Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
File: j_QxWS3s8oXDMtMGJTHA589hAsA.mft (raw, json)
Hash identifier: UFZpPCWzTiyAFg5UY6WhF4YmrJAow2mTDqkH2405peE=
Subject key identifier: 1E:FA:34:A1:8B:98:7D:A6:23:FE:6D:E3:E6:13:9C:82:26:82:D2:85
Authority key identifier: 8F:F4:31:59:2D:EC:F2:85:C3:32:D3:06:25:31:C0:E7:CF:61:02:C0
Certificate issuer: /CN=8ff431592decf285c332d3062531c0e7cf6102c0
Certificate serial: 0199FB0ED0E2158176143BC5CD3498BDD082
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 06:01:16 +0000
Manifest this update: Sun 19 Oct 2025 06:01:16 +0000
Manifest next update: Mon 20 Oct 2025 06:01:16 +0000
Files and hashes: 1: j_QxWS3s8oXDMtMGJTHA589hAsA.crl (hash: klyM78bZGR8+EfsiZw4mf96zg9WH+ga/03LjPGzLm5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:d0:e2:15:81:76:14:3b:c5:cd:34:98:bd:d0:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff431592decf285c332d3062531c0e7cf6102c0
Validity
Not Before: Oct 19 06:01:16 2025 GMT
Not After : Oct 20 06:01:16 2025 GMT
Subject: CN=1efa34a18b987da623fe6de3e6139c822682d285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c3:9e:f3:fe:6b:43:12:f8:1a:c6:60:be:16:
70:20:ac:30:53:f4:aa:2e:2c:ff:14:aa:59:28:d8:
d7:14:7a:a0:9d:a0:26:7f:0d:82:c3:83:7f:39:67:
a9:ad:f7:72:b1:21:bc:76:e1:d4:b4:d2:be:4e:a1:
4e:13:9f:27:5c:f4:d4:33:78:f2:54:96:25:4d:03:
f8:1a:da:e3:ed:d0:9e:b0:3b:7e:3a:e2:db:fe:25:
7d:cd:c9:2d:7e:e5:d4:bd:0c:05:c9:cd:0c:0f:f3:
bf:c3:ac:8f:60:ba:9a:f8:ad:d8:32:bb:fd:89:77:
ae:07:12:ae:09:1e:a6:08:d6:84:58:e2:e1:ab:33:
84:29:b0:24:2c:4a:ba:e0:d6:a4:d4:9b:e8:4f:d4:
bd:3d:5c:d2:b1:2f:38:fe:fc:af:d8:4c:38:df:1f:
4d:cb:9b:fa:7a:e5:22:75:66:2c:ba:0d:83:a6:1c:
1b:9c:24:12:ff:1b:ed:17:f2:ca:36:3d:37:9d:30:
f5:25:74:77:45:84:84:49:ac:ac:d6:13:8d:f9:14:
b4:44:f7:26:2d:9f:3c:23:9e:c0:aa:c4:ef:6b:c4:
5a:26:0f:cd:59:44:61:c6:c2:88:3b:fa:e1:6b:2d:
7b:ca:a6:48:14:52:a9:70:4d:cb:7f:8a:2a:43:11:
ef:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FA:34:A1:8B:98:7D:A6:23:FE:6D:E3:E6:13:9C:82:26:82:D2:85
X509v3 Authority Key Identifier:
keyid:8F:F4:31:59:2D:EC:F2:85:C3:32:D3:06:25:31:C0:E7:CF:61:02:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:a1:ae:eb:93:74:4a:a2:17:6c:a9:98:dc:27:e0:43:60:40:
1f:51:48:3f:ee:51:be:15:62:e9:4d:cd:c2:4f:f4:02:7d:58:
bb:df:ee:fb:d5:05:ac:3c:a2:ab:73:d3:0c:f4:3f:22:70:98:
fb:ca:25:af:2e:67:05:10:05:db:b3:1f:4f:af:e9:88:b0:ab:
fc:8b:70:82:fa:c5:a9:9d:ee:bd:41:01:fe:f4:15:d8:b5:69:
05:3e:82:35:ce:c1:80:94:1d:b1:62:c0:2c:83:0e:9f:1c:2b:
cb:60:e9:3b:a6:f4:30:fa:82:40:22:7c:90:99:f2:c3:98:9f:
92:7c:db:da:e9:89:be:ca:6b:66:5c:0d:d9:6b:9a:13:64:88:
bc:43:59:72:30:66:f2:3a:5d:7d:08:86:58:1c:98:08:0c:72:
29:5a:81:9c:12:f2:fd:22:5c:bc:b6:64:38:a7:aa:1e:31:a8:
c1:d7:c1:51:be:3a:fa:2c:ec:f6:85:d2:14:f2:db:d9:a1:71:
db:aa:9f:12:12:23:3d:09:b9:c5:86:bc:cc:5e:f0:55:0b:ac:
31:cc:99:52:87:21:49:09:ac:95:98:4a:3e:ba:e8:f3:51:14:
e7:58:bf:bf:14:25:cc:ee:c9:fd:25:56:5b:51:f1:b9:5a:0e:
1e:a9:08:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7DtDiFYF2FDvFzTSYvdCCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmZjQzMTU5MmRlY2YyODVjMzMyZDMwNjI1MzFjMGU3Y2Y2
MTAyYzAwHhcNMjUxMDE5MDYwMTE2WhcNMjUxMDIwMDYwMTE2WjAzMTEwLwYDVQQD
EygxZWZhMzRhMThiOTg3ZGE2MjNmZTZkZTNlNjEzOWM4MjI2ODJkMjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8Oe8/5rQxL4GsZgvhZwIKwwU/Sq
Liz/FKpZKNjXFHqgnaAmfw2Cw4N/OWeprfdysSG8duHUtNK+TqFOE58nXPTUM3jy
VJYlTQP4Gtrj7dCesDt+OuLb/iV9zcktfuXUvQwFyc0MD/O/w6yPYLqa+K3YMrv9
iXeuBxKuCR6mCNaEWOLhqzOEKbAkLEq64Nak1JvoT9S9PVzSsS84/vyv2Ew43x9N
y5v6euUidWYsug2DphwbnCQS/xvtF/LKNj03nTD1JXR3RYSESays1hON+RS0RPcm
LZ88I57AqsTva8RaJg/NWURhxsKIO/rhay17yqZIFFKpcE3Lf4oqQxHvEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB76NKGLmH2mI/5t4+YTnIImgtKFMB8GA1UdIwQY
MBaAFI/0MVkt7PKFwzLTBiUxwOfPYQLAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQval9ReFdTM3M4b1hETXRNR0pUSEE1ODloQXNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9iZTFmZWQtMmU4Ni00NGE5LThhNjct
NDRiNzhlNzg4ZGViLzEval9ReFdTM3M4b1hETXRNR0pUSEE1ODloQXNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9iZTFmZWQtMmU4Ni00NGE5LThhNjctNDRiNzhlNzg4ZGVi
LzEval9ReFdTM3M4b1hETXRNR0pUSEE1ODloQXNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABKGu65N0
SqIXbKmY3CfgQ2BAH1FIP+5RvhVi6U3Nwk/0An1Yu9/u+9UFrDyiq3PTDPQ/InCY
+8olry5nBRAF27MfT6/piLCr/ItwgvrFqZ3uvUEB/vQV2LVpBT6CNc7BgJQdsWLA
LIMOnxwry2DpO6b0MPqCQCJ8kJnyw5ifknzb2umJvsprZlwN2WuaE2SIvENZcjBm
8jpdfQiGWByYCAxyKVqBnBLy/SJcvLZkOKeqHjGowdfBUb46+izs9oXSFPLb2aFx
26qfEhIjPQm5xYa8zF7wVQusMcyZUochSQmslZhKPrro81EU51i/vxQlzO7J/SVW
W1HxuVoOHqkIbQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:43 2025 by rpki-client