Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
File: 0Q44sLejPvOhbhVDNAKYfW1njaE.mft (raw, json)
Hash identifier: nZWZmkjcWk0hslT1FLtUTdHcJ4mPZHYksyRB+F20wsw=
Subject key identifier: E1:76:F4:61:E6:96:A0:7E:97:A7:4C:CD:4C:3E:61:F5:77:84:FC:9D
Authority key identifier: D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
Certificate issuer: /CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Certificate serial: 019844ACD17339E0740FF87E3BD75562DA3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
Manifest number: 12A9
Signing time: Sat 26 Jul 2025 03:00:33 +0000
Manifest this update: Sat 26 Jul 2025 03:00:33 +0000
Manifest next update: Sun 27 Jul 2025 03:00:33 +0000
Files and hashes: 1: 0Q44sLejPvOhbhVDNAKYfW1njaE.crl (hash: 4QXmaz5bXRj+DLW590h9JfnyvkxSozCX/PpTgDNZ1GI=)
2: pTXcU1-027t2C2Vu9gFY335XMJc.roa (hash: VazQFR0+HiS2IaElmJ/i9QSFb0To3uFvpZ1ELlNt0rw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:ac:d1:73:39:e0:74:0f:f8:7e:3b:d7:55:62:da:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Validity
Not Before: Jul 26 03:00:33 2025 GMT
Not After : Jul 27 03:00:33 2025 GMT
Subject: CN=e176f461e696a07e97a74ccd4c3e61f57784fc9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b7:e3:c0:13:0b:13:2d:71:6e:45:fd:b6:b2:
ae:66:09:f4:2c:6b:90:33:ff:85:1b:41:0b:86:42:
ad:2d:71:03:be:0c:bc:4f:6b:c9:d4:b9:70:8c:0b:
66:6b:df:26:a9:fa:31:b5:38:25:c2:0a:80:41:fc:
6e:b9:2a:06:0a:c2:8a:04:17:a7:6f:05:06:bd:67:
81:d3:b8:ba:17:af:3a:72:13:77:b9:06:32:be:35:
b4:d0:57:d5:c9:b9:e2:51:e6:e9:45:4c:40:78:71:
58:82:87:df:69:93:30:83:81:b3:46:a4:03:56:b9:
62:78:b2:f4:3d:9b:74:de:a9:fe:09:cc:d8:b3:39:
c1:12:1a:36:ed:fa:44:e5:60:33:a1:20:2b:ce:55:
33:d8:97:4a:cc:12:7a:a9:c2:fd:95:16:c7:2e:29:
d5:3c:d8:5c:78:5c:8f:c4:8b:16:bb:15:a0:84:bc:
9b:c2:fa:92:ab:e4:d0:f9:59:7b:64:59:bc:59:d2:
d6:18:79:a1:80:80:38:63:90:2c:b7:ed:ce:94:18:
fd:51:87:bd:af:25:c1:ff:ce:6d:5b:be:d9:fb:e7:
36:b5:03:82:e5:6d:62:eb:91:c5:a2:e6:5b:86:09:
66:39:40:3a:35:af:2e:85:17:5d:eb:82:3b:04:75:
37:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:76:F4:61:E6:96:A0:7E:97:A7:4C:CD:4C:3E:61:F5:77:84:FC:9D
X509v3 Authority Key Identifier:
keyid:D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:cb:77:df:5e:07:10:d5:19:9d:34:fe:54:b2:da:eb:3e:a0:
e5:58:32:20:28:98:8f:e6:f7:19:02:7c:c6:07:47:3f:f7:00:
c6:1c:e3:57:bf:07:87:7f:33:0a:b4:90:4b:35:12:5d:15:b7:
04:f1:42:bb:0a:cd:d5:cc:c8:2e:ed:6a:43:6c:64:3c:aa:fb:
0d:56:b6:ce:a9:c0:92:56:50:9c:9f:c4:88:64:b0:e9:b7:d8:
2b:d9:2c:74:b4:ec:48:49:b3:ca:47:f5:18:03:87:8d:e5:0a:
6a:fa:fa:8d:bb:af:cc:c0:e9:23:ee:6d:28:03:ab:0f:90:d9:
2b:17:b0:3f:a2:b6:9b:78:01:5f:20:34:c9:26:79:1f:0e:82:
d8:b7:6e:30:da:df:71:ca:fe:e5:15:21:7f:4e:4f:5f:19:b9:
ea:5b:d4:d8:03:bd:49:c3:76:86:0d:4b:a1:57:c7:0c:c7:48:
6e:3c:2f:3c:94:83:4e:aa:7c:60:e5:62:af:de:ec:d4:06:7e:
0a:fa:51:0c:90:26:81:09:8b:6a:b5:b8:46:e4:8a:7e:32:6d:
d6:26:78:3e:27:bc:e1:55:97:56:76:0a:76:ab:c2:5d:14:9c:
44:bb:92:59:c2:71:e7:11:a3:8c:be:cc:14:74:d6:9f:3b:4f:
83:24:d6:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhErNFzOeB0D/h+O9dVYto9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxMGUzOGIwYjdhMzNlZjNhMTZlMTU0MzM0MDI5ODdkNmQ2
NzhkYTEwHhcNMjUwNzI2MDMwMDMzWhcNMjUwNzI3MDMwMDMzWjAzMTEwLwYDVQQD
EyhlMTc2ZjQ2MWU2OTZhMDdlOTdhNzRjY2Q0YzNlNjFmNTc3ODRmYzlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrfjwBMLEy1xbkX9trKuZgn0LGuQ
M/+FG0ELhkKtLXEDvgy8T2vJ1LlwjAtma98mqfoxtTglwgqAQfxuuSoGCsKKBBen
bwUGvWeB07i6F686chN3uQYyvjW00FfVybniUebpRUxAeHFYgoffaZMwg4GzRqQD
VrlieLL0PZt03qn+CczYsznBEho27fpE5WAzoSArzlUz2JdKzBJ6qcL9lRbHLinV
PNhceFyPxIsWuxWghLybwvqSq+TQ+Vl7ZFm8WdLWGHmhgIA4Y5Ast+3OlBj9UYe9
ryXB/85tW77Z++c2tQOC5W1i65HFouZbhglmOUA6Na8uhRdd64I7BHU3+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOF29GHmlqB+l6dMzUw+YfV3hPydMB8GA1UdIwQY
MBaAFNEOOLC3oz7zoW4VQzQCmH1tZ42hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy8zZmEwOWEtZTg3NC00ZjM0LWJmNDUt
MmMwZWRhNzA2NjZhLzEvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy8zZmEwOWEtZTg3NC00ZjM0LWJmNDUtMmMwZWRhNzA2NjZh
LzEvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmMt3314H
ENUZnTT+VLLa6z6g5VgyICiYj+b3GQJ8xgdHP/cAxhzjV78Hh38zCrSQSzUSXRW3
BPFCuwrN1czILu1qQ2xkPKr7DVa2zqnAklZQnJ/EiGSw6bfYK9ksdLTsSEmzykf1
GAOHjeUKavr6jbuvzMDpI+5tKAOrD5DZKxewP6K2m3gBXyA0ySZ5Hw6C2LduMNrf
ccr+5RUhf05PXxm56lvU2AO9ScN2hg1LoVfHDMdIbjwvPJSDTqp8YOVir97s1AZ+
CvpRDJAmgQmLarW4RuSKfjJt1iZ4Pie84VWXVnYKdqvCXRScRLuSWcJx5xGjjL7M
FHTWnztPgyTWEA==
-----END CERTIFICATE-----
Generated at Sat Jul 26 11:52:04 2025 by rpki-client