Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json)
Hash identifier: RrWuoJsBdVFMFNeY4xLzJvnWuPEffEydjoqblA16Lo4=
Subject key identifier: BA:DC:D0:45:03:EF:71:00:C7:5F:46:C2:7B:07:36:39:0C:81:50:56
Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Certificate serial: 019A711302B6CD3A78B4D134F8262B760241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
Manifest number: 0632
Signing time: Tue 11 Nov 2025 04:01:02 +0000
Manifest this update: Tue 11 Nov 2025 04:01:02 +0000
Manifest next update: Wed 12 Nov 2025 04:01:02 +0000
Files and hashes: 1: 4PjPPpWKgAtzAAOasr7gIk0JbPI.roa (hash: yiKX1aQ5yWrVl7HwLmjfK1M9G+FpWFiXbyU5qVlLbDY=)
2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: W7OcjABDpht+oKjZpXwuQIys3njRYqSsYhVVvYhq+dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:02:b6:cd:3a:78:b4:d1:34:f8:26:2b:76:02:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Validity
Not Before: Nov 11 04:01:02 2025 GMT
Not After : Nov 12 04:01:02 2025 GMT
Subject: CN=badcd04503ef7100c75f46c27b0736390c815056
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:77:e5:56:5c:45:1d:28:58:03:e4:04:eb:e9:
d5:7a:89:97:e5:c6:65:e9:36:54:83:20:1a:1b:5c:
fa:fc:fb:b2:6d:77:68:4d:fc:76:ca:02:a7:dc:03:
10:32:60:fb:8e:8b:f5:b0:42:51:b1:04:cb:69:ba:
57:03:de:fc:05:8e:55:c9:14:6a:1c:1a:28:e7:0f:
37:7a:a2:90:a8:d6:2e:c6:8d:08:ef:5f:a0:2e:1d:
31:c2:29:48:6b:7d:d8:d1:df:3c:da:af:13:c1:23:
f0:21:ce:86:9e:77:00:6e:ff:09:60:3c:d3:10:0b:
2c:70:7c:b3:d3:1d:c4:d5:e9:d5:05:28:a6:e9:82:
cb:e8:af:c7:50:fb:ac:90:ed:e1:46:49:a1:73:39:
28:87:d4:5c:e5:f5:6d:2d:48:35:f7:d6:58:0e:d2:
87:d3:c2:bf:01:88:50:47:94:5a:2a:8b:f2:cf:7a:
3f:c4:d2:f4:b5:ce:48:a8:b2:6b:c9:9c:5d:af:26:
82:8e:6b:c2:cc:1b:9e:18:88:30:13:fb:62:80:8d:
42:91:79:16:c1:45:ff:76:5d:93:f9:81:49:f5:cc:
09:68:cc:ad:0f:00:52:a4:87:b7:48:61:19:54:eb:
01:76:2e:cf:cf:b0:15:fd:cf:6d:8a:72:b8:9b:a9:
39:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:DC:D0:45:03:EF:71:00:C7:5F:46:C2:7B:07:36:39:0C:81:50:56
X509v3 Authority Key Identifier:
keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:8e:3f:40:56:f0:23:91:7b:65:54:63:75:b0:c8:5b:08:22:
30:c7:75:25:50:22:80:22:e3:02:16:4b:8a:e1:8c:9c:be:25:
db:9c:81:9d:55:2d:ae:05:aa:f6:58:38:10:31:92:ae:7d:6a:
a6:82:82:ec:d9:6d:af:81:e3:f4:07:12:fa:c9:d9:ce:b2:23:
57:55:9b:a5:cf:fd:28:b1:1d:3f:0d:1b:bf:8b:27:88:68:da:
9c:21:04:23:6f:c9:64:6d:23:a6:fb:a6:68:25:a9:fe:12:88:
02:41:76:66:c3:70:7d:2f:ce:81:77:a5:1e:f8:51:6b:e0:42:
d6:69:43:a0:3c:29:fd:42:82:75:40:03:1e:e0:62:d1:7d:d7:
85:b2:7d:28:84:dc:fa:0e:18:b0:10:6f:c9:f4:26:0c:6d:73:
de:5e:30:0c:76:9b:5a:24:3b:d4:92:36:f9:1f:71:7a:fb:1e:
68:80:5c:98:01:c0:04:ae:c3:20:a3:82:03:df:ba:5c:d7:a6:
84:6a:d8:29:a0:df:51:c1:98:f9:17:af:cd:56:da:5d:5d:2b:
44:a6:e4:21:28:57:43:74:33:65:d4:43:63:6d:3a:1f:42:96:
e8:ca:4c:a5:39:9a:ff:9e:5b:0e:2d:2b:25:13:8d:7b:20:23:
17:df:2d:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxEwK2zTp4tNE0+CYrdgJBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0
NmIwY2UwHhcNMjUxMTExMDQwMTAyWhcNMjUxMTEyMDQwMTAyWjAzMTEwLwYDVQQD
EyhiYWRjZDA0NTAzZWY3MTAwYzc1ZjQ2YzI3YjA3MzYzOTBjODE1MDU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnflVlxFHShYA+QE6+nVeomX5cZl
6TZUgyAaG1z6/PuybXdoTfx2ygKn3AMQMmD7jov1sEJRsQTLabpXA978BY5VyRRq
HBoo5w83eqKQqNYuxo0I71+gLh0xwilIa33Y0d882q8TwSPwIc6GnncAbv8JYDzT
EAsscHyz0x3E1enVBSim6YLL6K/HUPuskO3hRkmhczkoh9Rc5fVtLUg199ZYDtKH
08K/AYhQR5RaKovyz3o/xNL0tc5IqLJryZxdryaCjmvCzBueGIgwE/tigI1CkXkW
wUX/dl2T+YFJ9cwJaMytDwBSpIe3SGEZVOsBdi7Pz7AV/c9tinK4m6k51wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLrc0EUD73EAx19GwnsHNjkMgVBWMB8GA1UdIwQY
MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt
MzhkOGE3OGE0ODYyLzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy
LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXo4/QFbw
I5F7ZVRjdbDIWwgiMMd1JVAigCLjAhZLiuGMnL4l25yBnVUtrgWq9lg4EDGSrn1q
poKC7Nltr4Hj9AcS+snZzrIjV1Wbpc/9KLEdPw0bv4sniGjanCEEI2/JZG0jpvum
aCWp/hKIAkF2ZsNwfS/OgXelHvhRa+BC1mlDoDwp/UKCdUADHuBi0X3XhbJ9KITc
+g4YsBBvyfQmDG1z3l4wDHabWiQ71JI2+R9xevseaIBcmAHABK7DIKOCA9+6XNem
hGrYKaDfUcGY+RevzVbaXV0rRKbkIShXQ3QzZdRDY206H0KW6MpMpTma/55bDi0r
JRONeyAjF98tVA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:58 2025 by rpki-client