Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
File: QlbgyzjNYSXO4U5Jcii4SQodQOk.mft (raw, json)
Hash identifier: lNoo7uTjNkdvgWXFfmrheHpBVtrcTQas7Arh3Sp54P8=
Subject key identifier: F1:4F:13:27:5B:99:36:A0:65:3B:FD:54:0B:FE:F6:D5:FB:F2:ED:0E
Authority key identifier: 42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
Certificate issuer: /CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Certificate serial: 01992E2337F3F4ABEC640798ADF5C59F11A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
Manifest number: 05D3
Signing time: Tue 09 Sep 2025 11:01:23 +0000
Manifest this update: Tue 09 Sep 2025 11:01:23 +0000
Manifest next update: Wed 10 Sep 2025 11:01:23 +0000
Files and hashes: 1: QlbgyzjNYSXO4U5Jcii4SQodQOk.crl (hash: KlA4IyGiqyBSpIRsBIs0zdLcGVNmcUrBes61dkkBPoU=)
2: ekPIeumjzc0aQ-0qnlrmTiVhDJI.roa (hash: MI/BYhVlkTAuExjmOk0h+DG2/B/CqzwrvfdzA0OS10s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2e:23:37:f3:f4:ab:ec:64:07:98:ad:f5:c5:9f:11:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Validity
Not Before: Sep 9 11:01:23 2025 GMT
Not After : Sep 10 11:01:23 2025 GMT
Subject: CN=f14f13275b9936a0653bfd540bfef6d5fbf2ed0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ba:e6:73:83:25:73:58:75:a7:26:23:55:65:
23:f0:a8:fb:ad:2b:aa:e0:59:b8:ff:07:3a:04:b2:
e0:32:b1:3c:ac:7a:ef:6d:8c:b4:48:b0:dd:04:c4:
de:9e:aa:7b:8f:14:56:b7:75:12:f0:a2:22:59:fa:
a8:e8:09:fc:2f:d7:9f:d1:5a:a5:ba:b1:47:2b:a0:
6f:43:d6:74:8e:36:ff:1b:86:14:8a:47:2f:2a:12:
f1:2c:f8:e0:11:79:a6:c0:43:6a:52:8a:1d:59:e0:
ec:aa:d9:eb:9f:80:59:89:80:83:76:f9:e9:bb:77:
9c:7c:e9:7f:c9:9b:f0:3e:98:3f:bd:e9:16:c4:c9:
f2:3a:56:b3:4f:59:50:3f:0f:e8:3c:51:15:c0:3f:
40:96:af:a4:90:82:ff:8d:3e:bf:64:fa:7a:bc:81:
0a:15:4e:8c:fa:71:04:85:df:7e:75:f7:3b:5e:b2:
b6:b0:a2:ef:9c:cf:0e:77:8b:25:70:ec:e7:35:0c:
c1:3b:89:92:75:79:bd:b7:ae:f0:70:7b:79:68:5b:
c2:86:27:d7:75:b5:03:1a:b9:a7:6a:21:6c:27:95:
06:ce:2b:7b:86:59:9b:df:00:84:52:39:ad:74:fe:
ca:31:df:97:b4:0c:73:b1:8d:15:e9:15:2f:13:d3:
5e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4F:13:27:5B:99:36:A0:65:3B:FD:54:0B:FE:F6:D5:FB:F2:ED:0E
X509v3 Authority Key Identifier:
keyid:42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ec:be:66:f3:6d:64:ec:2d:06:c9:28:91:c6:f3:35:9e:c6:
a1:07:f8:89:47:97:81:2a:cf:3f:4d:fb:f4:f5:93:37:65:cf:
74:92:12:02:d8:0f:63:af:f5:be:9f:28:c8:0c:79:3c:e1:61:
0f:ba:9c:34:31:22:2b:41:d4:cf:a5:3a:42:f5:74:69:40:ff:
50:5c:d2:e2:fc:d7:4b:88:20:5c:73:73:f6:77:43:4c:9b:e3:
46:54:39:76:de:29:34:0b:db:2c:2b:b4:81:90:c8:d4:fc:6a:
37:1a:49:5d:27:8e:cc:e2:58:aa:4b:1a:f9:7f:eb:66:e2:ff:
d4:bf:7b:48:f6:c6:85:bc:b3:0e:69:6d:11:fc:7c:8e:ae:4f:
c3:ea:c0:7e:f9:06:e9:8e:33:48:e8:b9:92:74:72:c8:48:ac:
24:dc:e1:6c:13:01:92:18:35:36:21:09:26:12:f1:f7:6f:4e:
a7:2d:51:ad:f1:fd:24:7d:be:ec:d8:ec:d5:be:17:b0:59:7f:
27:9d:73:93:d2:2e:84:56:be:46:d1:9d:c3:82:45:05:db:ac:
f5:d5:0a:0a:9e:78:61:65:7a:1c:7d:f5:2e:50:17:20:c2:20:
c5:bc:61:a6:78:1a:e5:99:e9:0f:c0:63:74:74:7f:eb:5e:15:
73:c2:2b:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkuIzfz9KvsZAeYrfXFnxGkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyNTZlMGNiMzhjZDYxMjVjZWUxNGU0OTcyMjhiODQ5MGEx
ZDQwZTkwHhcNMjUwOTA5MTEwMTIzWhcNMjUwOTEwMTEwMTIzWjAzMTEwLwYDVQQD
EyhmMTRmMTMyNzViOTkzNmEwNjUzYmZkNTQwYmZlZjZkNWZiZjJlZDBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7rmc4Mlc1h1pyYjVWUj8Kj7rSuq
4Fm4/wc6BLLgMrE8rHrvbYy0SLDdBMTenqp7jxRWt3US8KIiWfqo6An8L9ef0Vql
urFHK6BvQ9Z0jjb/G4YUikcvKhLxLPjgEXmmwENqUoodWeDsqtnrn4BZiYCDdvnp
u3ecfOl/yZvwPpg/vekWxMnyOlazT1lQPw/oPFEVwD9Alq+kkIL/jT6/ZPp6vIEK
FU6M+nEEhd9+dfc7XrK2sKLvnM8Od4slcOznNQzBO4mSdXm9t67wcHt5aFvChifX
dbUDGrmnaiFsJ5UGzit7hlmb3wCEUjmtdP7KMd+XtAxzsY0V6RUvE9NepQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPFPEydbmTagZTv9VAv+9tX78u0OMB8GA1UdIwQY
MBaAFEJW4Ms4zWElzuFOSXIouEkKHUDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWxiZ3l6ak5ZU1hPNFU1SmNpaTRTUW9kUU9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jMzE0ZjQtYjFhYy00MjZmLThmMjEt
YTVlODUwYjZhMWJjLzEvUWxiZ3l6ak5ZU1hPNFU1SmNpaTRTUW9kUU9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9jMzE0ZjQtYjFhYy00MjZmLThmMjEtYTVlODUwYjZhMWJj
LzEvUWxiZ3l6ak5ZU1hPNFU1SmNpaTRTUW9kUU9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM+y+ZvNt
ZOwtBskokcbzNZ7GoQf4iUeXgSrPP0379PWTN2XPdJISAtgPY6/1vp8oyAx5POFh
D7qcNDEiK0HUz6U6QvV0aUD/UFzS4vzXS4ggXHNz9ndDTJvjRlQ5dt4pNAvbLCu0
gZDI1PxqNxpJXSeOzOJYqksa+X/rZuL/1L97SPbGhbyzDmltEfx8jq5Pw+rAfvkG
6Y4zSOi5knRyyEisJNzhbBMBkhg1NiEJJhLx929Opy1RrfH9JH2+7Njs1b4XsFl/
J51zk9IuhFa+RtGdw4JFBdus9dUKCp54YWV6HH31LlAXIMIgxbxhpnga5ZnpD8Bj
dHR/614Vc8Irjw==
-----END CERTIFICATE-----
Generated at Tue Sep 9 15:39:43 2025 by rpki-client