Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: yN/Kwld6HuBpgjIKykOThq1jrXzztWBFN65o5pmZ8wE=
Subject key identifier: 53:CA:85:90:E0:1B:F1:63:29:0A:1E:99:46:FA:05:CC:B6:94:4B:94
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 019931C8A348E8C73F5B56322B7EE5DFD18B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0E6D
Signing time: Wed 10 Sep 2025 04:00:56 +0000
Manifest this update: Wed 10 Sep 2025 04:00:56 +0000
Manifest next update: Thu 11 Sep 2025 04:00:56 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: aL7+vyJcYrJ+MkzFe2NojQsIutKQGIz5V8Ahrf5Us/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:c8:a3:48:e8:c7:3f:5b:56:32:2b:7e:e5:df:d1:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Sep 10 04:00:56 2025 GMT
Not After : Sep 11 04:00:56 2025 GMT
Subject: CN=53ca8590e01bf163290a1e9946fa05ccb6944b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7e:72:72:f9:85:b8:07:55:48:e8:cd:70:e7:
49:06:ae:9a:50:b0:e9:78:19:5b:ef:c4:4f:12:86:
fd:40:18:b9:76:d4:a3:7a:c7:e7:56:cf:67:d8:ab:
97:f3:e5:35:38:35:0d:22:51:70:b5:22:66:f2:92:
09:ba:75:b0:6d:f9:ef:17:69:4a:95:96:a5:09:19:
3d:60:d3:8d:dd:94:f3:49:16:79:63:f8:f9:1e:71:
af:95:d0:61:11:b1:ca:7f:fb:71:df:8e:95:ed:a4:
fa:e8:5c:c0:76:ae:b0:26:e5:11:6e:40:41:18:f6:
82:5a:e9:33:d8:da:dc:18:3c:ca:00:79:c9:29:ec:
4e:a9:28:9e:13:00:44:e9:0a:b9:fa:95:2e:1b:ac:
e1:7a:d2:f4:c6:08:db:d1:4f:cd:a7:6b:6b:92:4f:
74:c7:a3:a2:71:52:1c:76:c6:30:4d:ca:73:c6:4a:
4d:de:30:fc:57:a5:b9:6d:88:9f:c3:8e:b1:17:ad:
aa:a0:f1:59:07:23:d1:4b:36:a6:e7:7e:9f:62:63:
2d:08:0c:2d:1f:03:4f:52:bd:ae:69:b5:bf:9f:94:
08:a4:53:1b:69:c1:4f:3e:6a:e8:dc:59:b8:f9:7c:
d9:55:3a:df:53:15:dd:7e:32:35:ae:f7:39:95:dd:
e7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CA:85:90:E0:1B:F1:63:29:0A:1E:99:46:FA:05:CC:B6:94:4B:94
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:11:c3:f5:24:51:83:9a:d6:c0:e9:f1:5a:1d:f5:5c:30:68:
05:81:21:69:51:d0:8e:21:8c:8c:07:65:f8:b1:bb:0c:eb:76:
fe:aa:2a:cf:4f:94:ab:bf:ba:5b:26:75:c9:25:c5:56:3f:d0:
8c:86:6c:d3:0f:7f:a2:d3:7c:a5:fb:59:d8:1c:bd:63:5b:f1:
b8:d3:1b:b4:19:1b:33:cb:d1:44:77:ae:41:ce:68:47:8d:ea:
c5:f9:fe:d9:e9:a9:8c:a1:67:f1:cb:13:57:51:7d:66:f4:d7:
f1:da:0d:e5:80:7e:d2:fe:08:65:7a:b2:2a:0e:17:c9:b7:8b:
c6:16:36:84:db:ea:da:33:4d:30:0d:49:5a:4c:92:8d:c1:f6:
c0:21:7f:45:38:d4:89:88:89:0c:94:2a:49:10:25:f9:8b:f1:
59:5d:1c:21:16:f2:4a:13:b6:71:23:f4:c9:4d:52:57:36:8d:
db:c6:47:98:07:65:cf:3a:16:55:b2:09:71:fc:51:b1:f8:8a:
99:aa:62:30:b9:69:fe:ae:68:4a:8e:59:5c:31:47:a1:13:42:
ef:e7:c8:84:72:69:87:d3:55:36:7a:ee:db:61:b6:0a:f2:79:
f2:63:88:5d:77:62:18:f8:0e:72:2b:fb:71:0f:5f:09:19:39:
ac:64:93:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkxyKNI6Mc/W1YyK37l39GLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNjg0ZTUwZTMzZjNhMDAxNWM4Zjg5OWM4OGJjYjEzN2Jj
ZmI1ZjkwHhcNMjUwOTEwMDQwMDU2WhcNMjUwOTExMDQwMDU2WjAzMTEwLwYDVQQD
Eyg1M2NhODU5MGUwMWJmMTYzMjkwYTFlOTk0NmZhMDVjY2I2OTQ0Yjk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxX5ycvmFuAdVSOjNcOdJBq6aULDp
eBlb78RPEob9QBi5dtSjesfnVs9n2KuX8+U1ODUNIlFwtSJm8pIJunWwbfnvF2lK
lZalCRk9YNON3ZTzSRZ5Y/j5HnGvldBhEbHKf/tx346V7aT66FzAdq6wJuURbkBB
GPaCWukz2NrcGDzKAHnJKexOqSieEwBE6Qq5+pUuG6zhetL0xgjb0U/Np2trkk90
x6OicVIcdsYwTcpzxkpN3jD8V6W5bYifw46xF62qoPFZByPRSzam536fYmMtCAwt
HwNPUr2uabW/n5QIpFMbacFPPmro3Fm4+XzZVTrfUxXdfjI1rvc5ld3nswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFPKhZDgG/FjKQoemUb6Bcy2lEuUMB8GA1UdIwQY
MBaAFKtoTlDjPzoAFcj4mciLyxN7z7X5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjIt
ODBlNWQ1M2VkYjQxLzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjItODBlNWQ1M2VkYjQx
LzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARxHD9SRR
g5rWwOnxWh31XDBoBYEhaVHQjiGMjAdl+LG7DOt2/qoqz0+Uq7+6WyZ1ySXFVj/Q
jIZs0w9/otN8pftZ2By9Y1vxuNMbtBkbM8vRRHeuQc5oR43qxfn+2empjKFn8csT
V1F9ZvTX8doN5YB+0v4IZXqyKg4XybeLxhY2hNvq2jNNMA1JWkySjcH2wCF/RTjU
iYiJDJQqSRAl+YvxWV0cIRbyShO2cSP0yU1SVzaN28ZHmAdlzzoWVbIJcfxRsfiK
mapiMLlp/q5oSo5ZXDFHoRNC7+fIhHJph9NVNnru22G2CvJ58mOIXXdiGPgOciv7
cQ9fCRk5rGSTkA==
-----END CERTIFICATE-----
Generated at Wed Sep 10 09:25:46 2025 by rpki-client