Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
File: q9lqrojvmbTVDknsrpyuSPN4gfc.mft (raw, json)
Hash identifier: 5btKk+tou3WqZkMSaJyQBwVz/Sdk7ZLmze7PDuYYq+8=
Subject key identifier: 84:8A:8F:5A:1E:DC:58:F9:82:17:74:65:B2:B4:02:03:59:56:94:9E
Authority key identifier: AB:D9:6A:AE:88:EF:99:B4:D5:0E:49:EC:AE:9C:AE:48:F3:78:81:F7
Certificate issuer: /CN=abd96aae88ef99b4d50e49ecae9cae48f37881f7
Certificate serial: 0199233112EAB0726BE69D8C0752FF93C751
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
Manifest number: 02C0
Signing time: Sun 07 Sep 2025 08:00:42 +0000
Manifest this update: Sun 07 Sep 2025 08:00:42 +0000
Manifest next update: Mon 08 Sep 2025 08:00:42 +0000
Files and hashes: 1: jOBsmTZZQR2oFpHPynuOSfcKlhQ.roa (hash: HS2UqrHXUPTUg04Ke/uHXIU8tldEPiGgxWt1zu5k5H0=)
2: q9lqrojvmbTVDknsrpyuSPN4gfc.crl (hash: nWy2EHMyfDCounNF76qHB6U5kIOh6lXnB1XOM3IIdNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:12:ea:b0:72:6b:e6:9d:8c:07:52:ff:93:c7:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abd96aae88ef99b4d50e49ecae9cae48f37881f7
Validity
Not Before: Sep 7 08:00:42 2025 GMT
Not After : Sep 8 08:00:42 2025 GMT
Subject: CN=848a8f5a1edc58f982177465b2b402035956949e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ec:7a:7c:6f:75:6b:ab:48:65:75:5a:c2:5e:
0e:72:0c:b1:0f:9f:30:b1:6d:83:fc:a9:a5:c8:5b:
37:b2:6a:cd:4a:5f:31:ee:90:70:1e:cc:22:c2:7c:
35:95:2d:3b:db:a4:39:a4:d4:f7:80:ec:b5:b9:c4:
9b:ab:be:74:f7:11:e5:47:52:35:6a:43:3d:e7:43:
68:77:0e:c8:8c:8b:79:19:9e:68:78:dd:7d:d2:b0:
f9:08:1a:73:a9:b5:0e:93:95:ad:f6:0a:79:42:18:
44:4f:af:53:80:5f:a7:64:45:b8:e5:8b:83:92:82:
9a:50:c5:ff:d3:7b:24:a0:1b:bd:19:1f:d0:69:fd:
28:c2:44:d0:ce:24:f8:a0:73:f4:f9:20:da:44:f9:
10:5c:4e:79:f1:73:fc:09:ea:50:90:42:99:b6:bf:
bb:23:e1:5d:3f:69:0f:10:4c:c4:5e:90:ba:5a:c6:
0b:c9:26:46:09:97:8f:46:e3:19:ac:6d:2d:bf:ee:
ce:04:c9:f5:ca:6f:fe:c8:29:64:f0:dc:5f:2d:a4:
a4:23:38:8f:4b:ef:c0:fb:13:c3:0b:d9:bc:e4:57:
c9:ea:cf:e0:44:9f:a4:84:cb:9f:a3:39:ed:20:15:
f5:2a:50:02:ea:c6:0d:b4:54:3e:0b:7c:dc:ba:59:
61:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8A:8F:5A:1E:DC:58:F9:82:17:74:65:B2:B4:02:03:59:56:94:9E
X509v3 Authority Key Identifier:
keyid:AB:D9:6A:AE:88:EF:99:B4:D5:0E:49:EC:AE:9C:AE:48:F3:78:81:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:4a:b8:d7:9f:52:10:44:7d:57:3d:66:a2:2c:e9:5d:49:f3:
69:b6:33:8b:da:7d:79:f0:f3:f9:9a:37:1b:ec:06:bd:c1:b2:
06:64:0b:fd:69:e3:64:35:cc:50:9c:62:74:72:b8:f4:20:71:
7b:32:05:2b:7f:6c:b0:1f:ff:ac:78:18:0d:c0:86:7f:fa:19:
36:1b:d5:9a:d7:30:27:7c:3b:5f:b8:73:34:9c:7d:c1:dd:98:
1f:74:a1:94:03:8f:46:86:e3:d0:53:42:52:13:5c:ec:1b:ef:
0e:da:f4:41:57:c2:c3:4d:bc:7d:c3:ad:0b:fb:62:ea:b3:9d:
bb:8c:8c:7a:67:70:d4:19:02:97:10:b9:69:59:89:71:8b:d4:
66:c9:2b:63:5f:bd:e9:59:6e:d5:ed:07:70:82:b2:57:a5:bc:
61:cf:16:a5:8c:c0:4b:99:9c:95:6e:c1:7b:eb:d1:af:59:84:
2a:de:47:24:49:32:3e:35:db:f5:c2:84:33:a8:f7:4b:b8:78:
6e:7a:12:29:a6:a6:be:8f:a2:70:c2:89:77:19:f1:0a:38:89:
46:c2:88:59:28:69:28:a6:b0:6a:28:b7:4a:c4:80:d3:8f:a0:
80:c2:24:c7:72:ec:eb:84:a6:d3:33:89:6b:7e:05:4e:3a:76:
8e:e4:19:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMRLqsHJr5p2MB1L/k8dRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiZDk2YWFlODhlZjk5YjRkNTBlNDllY2FlOWNhZTQ4ZjM3
ODgxZjcwHhcNMjUwOTA3MDgwMDQyWhcNMjUwOTA4MDgwMDQyWjAzMTEwLwYDVQQD
Eyg4NDhhOGY1YTFlZGM1OGY5ODIxNzc0NjViMmI0MDIwMzU5NTY5NDllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+x6fG91a6tIZXVawl4OcgyxD58w
sW2D/KmlyFs3smrNSl8x7pBwHswiwnw1lS0726Q5pNT3gOy1ucSbq7509xHlR1I1
akM950Nodw7IjIt5GZ5oeN190rD5CBpzqbUOk5Wt9gp5QhhET69TgF+nZEW45YuD
koKaUMX/03skoBu9GR/Qaf0owkTQziT4oHP0+SDaRPkQXE558XP8CepQkEKZtr+7
I+FdP2kPEEzEXpC6WsYLySZGCZePRuMZrG0tv+7OBMn1ym/+yClk8NxfLaSkIziP
S+/A+xPDC9m85FfJ6s/gRJ+khMufozntIBX1KlAC6sYNtFQ+C3zcullhDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFISKj1oe3Fj5ghd0ZbK0AgNZVpSeMB8GA1UdIwQY
MBaAFKvZaq6I75m01Q5J7K6crkjzeIH3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTlscXJvanZtYlRWRGtuc3JweXVTUE40Z2ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8zZjk2MTktNGJkMC00YWJhLTkwZTIt
N2MzZjhjNDBjNTEwLzEvcTlscXJvanZtYlRWRGtuc3JweXVTUE40Z2ZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8zZjk2MTktNGJkMC00YWJhLTkwZTItN2MzZjhjNDBjNTEw
LzEvcTlscXJvanZtYlRWRGtuc3JweXVTUE40Z2ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANkq4159S
EER9Vz1moizpXUnzabYzi9p9efDz+Zo3G+wGvcGyBmQL/WnjZDXMUJxidHK49CBx
ezIFK39ssB//rHgYDcCGf/oZNhvVmtcwJ3w7X7hzNJx9wd2YH3ShlAOPRobj0FNC
UhNc7BvvDtr0QVfCw028fcOtC/ti6rOdu4yMemdw1BkClxC5aVmJcYvUZskrY1+9
6Vlu1e0HcIKyV6W8Yc8WpYzAS5mclW7Be+vRr1mEKt5HJEkyPjXb9cKEM6j3S7h4
bnoSKaamvo+icMKJdxnxCjiJRsKIWShpKKawaii3SsSA04+ggMIkx3Ls64Sm0zOJ
a34FTjp2juQZ3g==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:31 2025 by rpki-client