Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
File: Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft (raw, json)
Hash identifier: 7rpVUc/Xod+I0kQCU34+1HeicYvxBYHGlhK8Hb6Ts0Y=
Subject key identifier: 21:36:96:CE:B4:DD:49:4E:6F:54:4A:D2:91:99:40:23:D5:85:89:B2
Authority key identifier: 43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD
Certificate issuer: /CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd
Certificate serial: 019A71B91BA1502466FFB1F1D339D119871F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
Manifest number: 0733
Signing time: Tue 11 Nov 2025 07:02:27 +0000
Manifest this update: Tue 11 Nov 2025 07:02:27 +0000
Manifest next update: Wed 12 Nov 2025 07:02:27 +0000
Files and hashes: 1: Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl (hash: xvgnp0WFUkesPhlPhH1ERKSLFcYtJI7IsLyaMV2v+Rg=)
2: VMxe0uGWpSo7MC38AuPyARm4ELw.roa (hash: tdke4bTnyhBCQowtj7hvI4mzPoyXG8N51jhjgyuQaj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:1b:a1:50:24:66:ff:b1:f1:d3:39:d1:19:87:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd
Validity
Not Before: Nov 11 07:02:27 2025 GMT
Not After : Nov 12 07:02:27 2025 GMT
Subject: CN=213696ceb4dd494e6f544ad291994023d58589b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:09:46:e4:c0:fb:a6:bf:7d:04:34:a3:84:36:
b7:e2:9c:2d:ac:ab:7e:a4:42:68:88:1e:5b:e6:51:
9c:41:54:43:83:8c:99:7b:f0:84:e1:ad:d3:0a:4e:
83:78:f3:16:ce:a9:b4:12:e8:45:c6:a5:63:e1:dd:
87:6b:5d:08:e9:22:cd:5b:47:db:eb:d1:be:b3:a9:
cf:09:91:43:96:55:45:9b:ce:bc:61:5a:17:89:42:
7d:a3:c9:de:7e:fa:2f:17:be:d6:67:77:ed:f2:b8:
7e:eb:41:1e:fd:7a:e5:41:b8:71:cc:3b:5b:81:1e:
c2:3e:6e:2e:14:f2:02:46:cc:2b:c5:41:69:66:76:
e3:c8:2e:56:7f:2a:aa:21:47:59:5c:50:35:54:85:
6a:c9:8b:4d:1a:ab:1d:ac:65:da:40:ae:8d:63:4f:
9e:46:b7:78:38:7a:ab:c1:23:d7:55:f4:a1:ac:c5:
50:91:ec:c9:77:55:3a:b2:47:73:35:8f:d2:c7:8c:
78:5a:eb:43:84:be:f0:1d:ad:8b:5c:c6:07:94:12:
c6:6e:30:1e:98:80:4c:2a:1a:57:04:cd:3d:4c:fe:
e6:15:4a:ca:38:0e:68:3c:1a:49:55:9b:64:23:b3:
55:e7:88:23:bc:e0:1b:b8:ac:41:f0:59:fe:ca:78:
07:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:36:96:CE:B4:DD:49:4E:6F:54:4A:D2:91:99:40:23:D5:85:89:B2
X509v3 Authority Key Identifier:
keyid:43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:09:f8:4b:71:41:f1:10:ba:43:89:2c:bb:ce:3c:a3:d0:e7:
95:ff:c2:b6:ce:11:38:33:bb:a0:8f:73:11:2d:87:0c:e7:0c:
24:a6:44:19:0e:cb:5c:84:1f:9f:fa:f3:78:26:2f:28:f7:02:
d8:fb:ce:67:6f:41:8d:db:9e:20:d4:43:83:87:4e:c2:ad:a3:
2d:a9:46:04:53:8d:23:8e:39:42:62:b2:e7:99:fd:ff:71:78:
d5:12:72:16:3e:3e:c6:e0:9a:8e:34:78:af:b8:18:72:a8:dd:
fd:99:e6:0f:81:38:47:44:98:6c:d6:d8:6c:60:59:8d:4e:85:
50:50:7e:b5:b9:04:ba:bf:5f:ef:cc:59:73:5a:dc:be:53:19:
81:c0:4b:f1:2b:4a:96:19:a7:33:88:4a:d3:69:0e:11:20:98:
ef:4f:b8:2f:34:69:60:75:b2:35:ea:08:26:85:a1:b0:96:1a:
d7:b7:a1:95:28:38:99:7e:47:cd:8e:60:6d:01:96:3c:c1:ad:
8a:d2:26:41:19:87:01:dc:84:73:40:94:1f:d7:4e:73:5e:93:
f1:2f:c7:bf:5e:65:ee:5b:03:0f:51:ad:8f:26:1b:19:0a:3c:
5a:55:43:7a:df:34:f7:d6:0b:a6:2b:ad:03:ec:f1:b7:b6:7e:
ce:27:74:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuRuhUCRm/7Hx0znRGYcfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzYjkyZWMyYjBlMzJjYjdiMmRiMTNlMzc2NTI5OGQ2ZDJl
NTg1Y2QwHhcNMjUxMTExMDcwMjI3WhcNMjUxMTEyMDcwMjI3WjAzMTEwLwYDVQQD
EygyMTM2OTZjZWI0ZGQ0OTRlNmY1NDRhZDI5MTk5NDAyM2Q1ODU4OWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArglG5MD7pr99BDSjhDa34pwtrKt+
pEJoiB5b5lGcQVRDg4yZe/CE4a3TCk6DePMWzqm0EuhFxqVj4d2Ha10I6SLNW0fb
69G+s6nPCZFDllVFm868YVoXiUJ9o8nefvovF77WZ3ft8rh+60Ee/XrlQbhxzDtb
gR7CPm4uFPICRswrxUFpZnbjyC5WfyqqIUdZXFA1VIVqyYtNGqsdrGXaQK6NY0+e
Rrd4OHqrwSPXVfShrMVQkezJd1U6skdzNY/Sx4x4WutDhL7wHa2LXMYHlBLGbjAe
mIBMKhpXBM09TP7mFUrKOA5oPBpJVZtkI7NV54gjvOAbuKxB8Fn+yngHgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCE2ls603UlOb1RK0pGZQCPVhYmyMB8GA1UdIwQY
MBaAFEO5LsKw4yy3stsT43ZSmNbS5YXNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTdrdXdyRGpMTGV5MnhQamRsS1kxdExsaGMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy84OTI4NmYtMGU1OS00NjI2LWE2MTct
NjAyMTUxNTIyYTA5LzEvUTdrdXdyRGpMTGV5MnhQamRsS1kxdExsaGMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy84OTI4NmYtMGU1OS00NjI2LWE2MTctNjAyMTUxNTIyYTA5
LzEvUTdrdXdyRGpMTGV5MnhQamRsS1kxdExsaGMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADwn4S3FB
8RC6Q4ksu848o9Dnlf/Cts4RODO7oI9zES2HDOcMJKZEGQ7LXIQfn/rzeCYvKPcC
2PvOZ29BjdueINRDg4dOwq2jLalGBFONI445QmKy55n9/3F41RJyFj4+xuCajjR4
r7gYcqjd/ZnmD4E4R0SYbNbYbGBZjU6FUFB+tbkEur9f78xZc1rcvlMZgcBL8StK
lhmnM4hK02kOESCY70+4LzRpYHWyNeoIJoWhsJYa17ehlSg4mX5HzY5gbQGWPMGt
itImQRmHAdyEc0CUH9dOc16T8S/Hv15l7lsDD1GtjyYbGQo8WlVDet8099YLpiut
A+zxt7Z+zid0BA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:58:39 2025 by rpki-client