Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft
File: tqNouOZvnhWmEOwY1rFHtrokzuc.mft (raw, json)
Hash identifier: RUSX0bUtl0+2k/msqwH1IzQfwMWYrZQNKjT6bL8/I3w=
Subject key identifier: 77:0D:EC:4C:FE:66:E0:F9:B1:0B:69:B2:F1:A9:8C:60:8B:A6:F6:A4
Authority key identifier: B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7
Certificate issuer: /CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7
Certificate serial: 0199228C7619B31B9B46FD8D7A71753E2A0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft
Manifest number: FE
Signing time: Sun 07 Sep 2025 05:00:54 +0000
Manifest this update: Sun 07 Sep 2025 05:00:54 +0000
Manifest next update: Mon 08 Sep 2025 05:00:54 +0000
Files and hashes: 1: 76JdDApMBw2HG_-2b61i99W245Q.roa (hash: NIJoLQsfvrL/qonBB3ZwrtyRIgvdYG24/geuGhv0roI=)
2: tqNouOZvnhWmEOwY1rFHtrokzuc.crl (hash: +OKT3GcJ3KauoJDVGNrUKUkSOW+h7wT/g9CqL7XYd/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:76:19:b3:1b:9b:46:fd:8d:7a:71:75:3e:2a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7
Validity
Not Before: Sep 7 05:00:54 2025 GMT
Not After : Sep 8 05:00:54 2025 GMT
Subject: CN=770dec4cfe66e0f9b10b69b2f1a98c608ba6f6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:08:2a:fd:04:b3:ab:f6:ee:c2:cb:31:25:de:
2c:cd:16:10:0d:58:08:b5:df:ca:41:26:c9:1e:4d:
a8:28:20:40:ef:ff:75:df:4b:35:b2:e4:72:29:d6:
fe:4c:75:9c:17:89:17:29:57:62:2d:0f:b8:6e:3a:
f8:de:e9:ba:b3:ed:e4:f1:8e:51:29:e4:37:63:28:
62:42:fe:66:1d:97:d2:f1:49:6d:7f:eb:23:2e:99:
a0:32:f6:65:ae:06:81:0f:9c:16:d1:44:21:fa:7c:
a4:81:73:9b:49:cf:3a:eb:fb:1c:2b:ce:e9:c2:14:
ed:fa:c4:7e:b4:1f:a7:75:9a:28:0c:b9:ca:0d:87:
62:05:b7:e5:76:41:24:e3:57:22:17:0d:6c:81:65:
d1:d0:69:21:5a:75:f6:e0:06:25:21:df:15:6e:c5:
a7:9a:8f:bc:cc:d0:c9:17:ee:14:e2:41:bf:21:74:
38:a4:f8:79:75:c1:da:34:60:dc:fd:0a:b1:69:da:
66:a5:6a:a5:d9:12:ab:da:55:21:96:74:7c:5a:7e:
6a:60:0f:8a:b6:4f:45:72:36:0a:55:e2:e3:01:6b:
5c:eb:7e:ab:34:9d:e1:0c:db:ee:05:bb:6c:84:ff:
7f:f7:f5:64:f6:a1:7c:4d:8a:6c:02:ad:03:58:a6:
13:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0D:EC:4C:FE:66:E0:F9:B1:0B:69:B2:F1:A9:8C:60:8B:A6:F6:A4
X509v3 Authority Key Identifier:
keyid:B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:52:50:fe:02:38:56:8b:3b:b8:b6:b6:59:f8:df:7b:d9:98:
64:3d:e1:b0:0a:d0:65:0e:62:8f:4f:ba:ce:32:17:c0:a0:65:
e4:94:e4:14:c9:4e:9f:d2:ce:6f:2a:05:ec:da:d7:38:90:9b:
ac:d2:f6:a7:95:05:b1:e0:48:01:97:6c:6c:21:83:ae:04:7b:
0f:4d:85:8a:4a:16:1d:1f:b5:65:56:ba:a3:7e:a4:bd:11:1e:
74:de:09:a1:71:fa:e4:03:37:65:02:ff:30:e4:e8:77:87:2f:
2c:71:ee:a6:8b:8f:7b:a7:2b:29:fc:22:80:b4:17:ff:2f:59:
7d:f5:e9:c1:3b:9f:56:72:23:bc:26:11:68:22:02:da:80:af:
9e:b9:16:76:cf:e7:55:a2:3c:ff:79:90:a3:87:d4:0a:02:40:
ef:9a:03:ab:cd:19:0c:ae:c5:9a:a1:5c:de:c4:d2:86:18:3e:
48:98:aa:82:f1:8a:a9:1c:f9:55:43:7a:48:f4:19:b6:4f:6f:
72:ce:37:f9:a8:55:b4:57:a3:56:7b:a3:eb:7c:70:ea:6d:eb:
df:e7:38:88:bd:6c:8e:72:20:08:e0:9c:d6:34:dc:77:18:0c:
98:cb:8e:c5:f2:e8:1b:18:04:a0:f8:05:a7:80:8e:11:23:02:
17:1c:16:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijHYZsxubRv2NenF1PioKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2YTM2OGI4ZTY2ZjllMTVhNjEwZWMxOGQ2YjE0N2I2YmEy
NGNlZTcwHhcNMjUwOTA3MDUwMDU0WhcNMjUwOTA4MDUwMDU0WjAzMTEwLwYDVQQD
Eyg3NzBkZWM0Y2ZlNjZlMGY5YjEwYjY5YjJmMWE5OGM2MDhiYTZmNmE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQgq/QSzq/buwssxJd4szRYQDVgI
td/KQSbJHk2oKCBA7/9130s1suRyKdb+THWcF4kXKVdiLQ+4bjr43um6s+3k8Y5R
KeQ3YyhiQv5mHZfS8Ultf+sjLpmgMvZlrgaBD5wW0UQh+nykgXObSc866/scK87p
whTt+sR+tB+ndZooDLnKDYdiBbfldkEk41ciFw1sgWXR0GkhWnX24AYlId8VbsWn
mo+8zNDJF+4U4kG/IXQ4pPh5dcHaNGDc/QqxadpmpWql2RKr2lUhlnR8Wn5qYA+K
tk9FcjYKVeLjAWtc636rNJ3hDNvuBbtshP9/9/Vk9qF8TYpsAq0DWKYTqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHcN7Ez+ZuD5sQtpsvGpjGCLpvakMB8GA1UdIwQY
MBaAFLajaLjmb54VphDsGNaxR7a6JM7nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9iYTE4NjgtYWI3Ni00YmUxLWJjNTMt
NzQ4MGQ4YTJmMWJlLzEvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9iYTE4NjgtYWI3Ni00YmUxLWJjNTMtNzQ4MGQ4YTJmMWJl
LzEvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARlJQ/gI4
Vos7uLa2Wfjfe9mYZD3hsArQZQ5ij0+6zjIXwKBl5JTkFMlOn9LObyoF7NrXOJCb
rNL2p5UFseBIAZdsbCGDrgR7D02FikoWHR+1ZVa6o36kvREedN4JoXH65AM3ZQL/
MOTod4cvLHHupouPe6crKfwigLQX/y9ZffXpwTufVnIjvCYRaCIC2oCvnrkWds/n
VaI8/3mQo4fUCgJA75oDq80ZDK7FmqFc3sTShhg+SJiqgvGKqRz5VUN6SPQZtk9v
cs43+ahVtFejVnuj63xw6m3r3+c4iL1sjnIgCOCc1jTcdxgMmMuOxfLoGxgEoPgF
p4COESMCFxwW8A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:39 2025 by rpki-client