Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
File: DQMTeXANNd0Akr0GHGA-bLJWGnU.mft (raw, json)
Hash identifier: EopHms9iMJ4ef9A6yUEbEr1P742g8lkqMbqBHSQSdlQ=
Subject key identifier: A7:AB:C8:18:56:9B:22:10:A6:34:74:8B:FC:F4:4B:28:BD:89:04:4E
Authority key identifier: 0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
Certificate issuer: /CN=0d031379700d35dd0092bd061c603e6cb2561a75
Certificate serial: 0199228C6D97142653D316B33E764D5A2F08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
Manifest number: FF
Signing time: Sun 07 Sep 2025 05:00:52 +0000
Manifest this update: Sun 07 Sep 2025 05:00:52 +0000
Manifest next update: Mon 08 Sep 2025 05:00:52 +0000
Files and hashes: 1: DQMTeXANNd0Akr0GHGA-bLJWGnU.crl (hash: X7BKub3aNwh7TYt7EEm7MRuqZm/lYzCMMVFRhu+ZLV8=)
2: Hgg4Efyy8pmuFPjo5o1HWqeNRGU.roa (hash: QWuXRLwV44VOALcmRW0lf+RWKmWiNgLwuGDWKDY/d3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:6d:97:14:26:53:d3:16:b3:3e:76:4d:5a:2f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d031379700d35dd0092bd061c603e6cb2561a75
Validity
Not Before: Sep 7 05:00:52 2025 GMT
Not After : Sep 8 05:00:52 2025 GMT
Subject: CN=a7abc818569b2210a634748bfcf44b28bd89044e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:da:54:fc:1b:97:a5:48:f7:23:c8:a8:27:dc:
8d:d3:53:cd:ad:80:5a:74:42:75:de:71:2a:04:12:
7e:0d:3a:c6:d1:45:e7:5b:ca:44:24:2d:3b:dc:c0:
81:fd:75:22:12:97:0d:2e:c6:ed:3d:58:4a:9d:bd:
96:18:b9:14:db:15:2d:a8:a6:49:ca:a7:80:11:0a:
17:61:16:2c:aa:b3:db:df:2e:8c:7c:e6:22:12:cb:
68:16:f5:d2:15:e6:e8:b3:56:f7:5a:9f:c6:73:8c:
c2:48:4c:fb:82:17:1c:51:24:66:ed:d1:2b:63:7d:
e3:23:9b:e1:f4:f3:eb:76:5a:9e:36:e6:26:8f:d9:
fe:93:bf:f3:0f:48:4e:47:27:4c:ca:04:63:66:84:
2c:2a:8b:38:f6:6d:8c:e0:f9:64:63:c2:9a:5c:83:
cc:ad:7f:9f:87:85:e0:a1:6e:73:89:9e:78:9b:f5:
4f:95:5b:91:f8:27:7f:42:db:b5:da:7f:ca:2d:9a:
4d:66:7d:24:36:79:5e:f3:38:30:24:30:15:07:bc:
1e:ff:09:a8:a9:1c:3e:75:e2:ef:56:05:34:e2:8b:
b2:1c:ff:8c:43:5d:25:0d:c6:ad:7b:08:d9:f0:7d:
8e:f6:bd:d8:8d:07:ac:0e:64:f4:c9:da:9e:80:5d:
8e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:AB:C8:18:56:9B:22:10:A6:34:74:8B:FC:F4:4B:28:BD:89:04:4E
X509v3 Authority Key Identifier:
keyid:0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:89:e1:1c:3b:83:cb:d8:fc:ce:6c:cf:0f:13:a9:97:0c:1f:
e1:0e:c3:ff:e3:55:b9:3d:b4:15:3f:bc:19:44:a9:09:c7:1b:
7a:ec:de:d2:6a:f7:1f:ba:6a:dc:ce:cf:1e:2b:91:6e:7a:d7:
1b:5e:c9:ca:5f:f5:f6:74:69:96:81:3b:33:e9:3a:31:f5:96:
e7:e3:a9:0c:9c:af:37:0b:0b:78:c2:4f:b4:30:c4:4d:84:57:
26:83:44:4c:65:a8:94:cd:5c:cb:6d:25:a8:f1:be:5d:d4:99:
45:39:67:7d:ef:bb:6f:47:ef:64:16:f4:f4:92:cd:6e:c0:c5:
80:35:ea:67:04:39:8f:ac:7d:ae:7c:8f:d9:49:f2:0e:81:b5:
3d:cb:2e:48:99:78:9d:e7:c5:ab:05:e9:06:ef:15:07:0a:2c:
b3:3b:35:9d:b8:28:1d:60:3d:5b:67:04:de:fd:cb:14:11:b3:
e2:27:63:b4:54:33:53:c3:8c:47:b9:5e:5a:24:bc:62:6a:4b:
d6:a4:3d:d6:0d:7d:d3:dc:f8:9e:f0:cf:52:48:9f:b0:6e:b5:
a1:25:92:43:0e:72:5c:ef:fd:98:dc:fd:33:30:68:8b:a1:0b:
72:3d:c9:f3:e5:89:a0:be:5c:ee:9c:45:58:90:fc:7f:3e:dc:
80:19:0e:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijG2XFCZT0xazPnZNWi8IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMDMxMzc5NzAwZDM1ZGQwMDkyYmQwNjFjNjAzZTZjYjI1
NjFhNzUwHhcNMjUwOTA3MDUwMDUyWhcNMjUwOTA4MDUwMDUyWjAzMTEwLwYDVQQD
EyhhN2FiYzgxODU2OWIyMjEwYTYzNDc0OGJmY2Y0NGIyOGJkODkwNDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtpU/BuXpUj3I8ioJ9yN01PNrYBa
dEJ13nEqBBJ+DTrG0UXnW8pEJC073MCB/XUiEpcNLsbtPVhKnb2WGLkU2xUtqKZJ
yqeAEQoXYRYsqrPb3y6MfOYiEstoFvXSFebos1b3Wp/Gc4zCSEz7ghccUSRm7dEr
Y33jI5vh9PPrdlqeNuYmj9n+k7/zD0hORydMygRjZoQsKos49m2M4PlkY8KaXIPM
rX+fh4XgoW5ziZ54m/VPlVuR+Cd/Qtu12n/KLZpNZn0kNnle8zgwJDAVB7we/wmo
qRw+deLvVgU04ouyHP+MQ10lDcatewjZ8H2O9r3YjQesDmT0ydqegF2O9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKeryBhWmyIQpjR0i/z0Syi9iQROMB8GA1UdIwQY
MBaAFA0DE3lwDTXdAJK9BhxgPmyyVhp1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFFNVGVYQU5OZDBBa3IwR0hHQS1iTEpXR25VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS80MDk3NTItOWQ4Yy00MGY1LTkxMjUt
OWMwNjczNzk3OWQxLzEvRFFNVGVYQU5OZDBBa3IwR0hHQS1iTEpXR25VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS80MDk3NTItOWQ4Yy00MGY1LTkxMjUtOWMwNjczNzk3OWQx
LzEvRFFNVGVYQU5OZDBBa3IwR0hHQS1iTEpXR25VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdInhHDuD
y9j8zmzPDxOplwwf4Q7D/+NVuT20FT+8GUSpCccbeuze0mr3H7pq3M7PHiuRbnrX
G17Jyl/19nRploE7M+k6MfWW5+OpDJyvNwsLeMJPtDDETYRXJoNETGWolM1cy20l
qPG+XdSZRTlnfe+7b0fvZBb09JLNbsDFgDXqZwQ5j6x9rnyP2UnyDoG1PcsuSJl4
nefFqwXpBu8VBwosszs1nbgoHWA9W2cE3v3LFBGz4idjtFQzU8OMR7leWiS8YmpL
1qQ91g1909z4nvDPUkifsG61oSWSQw5yXO/9mNz9MzBoi6ELcj3J8+WJoL5c7pxF
WJD8fz7cgBkOBw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:11:56 2025 by rpki-client