A:6A:69:71:4F:5E:3F:2E:4C:BC:48:FC:E8:4A:6F:52
Certificate issuer: /CN=42e715612a6a69714f5e3f2e4cbc48fce84a6f52
Certificate serial: 0198D4E0197C045224B8F99824A44A6D0FF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 03:01:52 +0000
Manifest this update: Sat 23 Aug 2025 03:01:52 +0000
Manifest next update: Sun 24 Aug 2025 03:01:52 +0000
Files and hashes: 1: QucVYSpqaXFPXj8uTLxI_OhKb1I.crl (hash: WoPqq0qNTPpFCtAEkyf/lLBrc7OEzOBxQeI0I6tT2AI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:19:7c:04:52:24:b8:f9:98:24:a4:4a:6d:0f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e715612a6a69714f5e3f2e4cbc48fce84a6f52
Validity
Not Before: Aug 23 03:01:52 2025 GMT
Not After : Aug 24 03:01:52 2025 GMT
Subject: CN=a7e7a201d0eee730b109e8ea2e5be70d8764c531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:69:36:c4:fa:61:dd:e5:4c:5d:ae:bd:6d:f8:
94:38:4b:ae:00:b0:04:3c:ad:33:e2:dd:2c:ec:ad:
8b:1c:a6:68:c6:9c:44:e6:b1:cf:3d:00:ef:d7:25:
d9:82:fc:5b:74:fa:72:56:87:12:8a:0e:bc:d8:24:
58:03:82:1a:d8:e9:fe:8c:d2:a1:6a:78:77:86:c4:
b2:00:de:c7:c3:3e:27:09:8f:11:c3:ee:89:b1:b3:
ee:97:8b:c5:40:92:12:e9:e4:6d:64:e1:71:6a:26:
87:23:44:eb:08:bb:f1:5f:03:93:ce:e7:e7:f8:92:
d4:11:f3:41:30:a6:be:93:76:df:82:61:9e:3e:d8:
54:90:94:f1:1b:c5:18:10:ce:0d:d0:d6:75:ca:d0:
a5:31:99:99:f9:15:74:18:ed:97:4c:b7:d3:4a:48:
b6:60:2f:2f:c9:b9:79:15:6d:4f:2e:76:ec:cd:83:
cc:1f:ae:a9:44:aa:77:03:ac:75:fa:99:09:bf:b1:
73:76:22:48:84:7b:b6:6d:98:ce:f5:4f:a0:72:42:
fc:7b:6d:92:6e:20:de:9c:06:32:c8:d6:8d:5b:e8:
fc:7e:46:03:01:43:12:56:8d:f2:84:b1:93:51:95:
b1:ec:60:9a:3d:ba:51:ae:28:6e:23:47:73:3f:8b:
98:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E7:A2:01:D0:EE:E7:30:B1:09:E8:EA:2E:5B:E7:0D:87:64:C5:31
X509v3 Authority Key Identifier:
keyid:42:E7:15:61:2A:6A:69:71:4F:5E:3F:2E:4C:BC:48:FC:E8:4A:6F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:8d:09:6e:50:d5:71:8d:e4:02:96:1e:8d:2d:6f:72:ca:d6:
8e:2d:8c:83:fa:e0:fe:df:73:8f:45:2d:f5:9f:b1:8a:34:e0:
2b:5e:c1:d4:e4:02:09:f3:97:76:4b:da:97:e9:ef:55:be:16:
40:23:12:a4:07:6b:0d:5c:fe:af:4d:34:1b:81:d7:fc:92:c5:
48:29:25:2e:44:30:31:d6:2c:77:54:15:24:f2:fe:84:ba:b4:
9f:59:f9:b9:c8:47:3c:cd:91:49:42:3f:ce:3b:d3:bf:3a:88:
41:44:5d:57:e9:20:0e:25:3e:40:04:15:d3:be:5c:07:b8:ef:
63:3e:00:35:41:f6:27:83:05:0c:5e:67:d6:5c:46:00:ee:83:
90:70:d2:0e:e4:5a:ae:aa:31:16:93:5a:25:f8:82:2b:25:11:
02:90:f1:6c:26:3f:ee:bc:33:7b:ad:23:c1:40:32:87:22:af:
41:18:4a:50:b9:a4:83:83:8b:91:2e:a1:b2:56:6b:ca:42:ae:
eb:d6:6e:b2:98:9c:58:d5:f2:a9:58:10:ce:ca:e6:89:44:7e:
78:d9:16:cb:0f:49:7c:78:7b:be:2d:61:f8:a3:2e:39:fd:36:
c1:71:b7:36:f6:74:3c:95:6b:92:9f:16:f7:3b:c0:b2:50:48:
8a:93:9d:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4Bl8BFIkuPmYJKRKbQ/yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyZTcxNTYxMmE2YTY5NzE0ZjVlM2YyZTRjYmM0OGZjZTg0
YTZmNTIwHhcNMjUwODIzMDMwMTUyWhcNMjUwODI0MDMwMTUyWjAzMTEwLwYDVQQD
EyhhN2U3YTIwMWQwZWVlNzMwYjEwOWU4ZWEyZTViZTcwZDg3NjRjNTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymk2xPph3eVMXa69bfiUOEuuALAE
PK0z4t0s7K2LHKZoxpxE5rHPPQDv1yXZgvxbdPpyVocSig682CRYA4Ia2On+jNKh
anh3hsSyAN7Hwz4nCY8Rw+6JsbPul4vFQJIS6eRtZOFxaiaHI0TrCLvxXwOTzufn
+JLUEfNBMKa+k3bfgmGePthUkJTxG8UYEM4N0NZ1ytClMZmZ+RV0GO2XTLfTSki2
YC8vybl5FW1PLnbszYPMH66pRKp3A6x1+pkJv7FzdiJIhHu2bZjO9U+gckL8e22S
biDenAYyyNaNW+j8fkYDAUMSVo3yhLGTUZWx7GCaPbpRrihuI0dzP4uYuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKfnogHQ7ucwsQno6i5b5w2HZMUxMB8GA1UdIwQY
MBaAFELnFWEqamlxT14/Lky8SPzoSm9SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXVjVllTcHFhWEZQWGo4dVRMeElfT2hLYjFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy82ZmI5YzMtNmM5Yy00MzllLThjY2Et
ZDk5YTIxOThhNjhkLzEvUXVjVllTcHFhWEZQWGo4dVRMeElfT2hLYjFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy82ZmI5YzMtNmM5Yy00MzllLThjY2EtZDk5YTIxOThhNjhk
LzEvUXVjVllTcHFhWEZQWGo4dVRMeElfT2hLYjFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVI0JblDV
cY3kApYejS1vcsrWji2Mg/rg/t9zj0Ut9Z+xijTgK17B1OQCCfOXdkval+nvVb4W
QCMSpAdrDVz+r000G4HX/JLFSCklLkQwMdYsd1QVJPL+hLq0n1n5uchHPM2RSUI/
zjvTvzqIQURdV+kgDiU+QAQV075cB7jvYz4ANUH2J4MFDF5n1lxGAO6DkHDSDuRa
rqoxFpNaJfiCKyURApDxbCY/7rwze60jwUAyhyKvQRhKULmkg4OLkS6hslZrykKu
69ZuspicWNXyqVgQzsrmiUR+eNkWyw9JfHh7vi1h+KMuOf02wXG3NvZ0PJVrkp8W
9zvAslBIipOdMg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:23 2025 by rpki-client