Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json)
Hash identifier: sFUGb1/ZyAZ8nG8+aj1gTpgMDO3s02WO6XZYsMOWlR8=
Subject key identifier: 63:8A:AE:DC:A9:17:8C:EB:FD:3B:98:29:24:5C:D8:87:30:FD:D7:EB
Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Certificate serial: 0199221E2F1A8B97423CA57BCBF884964725
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 03:00:27 +0000
Manifest this update: Sun 07 Sep 2025 03:00:27 +0000
Manifest next update: Mon 08 Sep 2025 03:00:27 +0000
Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: 2gGIWq6JghEk6e0Fnu7LcV4Fd2DMRrjJWr1EjidJVPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:2f:1a:8b:97:42:3c:a5:7b:cb:f8:84:96:47:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Validity
Not Before: Sep 7 03:00:27 2025 GMT
Not After : Sep 8 03:00:27 2025 GMT
Subject: CN=638aaedca9178cebfd3b9829245cd88730fdd7eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c7:ea:03:83:00:57:55:fc:12:fc:1a:c1:47:
c3:1e:91:9a:44:0b:bc:08:f6:fe:23:c1:bd:3f:2b:
04:6e:83:d1:d3:de:68:87:92:36:24:34:f9:cb:4a:
a8:cc:69:0f:25:85:8a:07:0b:c0:c9:4d:cb:7b:c4:
ff:cd:83:95:4a:fd:62:0a:a3:cf:c8:ac:e8:89:ae:
a6:e0:02:f7:b6:7e:78:5a:c4:84:8a:0c:45:dd:de:
a1:4d:5a:41:66:f8:7f:55:27:70:e3:44:40:80:55:
fd:0f:92:9e:1b:a4:d3:e5:25:87:3f:e7:cc:80:78:
18:ae:2e:92:9e:4a:e1:b4:9d:09:ff:b7:bb:fb:00:
9a:59:97:ad:77:97:2b:56:de:aa:66:2f:70:58:15:
17:6c:d5:78:34:db:ce:32:e6:02:2f:5c:8c:6f:f2:
bd:a5:da:d7:04:b5:99:7a:fe:25:8f:4d:55:19:f3:
8f:8b:6a:f1:a5:15:a8:6b:1a:ea:57:4e:ad:fd:51:
02:09:3c:41:06:a5:80:03:28:e6:05:b9:4a:34:d3:
51:c1:16:fa:a3:23:56:5a:45:48:0e:7e:df:9c:b3:
9c:fa:f2:b1:e7:74:fd:9d:e4:a4:f4:ea:bc:b7:6d:
84:f1:bd:be:48:08:fb:63:28:5d:89:ad:03:3e:ad:
cd:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8A:AE:DC:A9:17:8C:EB:FD:3B:98:29:24:5C:D8:87:30:FD:D7:EB
X509v3 Authority Key Identifier:
keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:24:a4:e4:c6:4c:12:5b:88:21:6a:93:01:d6:95:c3:b4:6c:
08:15:22:35:36:6b:6a:59:b3:07:08:54:80:6e:31:36:46:2c:
43:d7:fa:85:d0:db:0a:86:58:28:26:e6:e2:3f:0d:a7:4c:96:
06:52:2f:98:9a:f1:ee:79:81:2c:ee:9e:06:4a:a9:3f:ab:6e:
76:6d:b9:5f:bc:74:6c:ed:9b:07:f2:a8:26:d8:86:e4:28:b7:
1c:30:49:bf:29:48:52:cb:b4:78:cd:0c:f3:74:27:a4:7d:7c:
55:e5:f6:be:4f:82:90:3d:36:9b:ab:2c:78:60:59:7d:41:2d:
ec:46:99:6d:00:85:df:44:6c:8d:3e:a0:a6:2c:bb:d4:17:61:
f2:b4:82:31:f0:3d:02:89:31:51:15:2a:08:c1:42:28:9b:78:
73:36:a5:38:8d:18:f0:f7:73:bd:7d:a9:ee:6b:f8:b3:6e:ec:
f7:bc:f4:15:8c:cd:26:17:73:35:1d:e6:ea:b5:7e:22:52:6d:
63:f6:5a:f0:2f:a8:04:59:b5:7b:57:cc:91:4f:0f:fd:df:91:
e7:14:a2:90:06:c1:48:75:b1:f8:20:37:56:02:8f:d4:ef:e3:
b3:ea:b6:57:26:b1:79:8b:ed:63:35:db:45:63:e8:07:06:19:
86:52:fb:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHi8ai5dCPKV7y/iElkclMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhZjM1MDYyMWNjMDFlOGExZWQzNzI4MWRmMzJiMDk3MWNi
ZGU1NTcwHhcNMjUwOTA3MDMwMDI3WhcNMjUwOTA4MDMwMDI3WjAzMTEwLwYDVQQD
Eyg2MzhhYWVkY2E5MTc4Y2ViZmQzYjk4MjkyNDVjZDg4NzMwZmRkN2ViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA38fqA4MAV1X8EvwawUfDHpGaRAu8
CPb+I8G9PysEboPR095oh5I2JDT5y0qozGkPJYWKBwvAyU3Le8T/zYOVSv1iCqPP
yKzoia6m4AL3tn54WsSEigxF3d6hTVpBZvh/VSdw40RAgFX9D5KeG6TT5SWHP+fM
gHgYri6SnkrhtJ0J/7e7+wCaWZetd5crVt6qZi9wWBUXbNV4NNvOMuYCL1yMb/K9
pdrXBLWZev4lj01VGfOPi2rxpRWoaxrqV06t/VECCTxBBqWAAyjmBblKNNNRwRb6
oyNWWkVIDn7fnLOc+vKx53T9neSk9Oq8t22E8b2+SAj7Yyhdia0DPq3N/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGOKrtypF4zr/TuYKSRc2Icw/dfrMB8GA1UdIwQY
MBaAFKrzUGIcwB6KHtNygd8ysJccveVXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTkt
NzVhOGIwOTc0ZTIwLzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTktNzVhOGIwOTc0ZTIw
LzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASySk5MZM
EluIIWqTAdaVw7RsCBUiNTZralmzBwhUgG4xNkYsQ9f6hdDbCoZYKCbm4j8Np0yW
BlIvmJrx7nmBLO6eBkqpP6tudm25X7x0bO2bB/KoJtiG5Ci3HDBJvylIUsu0eM0M
83QnpH18VeX2vk+CkD02m6sseGBZfUEt7EaZbQCF30RsjT6gpiy71Bdh8rSCMfA9
AokxURUqCMFCKJt4czalOI0Y8PdzvX2p7mv4s27s97z0FYzNJhdzNR3m6rV+IlJt
Y/Za8C+oBFm1e1fMkU8P/d+R5xSikAbBSHWx+CA3VgKP1O/js+q2VyaxeYvtYzXb
RWPoBwYZhlL7OQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:44 2025 by rpki-client