Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
File: QGYnM7yHPRPh-fZujf91yCDV0vc.mft (raw, json)
Hash identifier: VycrqI2GbJDC5lRfkxT/AuKV/ei5pciMRU8x8sOGC3M=
Subject key identifier: 9F:7F:35:F0:9B:3D:7E:E8:43:EE:4B:D1:AB:C5:9A:1A:B9:C3:A3:5F
Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Certificate serial: 019931FFB296364AA66F4C5F9E951201E248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
Manifest number: 0E7C
Signing time: Wed 10 Sep 2025 05:01:04 +0000
Manifest this update: Wed 10 Sep 2025 05:01:04 +0000
Manifest next update: Thu 11 Sep 2025 05:01:04 +0000
Files and hashes: 1: NiWsr1aAeWW2oN08xcS5Irqnn3Q.roa (hash: 2xUbIvKWWmEdUess43urc5rTq8I0ZstZadOhJMax4HI=)
2: QGYnM7yHPRPh-fZujf91yCDV0vc.crl (hash: nejZldTeW+5qbdc23VumndM9RqUtkOnS7fk5ogYCSHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:ff:b2:96:36:4a:a6:6f:4c:5f:9e:95:12:01:e2:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Validity
Not Before: Sep 10 05:01:04 2025 GMT
Not After : Sep 11 05:01:04 2025 GMT
Subject: CN=9f7f35f09b3d7ee843ee4bd1abc59a1ab9c3a35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:59:86:f4:8b:49:fd:57:a6:74:68:4e:69:25:
40:1a:a5:bd:20:6e:1c:98:14:53:d0:d6:1d:ec:3a:
52:32:59:bb:fb:1d:69:ac:bc:ca:2e:a5:cb:b3:4f:
e9:ed:c3:05:18:8c:d6:95:0e:1b:9c:62:0c:64:9c:
67:b6:5e:30:ce:c3:76:e8:0a:16:81:64:18:5c:0c:
86:74:01:02:c2:70:49:d2:7d:d2:c7:ef:98:42:1b:
c3:29:4a:8a:c4:0f:ab:eb:3f:13:5b:b3:1a:7f:d9:
fe:10:0d:71:ee:cc:7f:f0:32:73:e0:03:8a:eb:17:
64:65:0a:83:c3:4e:c1:66:3e:c4:64:d2:94:16:21:
69:cf:f6:f5:5d:da:a9:35:26:73:28:7b:5f:a2:8a:
1a:58:51:58:92:e9:e9:cb:75:03:e4:7c:10:a0:9c:
da:a8:7c:5f:3c:45:bb:5e:39:d4:ad:f0:dc:c5:a8:
f5:0b:1f:2b:5b:23:51:c2:e9:08:c6:85:12:de:c1:
54:b6:c8:f7:62:37:e9:30:46:a1:78:78:3d:56:a8:
29:d9:41:58:62:99:37:45:bc:54:8c:f7:4b:3a:f9:
9d:aa:fe:2e:54:15:08:47:b0:c2:9f:bc:be:b0:72:
f8:a5:47:aa:23:48:79:03:31:c7:88:27:e0:6f:58:
53:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7F:35:F0:9B:3D:7E:E8:43:EE:4B:D1:AB:C5:9A:1A:B9:C3:A3:5F
X509v3 Authority Key Identifier:
keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:3e:af:d5:8b:9f:87:6c:07:33:25:9b:4b:e7:21:53:3e:41:
f0:82:06:53:8c:08:5d:01:72:1a:ad:10:bf:08:f8:be:79:01:
4c:94:aa:a3:cb:65:35:87:ee:8e:21:98:36:74:97:cf:d0:1d:
ee:69:85:45:01:bc:32:9c:61:34:7b:23:4e:1d:fb:f6:02:44:
84:1b:53:f5:36:ae:bd:95:b6:54:cb:37:a1:31:02:66:91:e2:
81:50:3a:a6:e0:4f:1c:18:4e:01:2d:be:fc:c2:24:3b:de:4a:
73:9f:b7:32:82:0e:88:21:b5:ca:6a:47:a1:e9:21:7d:97:90:
47:d5:ad:5a:a6:c6:73:d6:61:e9:8c:bf:4d:af:ef:40:78:4e:
bc:04:a3:2b:f6:e9:7c:49:2f:87:0f:56:53:8c:ff:d1:78:39:
74:84:24:76:b3:e2:9d:01:1d:7b:3f:f5:30:b3:a7:ae:49:59:
40:f3:d5:db:ed:e3:28:84:9e:55:c5:5f:e8:eb:e4:27:be:3a:
f3:8e:a2:62:12:76:18:39:a1:4c:03:09:b0:27:1d:ca:77:53:
2b:24:4f:f8:9c:3c:02:d2:3a:5d:ee:c2:9f:5f:97:fb:9c:a5:
47:6d:68:78:1c:63:03:65:d3:a1:06:b4:6f:01:05:b9:2a:1b:
2a:cb:b0:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkx/7KWNkqmb0xfnpUSAeJIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNjYyNzMzYmM4NzNkMTNlMWY5ZjY2ZThkZmY3NWM4MjBk
NWQyZjcwHhcNMjUwOTEwMDUwMTA0WhcNMjUwOTExMDUwMTA0WjAzMTEwLwYDVQQD
Eyg5ZjdmMzVmMDliM2Q3ZWU4NDNlZTRiZDFhYmM1OWExYWI5YzNhMzVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFmG9ItJ/VemdGhOaSVAGqW9IG4c
mBRT0NYd7DpSMlm7+x1prLzKLqXLs0/p7cMFGIzWlQ4bnGIMZJxntl4wzsN26AoW
gWQYXAyGdAECwnBJ0n3Sx++YQhvDKUqKxA+r6z8TW7Maf9n+EA1x7sx/8DJz4AOK
6xdkZQqDw07BZj7EZNKUFiFpz/b1XdqpNSZzKHtfoooaWFFYkunpy3UD5HwQoJza
qHxfPEW7XjnUrfDcxaj1Cx8rWyNRwukIxoUS3sFUtsj3YjfpMEaheHg9Vqgp2UFY
Ypk3RbxUjPdLOvmdqv4uVBUIR7DCn7y+sHL4pUeqI0h5AzHHiCfgb1hTkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ9/NfCbPX7oQ+5L0avFmhq5w6NfMB8GA1UdIwQY
MBaAFEBmJzO8hz0T4fn2bo3/dcgg1dL3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kOTEwZDEtOTRjNi00NDEyLTg1MDYt
OWNiNTFlNTFmZjc3LzEvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9kOTEwZDEtOTRjNi00NDEyLTg1MDYtOWNiNTFlNTFmZjc3
LzEvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMz6v1Yuf
h2wHMyWbS+chUz5B8IIGU4wIXQFyGq0Qvwj4vnkBTJSqo8tlNYfujiGYNnSXz9Ad
7mmFRQG8MpxhNHsjTh379gJEhBtT9TauvZW2VMs3oTECZpHigVA6puBPHBhOAS2+
/MIkO95Kc5+3MoIOiCG1ympHoekhfZeQR9WtWqbGc9Zh6Yy/Ta/vQHhOvASjK/bp
fEkvhw9WU4z/0Xg5dIQkdrPinQEdez/1MLOnrklZQPPV2+3jKISeVcVf6OvkJ746
846iYhJ2GDmhTAMJsCcdyndTKyRP+Jw8AtI6Xe7Cn1+X+5ylR21oeBxjA2XToQa0
bwEFuSobKsuw3w==
-----END CERTIFICATE-----
Generated at Wed Sep 10 10:23:03 2025 by rpki-client