Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
File: QGHbehW9JPvKFGzRLMcNQTnIW58.mft (raw, json)
Hash identifier: 4MKJKomtE1C4QTSEQzIJXzV4rt3u6V2TZ17DBawgDPk=
Subject key identifier: BE:2C:E5:A1:09:BE:98:3B:B0:1C:F3:96:BC:65:C8:87:D5:FB:9B:24
Authority key identifier: 40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
Certificate issuer: /CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Certificate serial: 019922FAB01DA39BC67AC777D2178DFE11A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
Manifest number: 163E
Signing time: Sun 07 Sep 2025 07:01:18 +0000
Manifest this update: Sun 07 Sep 2025 07:01:18 +0000
Manifest next update: Mon 08 Sep 2025 07:01:18 +0000
Files and hashes: 1: QGHbehW9JPvKFGzRLMcNQTnIW58.crl (hash: vNDu3p8CylOL/tB2xemlCyKL8mEQnHlcpdR7LkjfJHk=)
2: o-ZlaW1WgunU3TjJVwdOR6husz0.roa (hash: 4yZiG/NqXqcKJ1Bdf8yQPmHJloI/I/ZH5JktUOUh3mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:b0:1d:a3:9b:c6:7a:c7:77:d2:17:8d:fe:11:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Validity
Not Before: Sep 7 07:01:18 2025 GMT
Not After : Sep 8 07:01:18 2025 GMT
Subject: CN=be2ce5a109be983bb01cf396bc65c887d5fb9b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c0:0b:9f:99:55:bc:39:3b:9c:a9:a7:f7:df:
dc:b0:b7:cc:57:9e:cf:0d:98:9d:61:b1:43:9e:6b:
bc:26:36:80:14:af:8a:d5:ab:4a:f4:a1:4a:0e:fc:
36:99:b6:7d:3c:6c:a7:2e:04:63:93:cf:d3:f0:30:
13:fc:fe:6b:c0:c9:ed:55:06:9c:e9:50:18:c3:41:
c4:b5:ab:53:a3:38:d7:b7:dd:1b:44:cf:29:d2:13:
d2:19:30:15:9b:d5:90:42:75:85:9d:53:7b:73:40:
8e:38:ab:97:98:2b:de:3f:8e:46:2d:37:6b:65:04:
f6:37:ed:42:b2:89:85:7e:79:a3:7b:9c:b9:ef:2d:
fc:ec:2c:8a:08:27:c6:e2:6a:1e:76:59:21:9d:9d:
57:ec:e6:20:35:74:39:04:84:3f:3d:37:cf:55:9e:
bb:81:cd:e6:5f:0b:58:90:99:a2:9f:fe:46:e1:bf:
65:06:0d:bf:1a:81:93:48:a7:cd:49:01:63:3b:66:
e6:71:09:14:82:1b:0c:6d:c0:a8:7e:03:92:5a:64:
17:dd:5d:95:16:24:04:65:b7:2c:a2:82:11:b7:52:
46:fa:63:67:bf:7f:73:bc:91:8d:71:eb:36:d4:0a:
06:57:d2:94:e1:89:fc:cf:99:5e:bf:91:49:57:17:
95:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:2C:E5:A1:09:BE:98:3B:B0:1C:F3:96:BC:65:C8:87:D5:FB:9B:24
X509v3 Authority Key Identifier:
keyid:40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:0b:c6:e3:ff:11:9d:e3:a7:30:97:3e:ad:85:10:c3:e3:68:
86:ad:e5:59:de:c3:23:96:f6:19:df:c4:18:a7:cf:8c:b6:41:
86:44:b8:bf:6a:75:b9:03:cc:1f:e3:74:7e:35:14:67:79:72:
24:ed:de:92:50:3d:a2:c2:c4:48:8c:dd:6e:4a:01:8e:2a:51:
3c:94:4e:ed:59:ee:6c:ed:0c:89:82:54:ee:a6:fe:a2:69:08:
8d:2d:0e:fc:6b:de:c1:d5:6c:aa:f8:8b:4e:5c:76:36:09:86:
fb:5c:0f:60:c6:be:c1:af:08:2d:ae:5d:cb:b8:07:f7:dc:cd:
40:3b:fc:4a:2a:3a:2b:d4:02:96:fd:f7:fa:df:90:43:5d:97:
ee:a0:42:aa:8f:9b:e6:5a:da:be:80:0b:3a:89:5c:68:77:49:
b4:ad:5a:62:9e:f2:00:c3:7f:f2:32:79:a7:43:e7:ce:e4:7d:
c8:ac:a9:a2:de:56:52:3f:f3:02:c7:a7:2c:f4:05:c9:bc:8c:
41:ac:94:61:a3:ab:7d:8b:9d:65:ef:7a:e8:99:7d:21:4e:56:
86:43:6a:10:34:91:dd:d6:0b:b3:28:28:05:cf:7f:cc:b4:c8:
bd:b7:b9:44:9e:54:8c:3f:0f:bc:cb:da:5f:67:7e:44:05:51:
1f:1d:78:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+rAdo5vGesd30heN/hGjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNjFkYjdhMTViZDI0ZmJjYTE0NmNkMTJjYzcwZDQxMzlj
ODViOWYwHhcNMjUwOTA3MDcwMTE4WhcNMjUwOTA4MDcwMTE4WjAzMTEwLwYDVQQD
EyhiZTJjZTVhMTA5YmU5ODNiYjAxY2YzOTZiYzY1Yzg4N2Q1ZmI5YjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsALn5lVvDk7nKmn99/csLfMV57P
DZidYbFDnmu8JjaAFK+K1atK9KFKDvw2mbZ9PGynLgRjk8/T8DAT/P5rwMntVQac
6VAYw0HEtatTozjXt90bRM8p0hPSGTAVm9WQQnWFnVN7c0COOKuXmCveP45GLTdr
ZQT2N+1CsomFfnmje5y57y387CyKCCfG4moedlkhnZ1X7OYgNXQ5BIQ/PTfPVZ67
gc3mXwtYkJmin/5G4b9lBg2/GoGTSKfNSQFjO2bmcQkUghsMbcCofgOSWmQX3V2V
FiQEZbcsooIRt1JG+mNnv39zvJGNces21AoGV9KU4Yn8z5lev5FJVxeVMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL4s5aEJvpg7sBzzlrxlyIfV+5skMB8GA1UdIwQY
MBaAFEBh23oVvST7yhRs0SzHDUE5yFufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8wMDRjM2ItYWEzZi00ZDhiLTgyNmYt
MTk5ZDE0YzA2YmNiLzEvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8wMDRjM2ItYWEzZi00ZDhiLTgyNmYtMTk5ZDE0YzA2YmNi
LzEvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASQvG4/8R
neOnMJc+rYUQw+Nohq3lWd7DI5b2Gd/EGKfPjLZBhkS4v2p1uQPMH+N0fjUUZ3ly
JO3eklA9osLESIzdbkoBjipRPJRO7VnubO0MiYJU7qb+omkIjS0O/GvewdVsqviL
Tlx2NgmG+1wPYMa+wa8ILa5dy7gH99zNQDv8Sio6K9QClv33+t+QQ12X7qBCqo+b
5lravoALOolcaHdJtK1aYp7yAMN/8jJ5p0PnzuR9yKypot5WUj/zAsenLPQFybyM
QayUYaOrfYudZe966Jl9IU5WhkNqEDSR3dYLsygoBc9/zLTIvbe5RJ5UjD8PvMva
X2d+RAVRHx14iQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:37 2025 by rpki-client